Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
File: upcN4SazoLVI2tdvXvqIhVxvH_I.mft (raw, json)
Hash identifier: eiO25d7QWO+gs09aHMh/2tAhNWTziSSSPTEN5NPaeUI=
Subject key identifier: 07:9F:07:37:70:FA:75:1D:49:90:20:47:37:E8:4E:8B:17:24:2C:7E
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 019D254C465627D4C5440FB9F833BC7D4E83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
Manifest number: 0C0C
Signing time: Wed 25 Mar 2026 14:00:48 +0000
Manifest this update: Wed 25 Mar 2026 14:00:48 +0000
Manifest next update: Thu 26 Mar 2026 14:00:48 +0000
Files and hashes: 1: Q_P7X5C1lmaNlkbuzVGT844GFfo.asa (hash: nwImYSIcMFyAUiCaJ41mpvQb3aaHOwHGxJ4PTZp+Yz0=)
2: sH_i52u9I2QPQooV8iPsfP3TRkE.roa (hash: 3i21QPZ/ky3oP395rnMd9Ue3A3mgKCo4RMpPmWOaqwk=)
3: upcN4SazoLVI2tdvXvqIhVxvH_I.crl (hash: LGSs8BXrOynHBmtdwr5l8CKrYgxEKuIzpfxO4hsNUUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:4c:46:56:27:d4:c5:44:0f:b9:f8:33:bc:7d:4e:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: Mar 25 14:00:48 2026 GMT
Not After : Mar 26 14:00:48 2026 GMT
Subject: CN=079f073770fa751d4990204737e84e8b17242c7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:29:66:a8:8c:e6:20:0e:c2:fd:21:d9:2c:31:
6d:87:65:ea:f3:fc:f2:06:3b:3e:0d:dc:04:6a:22:
98:cc:f3:6a:39:0a:6c:e4:fd:94:b2:34:2a:e3:25:
8a:64:26:9d:b4:59:d8:6e:34:96:69:6f:57:23:df:
88:05:99:8f:c5:cc:6b:33:08:81:47:09:7a:88:b4:
c7:47:16:03:6a:68:22:df:a0:d6:d0:1d:93:92:e6:
ba:8e:f2:d3:84:68:25:30:a0:5e:00:7a:0d:f5:a0:
8c:f1:c9:7a:ee:2d:fc:e0:de:34:5b:39:ef:13:9e:
5e:9d:bc:79:fe:d3:fe:5b:78:71:a7:a0:7e:c5:90:
4b:b1:8e:dc:2a:7f:b3:a5:a5:9a:3e:7f:80:46:d8:
3a:e0:e9:17:ec:f1:53:b9:8a:06:10:dc:a0:a3:64:
50:51:6e:d2:85:50:da:e2:6d:b8:38:f5:4d:fc:3b:
ec:91:99:31:4e:62:18:10:7e:b1:71:7c:f8:ab:20:
97:b4:58:2f:85:1c:04:91:8c:91:69:78:cd:1d:c2:
1a:53:10:dc:98:0c:11:31:d1:ed:a8:24:4a:92:43:
20:46:18:62:25:4f:24:1b:0e:fb:02:05:a6:7f:a6:
89:11:2d:5b:59:52:f5:6e:6d:d7:96:50:25:1d:1f:
8f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9F:07:37:70:FA:75:1D:49:90:20:47:37:E8:4E:8B:17:24:2C:7E
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:7b:df:c1:6f:c3:34:b5:b1:c5:3d:39:d5:b5:0a:10:b1:15:
d4:10:cc:3b:fa:d6:f1:6b:13:13:26:f2:2c:c6:af:60:93:43:
46:ee:f5:44:99:0f:e0:00:cf:93:dd:cc:cc:ce:e7:ee:c4:45:
55:e1:f6:d4:5b:77:b1:63:02:12:ed:70:3b:1f:6c:7b:ce:fe:
5b:bb:95:6c:7a:ab:e4:5d:1a:71:2b:03:e0:86:43:6d:ea:85:
ba:33:c0:c8:5c:b0:03:42:57:34:47:e5:12:8e:bc:ae:ed:81:
f7:9f:6d:3e:90:20:92:2f:8d:69:59:18:18:f4:40:2b:63:3b:
be:82:2e:d1:8a:3f:f4:bb:ce:00:de:9a:76:92:c1:c5:81:2b:
94:8d:0f:65:d5:ae:94:41:a6:70:21:d5:23:ec:c5:5f:26:ac:
02:87:a3:32:21:ff:a2:f9:41:a6:6f:1e:09:c2:0a:5a:7a:fb:
17:e8:0e:87:b3:d8:26:ec:54:5a:35:15:45:a3:87:bf:ef:ed:
10:bb:0b:90:1e:1f:15:c2:7d:4b:9e:6e:a2:3c:ee:ec:57:82:
3c:23:53:bf:1f:61:f4:d3:eb:73:a6:41:30:2d:8a:73:4e:9c:
a1:06:29:05:ed:57:d5:e7:30:70:df:91:af:a0:28:49:18:dd:
a3:a4:3d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:24:37 2026 by rpki-client