Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
File: UIqaCKvvdNzFEAT0-uAmbWIDleM.mft (raw, json)
Hash identifier: kHkMeR3Gtkx3M+BD9c+b+yakwSmAy4av21g/Q8TRtTk=
Subject key identifier: 36:F3:41:FD:B8:26:AB:53:52:58:58:BA:05:49:AC:60:A8:34:34:2B
Authority key identifier: 50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
Certificate issuer: /CN=508a9a08abef74dcc51004f4fae0266d620395e3
Certificate serial: 019D27E04F9192C13EE04C36092E39CE6A7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
Manifest number: 107B
Signing time: Thu 26 Mar 2026 02:01:44 +0000
Manifest this update: Thu 26 Mar 2026 02:01:44 +0000
Manifest next update: Fri 27 Mar 2026 02:01:44 +0000
Files and hashes: 1: QAgOOWOSGVL9EA58pEl1eGs2WSI.roa (hash: h4yfJTuGabEHeQ+rxp95srDtrChZHsYML/0NIEoqm54=)
2: UIqaCKvvdNzFEAT0-uAmbWIDleM.crl (hash: zdeoOlzHyYLepoQCW1zOuZu2YnnOb3Gu8CoU9mypqZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:4f:91:92:c1:3e:e0:4c:36:09:2e:39:ce:6a:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=508a9a08abef74dcc51004f4fae0266d620395e3
Validity
Not Before: Mar 26 02:01:44 2026 GMT
Not After : Mar 27 02:01:44 2026 GMT
Subject: CN=36f341fdb826ab53525858ba0549ac60a834342b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:53:a0:7a:56:2c:af:58:cd:89:71:56:e9:a3:
0e:27:11:d3:53:81:be:8c:cb:08:47:8d:96:18:0f:
ba:9e:ef:85:31:f3:c9:80:95:f8:28:c8:57:55:5e:
3d:68:61:e7:0c:9e:de:8a:c7:a8:69:dc:b7:96:c4:
f0:85:65:2f:7f:a1:0d:2f:44:f3:1f:6c:6e:ae:79:
e5:54:11:0e:25:2a:a7:d5:5e:d1:b1:d5:f7:43:9b:
bb:e7:d0:63:2a:84:16:7b:19:1e:3e:b2:54:03:af:
8a:5e:c0:f1:fc:b7:e9:7d:26:1f:7d:d9:ee:5d:64:
42:cd:d6:3d:21:50:3e:25:db:d5:b3:57:be:8d:9b:
65:f8:bb:53:24:60:de:ea:ea:45:7c:72:fa:89:e9:
2c:ac:52:44:35:6c:c1:20:58:4f:04:cf:f1:32:b1:
25:ab:9a:3a:31:de:1f:5f:19:a8:0f:b7:db:ea:d6:
ba:e2:b3:97:b3:81:f8:ae:68:cd:6b:76:c8:94:b2:
bc:09:32:21:38:ca:3e:e0:5d:c4:c1:60:f0:b6:5f:
bc:95:60:8d:e5:3e:d2:1e:b5:b8:a0:9e:ac:86:7e:
79:d5:ba:2e:90:93:03:18:a7:c4:48:d2:ef:27:53:
01:f5:91:74:f4:66:56:8d:21:c0:b1:4e:12:cf:39:
47:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F3:41:FD:B8:26:AB:53:52:58:58:BA:05:49:AC:60:A8:34:34:2B
X509v3 Authority Key Identifier:
keyid:50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:7b:95:80:44:6e:7f:b3:ae:6a:4c:49:50:db:26:fc:bd:b5:
63:36:90:22:e0:a2:35:c0:03:80:e5:e5:12:72:75:d0:d8:ab:
0c:77:32:df:86:cf:13:23:6f:de:7a:3f:9c:60:40:5a:da:28:
6a:11:1e:33:bb:60:68:6c:9b:97:23:80:4f:c1:2c:6c:7d:c4:
1e:bf:c1:55:ff:e2:9e:7b:d9:2e:a7:48:9d:dc:52:e4:58:22:
78:53:5e:d7:27:de:56:96:3e:5c:ae:80:13:8f:05:c4:f9:60:
37:16:d4:65:0f:26:ba:aa:21:fc:a6:0e:d8:07:f7:b4:5a:fa:
22:eb:67:20:10:0a:f9:ca:6f:48:6c:94:ed:da:48:d8:cd:e1:
bf:86:29:27:26:17:09:68:23:21:7e:98:3d:80:0d:70:58:fa:
5d:93:a7:dc:5e:13:27:75:36:df:4f:6c:fe:70:a7:07:29:b5:
8b:d3:73:0d:fb:1d:e8:f3:f2:99:9e:2a:56:66:a4:a2:29:43:
df:30:cb:81:d8:cb:53:dc:1b:9d:47:9e:13:82:18:4b:81:40:
65:a3:57:6a:e1:f7:a4:2e:08:e6:49:45:1d:5b:02:61:40:d8:
73:b4:d9:30:a6:bb:25:1b:58:a0:81:6f:3c:88:80:b1:59:a2:
30:e9:26:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:15:01 2026 by rpki-client