Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
File: upcN4SazoLVI2tdvXvqIhVxvH_I.mft (raw, json)
Hash identifier: Iq078IMB8sj7VC2COHTLsFL6NT3nNm8j/31+n4qWE3M=
Subject key identifier: F3:B7:81:9E:DE:5E:42:A9:EA:37:0F:19:3B:BF:C0:84:15:85:9B:F3
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 019E1C7D7853F661A9A1ACA06EBE0A30C084
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
Manifest number: 0C8C
Signing time: Tue 12 May 2026 14:00:45 +0000
Manifest this update: Tue 12 May 2026 14:00:45 +0000
Manifest next update: Wed 13 May 2026 14:00:45 +0000
Files and hashes: 1: Q_P7X5C1lmaNlkbuzVGT844GFfo.asa (hash: nwImYSIcMFyAUiCaJ41mpvQb3aaHOwHGxJ4PTZp+Yz0=)
2: sH_i52u9I2QPQooV8iPsfP3TRkE.roa (hash: 3i21QPZ/ky3oP395rnMd9Ue3A3mgKCo4RMpPmWOaqwk=)
3: upcN4SazoLVI2tdvXvqIhVxvH_I.crl (hash: UT6zns3Gklg+elQM+nDSL/QZKgEqFGGae+357qsqeHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:78:53:f6:61:a9:a1:ac:a0:6e:be:0a:30:c0:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: May 12 14:00:45 2026 GMT
Not After : May 13 14:00:45 2026 GMT
Subject: CN=f3b7819ede5e42a9ea370f193bbfc08415859bf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9f:62:da:b6:29:4a:f9:26:9c:19:b5:15:b8:
5e:87:82:a9:38:94:bd:77:e9:ec:dd:46:47:b1:da:
8a:b4:58:e8:f7:d7:70:fd:9d:fd:56:ed:47:d4:d1:
ed:54:9a:60:cc:25:70:7b:0f:5d:c2:4b:db:5b:6f:
3d:21:f8:c7:c3:7a:85:ba:f9:2a:2c:e7:19:25:35:
26:c3:dc:ba:82:68:df:34:5d:70:23:85:b5:9f:e3:
bf:98:d5:00:ac:72:7a:e2:c3:71:e8:26:6c:44:d3:
48:b3:71:6f:ab:fe:3e:3a:01:d3:4c:8a:d3:b8:4b:
61:f2:27:e4:be:83:05:13:b7:7d:1e:06:04:a5:ac:
bd:93:55:47:40:19:3e:78:65:0e:47:fa:26:ab:09:
aa:e2:f2:6d:d9:3f:76:ee:b1:46:4f:3f:ca:fa:67:
8b:b5:8d:17:39:45:81:93:5a:d0:6f:56:cb:08:94:
92:e3:41:f2:ac:02:25:72:dc:58:70:e6:96:96:a8:
24:56:c2:0f:5c:93:eb:33:72:41:18:44:46:cc:34:
7f:6d:58:5d:4a:8f:ba:33:63:87:3f:0a:72:e3:b3:
6b:1a:bf:4b:92:cc:46:83:61:67:88:88:2e:1d:50:
d9:cd:57:f2:1a:27:16:81:c3:c7:04:f6:9d:9a:0b:
5f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:B7:81:9E:DE:5E:42:A9:EA:37:0F:19:3B:BF:C0:84:15:85:9B:F3
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:ad:70:be:89:b4:bc:30:da:81:16:2a:3e:de:10:1c:7d:84:
d1:ec:91:9e:0d:d7:53:89:1d:af:ae:c2:24:3c:7b:12:90:e5:
ed:a4:91:e7:6d:01:22:4b:07:7d:cb:30:3a:98:0f:64:61:f2:
ef:48:0e:4a:93:3f:6f:f5:7a:1a:29:12:c2:8b:1c:3c:e7:a2:
5b:2c:bc:7a:b7:9b:6f:d0:3f:68:cd:48:e3:4c:a2:bf:a5:54:
69:ec:05:73:68:a4:90:c2:cc:05:5b:79:d9:49:ab:02:e1:60:
a2:82:ef:3e:f8:bb:6b:d9:26:26:d1:4a:79:60:80:24:c3:69:
66:99:05:81:78:92:af:fa:91:11:d3:02:fe:db:74:60:06:24:
c5:d8:70:a1:29:3e:83:48:f9:de:44:d6:fb:1e:32:d6:b7:46:
bd:32:a4:4e:97:e4:e0:2f:f8:d7:53:cd:bc:08:bf:bc:cf:0e:
c2:9e:e4:b1:29:84:e7:6e:c7:86:4c:5f:7f:75:4a:e4:dc:a8:
4b:86:61:cd:d3:0a:b5:9b:24:a1:66:07:3d:b9:a8:2c:7b:8b:
1d:e9:e5:79:cd:0a:ad:ab:ae:1d:93:10:e9:96:05:b2:90:a8:
30:8d:f1:21:b3:ce:f7:66:72:92:33:bd:e8:47:2b:f0:d3:85:
a3:f8:88:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:26:40 2026 by rpki-client