Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
File: rUZjafOSfaDIn7X0s-qeMk-SioQ.mft (raw, json)
Hash identifier: Mc2Bsxdwf+roHG1wBK9FYUvfGhJPLzqYy2d9yq2RLyQ=
Subject key identifier: CA:0A:3B:B4:55:80:26:F1:B5:37:BD:3A:D4:19:7F:65:7F:40:68:83
Authority key identifier: AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
Certificate issuer: /CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Certificate serial: 019D2583BEFECAC1BF0ED8AA4123F989C93B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
Manifest number: 089C
Signing time: Wed 25 Mar 2026 15:01:24 +0000
Manifest this update: Wed 25 Mar 2026 15:01:24 +0000
Manifest next update: Thu 26 Mar 2026 15:01:24 +0000
Files and hashes: 1: _R9reWa8MF6i_0GtsC9MqO5XdM0.roa (hash: RpCmFg94gtFIxSyeDWhJqoErRSnSfBXY9f+R3zExZ1k=)
2: rUZjafOSfaDIn7X0s-qeMk-SioQ.crl (hash: +pZ34lgsZxCDih166zlfkRCiAb7AZvtMWG0TM4kpBlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:be:fe:ca:c1:bf:0e:d8:aa:41:23:f9:89:c9:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Validity
Not Before: Mar 25 15:01:24 2026 GMT
Not After : Mar 26 15:01:24 2026 GMT
Subject: CN=ca0a3bb4558026f1b537bd3ad4197f657f406883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fe:83:7d:cd:4d:a9:51:0e:73:4b:42:3f:3f:
7b:24:b1:68:5f:24:6f:5d:b1:cb:2f:ab:a4:21:b6:
1e:16:e3:59:bf:9d:ee:da:c4:65:64:01:5c:f0:8e:
48:b7:aa:d2:69:e7:d3:1c:a3:52:c7:8d:ba:6b:30:
11:23:00:d7:64:7d:9f:a0:4b:f9:ef:d6:37:4a:61:
3d:5e:67:40:4a:5b:4c:8d:96:4e:a5:b2:1a:44:07:
fe:dd:49:f1:5f:f9:53:78:9d:0d:da:87:3c:0f:09:
f4:f5:64:b7:e0:c0:2f:99:1f:b5:a5:e3:1d:83:d4:
3f:e8:67:97:20:6e:9a:a3:5e:1d:41:00:28:5d:cc:
63:45:05:45:67:9c:93:de:55:12:20:ef:08:fe:6c:
c8:d6:27:f8:74:91:69:ae:bd:fc:4d:e0:3e:72:86:
53:c3:32:8b:d6:e9:61:ec:c1:ab:dc:53:1d:0c:4b:
71:67:41:cb:23:c8:d0:1d:a0:97:32:7e:ce:13:48:
96:b0:46:63:04:d8:f4:6b:14:6c:12:de:37:2a:33:
24:fc:77:2d:4f:f0:3c:42:d2:17:01:ca:3c:8b:2a:
7e:a6:82:5f:7b:66:ca:a3:14:6a:3e:03:35:58:9a:
6a:0a:7e:75:8e:7b:b1:93:7e:84:f8:74:28:dc:ce:
c6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:0A:3B:B4:55:80:26:F1:B5:37:BD:3A:D4:19:7F:65:7F:40:68:83
X509v3 Authority Key Identifier:
keyid:AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:bc:19:3c:46:35:ef:2c:09:79:f4:17:ba:f6:3d:e3:ef:4c:
c6:5e:2d:39:c4:18:59:58:79:08:9c:36:32:b7:6b:38:35:87:
8b:5a:90:99:52:0a:53:1f:79:f8:3e:58:11:d5:50:c4:4a:a5:
10:2a:18:e3:c9:84:26:a0:63:b0:1c:6d:ee:4d:57:00:21:e6:
88:bf:31:3a:20:f6:aa:a5:c4:33:94:49:7f:cd:64:f6:f8:37:
aa:ab:ab:d4:52:da:43:37:c1:80:97:50:5b:80:2d:de:7d:fc:
bd:97:91:f2:6c:dc:f1:c5:fc:3f:09:12:2a:c4:3b:b0:03:48:
19:ab:6c:d7:ed:3c:ff:1e:d1:43:62:1a:ff:da:0e:ae:85:57:
cd:57:86:3d:e0:d6:53:2c:39:4c:d1:7f:8a:d2:de:c3:d2:dd:
47:c9:fb:b0:e9:4a:df:0c:2a:4b:07:a4:0a:ff:b6:2a:93:e7:
2c:92:06:ab:31:ec:15:99:30:23:3d:c5:bb:40:01:51:6c:09:
dd:47:10:9a:6e:dc:a6:7d:48:6f:01:50:18:13:72:8d:cf:da:
5e:66:6e:94:5f:dd:01:e2:74:52:f4:69:ff:1b:08:89:34:03:
54:da:33:34:2c:8c:5b:98:bb:4d:51:e8:06:dc:b7:23:f0:53:
65:11:0c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:30:08 2026 by rpki-client