Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
File: Uz39bMFAxoo9O7qGulfPO4umqbc.mft (raw, json)
Hash identifier: bzP7KAgMzbNDsi5XyyBFLxk11TA+p1Tb/PULZa+rnv0=
Subject key identifier: D8:BC:49:24:0A:DF:D7:16:52:09:2B:70:38:6D:71:04:F8:55:65:0D
Authority key identifier: 53:3D:FD:6C:C1:40:C6:8A:3D:3B:BA:86:BA:57:CF:3B:8B:A6:A9:B7
Certificate issuer: /CN=533dfd6cc140c68a3d3bba86ba57cf3b8ba6a9b7
Certificate serial: 019D299794CBC7D80FD171523E698E88D918
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
Manifest number: 13CE
Signing time: Thu 26 Mar 2026 10:01:32 +0000
Manifest this update: Thu 26 Mar 2026 10:01:32 +0000
Manifest next update: Fri 27 Mar 2026 10:01:32 +0000
Files and hashes: 1: Uz39bMFAxoo9O7qGulfPO4umqbc.crl (hash: Ibt+Dyr9QlVtMJf8qtyTXl6DrDrdbWbHEnPGU50qZWw=)
2: b5tJsnlnSE6Xaiye0wcx51G5Jwk.roa (hash: v9RBu20odxkvsGZtyEDAzqjRkkYtJXPNlrRBy/h0EkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:94:cb:c7:d8:0f:d1:71:52:3e:69:8e:88:d9:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533dfd6cc140c68a3d3bba86ba57cf3b8ba6a9b7
Validity
Not Before: Mar 26 10:01:32 2026 GMT
Not After : Mar 27 10:01:32 2026 GMT
Subject: CN=d8bc49240adfd71652092b70386d7104f855650d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:66:0e:e2:7e:4d:07:a3:ca:03:ce:ae:ca:8e:
f7:12:b3:82:1b:ce:4e:03:57:16:e3:e6:e6:f8:16:
80:f2:13:9d:bb:85:97:47:a4:35:19:1c:f0:5a:4e:
ea:b1:12:8f:b1:36:52:42:b4:9d:2f:17:7c:e9:62:
3e:99:91:b8:aa:df:b9:3a:6d:60:5e:f2:89:c7:40:
34:17:cc:b1:04:21:56:37:a4:e9:9f:e0:d8:da:5e:
1e:2f:37:44:33:1e:83:5b:52:1b:bc:fc:38:dd:d2:
23:88:a2:8c:96:0e:58:17:e6:d2:55:d0:a0:6e:bc:
1c:a7:0c:fe:90:53:a0:cd:64:57:c4:09:ba:8d:43:
86:f2:0c:f4:84:01:ce:36:4e:29:35:5f:94:cb:41:
c6:b5:0f:ad:d1:b3:ea:e4:ca:60:f7:c7:e7:5a:da:
89:1d:79:83:2b:ff:51:5a:a3:65:fc:0b:e9:cf:89:
51:bd:48:ad:85:ce:24:9e:f4:f2:de:89:73:35:25:
b2:34:2d:5c:be:4b:c1:a4:aa:ba:a9:22:48:ec:cf:
b5:5a:b7:5b:c8:48:59:43:7e:5a:85:1d:bb:da:42:
8a:00:57:fc:8e:12:fd:54:fc:ac:eb:65:27:9e:68:
02:3f:2e:64:9a:4f:6c:82:dc:0e:7a:ed:70:82:9e:
6c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:BC:49:24:0A:DF:D7:16:52:09:2B:70:38:6D:71:04:F8:55:65:0D
X509v3 Authority Key Identifier:
keyid:53:3D:FD:6C:C1:40:C6:8A:3D:3B:BA:86:BA:57:CF:3B:8B:A6:A9:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:d9:30:b7:3a:9c:e1:99:fd:7a:7f:f0:e8:63:7e:7d:1c:db:
de:a3:2d:9d:63:03:df:9f:c2:35:b3:10:41:a2:1a:cb:8b:48:
fc:84:31:c4:58:34:d5:f9:d1:b3:cf:86:c7:83:83:84:5d:26:
9c:a5:4d:ef:03:a5:8d:a6:d7:5a:a2:53:5f:2f:3d:3c:69:8a:
00:96:b5:66:ca:fa:de:44:e8:35:db:4a:b7:de:26:04:9c:f9:
7b:5b:69:99:f2:ed:fc:85:77:e2:4f:5f:4a:52:1e:f4:69:d9:
e0:42:7d:ba:04:97:1d:08:84:27:91:e8:05:8a:5e:4d:7b:fd:
39:c8:a0:5f:5c:ea:9e:2d:1c:b0:b4:23:09:02:7d:a0:92:03:
14:16:09:75:e3:a1:7f:df:9c:92:c4:02:bb:25:0d:34:f5:1f:
ce:9d:46:7d:fc:de:bf:5a:89:18:8b:ed:36:19:51:b8:52:cf:
02:a1:c9:03:89:65:d4:7d:bb:67:90:df:f4:ed:97:e7:3a:5b:
a5:84:99:cb:f5:b1:14:9d:f0:7f:82:bf:57:c6:08:7e:07:01:
78:c6:57:67:4d:1d:5d:d4:33:83:6e:fe:d8:33:22:9e:bb:52:
80:76:a7:95:4f:0a:fb:59:e5:86:c9:b2:c8:d2:2b:73:7e:61:
a9:de:99:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:16:55 2026 by rpki-client