Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
File: uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft (raw, json)
Hash identifier: TM8CezzXw2E9e7tieNk3zTfzZMjrCyq+bRdHp+QOZKQ=
Subject key identifier: 3C:79:7D:00:13:EA:3C:0F:DC:29:BE:30:76:F0:72:53:00:F6:63:0E
Authority key identifier: B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
Certificate issuer: /CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Certificate serial: 019D2A727A4FD5E3D784D85F9A045558DD2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
Manifest number: 11F6
Signing time: Thu 26 Mar 2026 14:00:38 +0000
Manifest this update: Thu 26 Mar 2026 14:00:38 +0000
Manifest next update: Fri 27 Mar 2026 14:00:38 +0000
Files and hashes: 1: pnTV-xEaMoeNed3d1zVxVfZqK_E.roa (hash: cQ4cTJqwVUYM1dCbNyuS7CuucIG4Wq7i0SfCs2VPf1M=)
2: uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl (hash: XEEifPkplUfwz0so3xTtJb2dFXWq4v1c+JDFVmO2/n4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 14:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:7a:4f:d5:e3:d7:84:d8:5f:9a:04:55:58:dd:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Validity
Not Before: Mar 26 14:00:38 2026 GMT
Not After : Mar 27 14:00:38 2026 GMT
Subject: CN=3c797d0013ea3c0fdc29be3076f0725300f6630e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2c:ef:ff:99:d0:03:ea:1a:43:fb:ce:58:9e:
51:86:1b:ae:6b:e4:7c:16:28:e7:f4:92:d2:44:a0:
36:f7:c9:e1:4a:c9:b8:7d:08:f4:76:79:b8:da:18:
de:c2:b4:bf:ba:21:57:18:ae:2d:c3:5d:a2:b9:a6:
92:94:7b:0b:38:ae:0d:a9:52:1e:f5:99:39:5c:b6:
f2:e3:35:d9:6f:14:32:bd:c8:a9:ae:10:a7:82:6a:
24:96:37:8f:23:bc:1b:3c:82:b6:99:13:a6:b5:93:
43:fb:e8:12:9f:aa:04:d3:5b:c5:9c:3e:5e:6a:d8:
39:3b:5c:ec:ae:29:20:37:24:8b:fe:05:cc:31:bd:
43:6b:90:87:93:c4:b1:5b:c6:21:b3:3c:bc:71:63:
ef:f7:5d:63:c3:f8:9d:7a:d4:f3:8b:7f:cf:01:7a:
bf:b5:cc:58:fb:b3:44:17:90:72:b5:31:14:d6:25:
a3:00:6e:62:8f:c8:92:24:9f:e7:66:f0:bd:52:96:
94:13:f4:58:98:36:45:96:9a:35:e5:8b:41:ba:c0:
0a:c6:42:3a:56:f3:73:84:53:fe:da:3e:bb:50:68:
2a:c7:9b:41:10:cf:fb:a9:1d:69:79:7d:2c:5b:c8:
ed:56:94:cc:30:35:5e:22:2c:93:d3:a9:e6:26:01:
17:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:79:7D:00:13:EA:3C:0F:DC:29:BE:30:76:F0:72:53:00:F6:63:0E
X509v3 Authority Key Identifier:
keyid:B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:f0:0b:80:47:9c:5c:23:f8:7a:1c:dd:a4:71:01:d5:b3:e8:
42:a2:dd:3b:da:64:aa:be:d8:43:41:e2:5e:73:c5:7b:06:d8:
54:51:08:a5:6a:c5:bf:f4:e7:4a:65:20:9f:b0:e2:98:54:00:
44:69:d4:49:dd:03:3f:22:df:d8:bb:a2:ed:7e:f7:5a:01:0d:
d7:b6:51:50:51:7e:08:17:19:ac:55:5a:a4:d4:5f:19:25:a4:
20:48:a6:d9:5d:2e:50:00:46:08:71:5c:cd:65:61:e5:b1:4c:
8d:1b:8e:35:44:30:37:c9:99:a3:7b:9b:87:15:a7:20:62:f6:
21:8c:91:88:de:72:0f:9b:da:8d:27:bc:31:8e:cd:d6:bf:bf:
ed:d3:e8:55:5b:2d:ff:e9:86:ed:06:30:bd:49:fa:4a:f6:c8:
f6:73:6f:94:84:04:b2:3e:5e:36:2b:55:bb:89:5e:ee:77:29:
7f:0d:86:97:51:2d:64:a3:a2:78:cb:55:62:ef:9b:8a:be:97:
91:ac:53:0f:1d:ea:8b:cc:04:e8:a6:5a:06:37:42:36:91:f8:
72:03:91:af:a0:50:d6:35:c7:42:b0:b2:7d:c8:4a:e6:10:4e:
c0:9a:43:61:0a:31:2a:ce:4f:19:11:38:03:c9:42:55:f4:f8:
3f:c8:fd:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 23:46:48 2026 by rpki-client