Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier: MM2igK9MFfMOOHv841uPTGrCVjOlls8veMD62bLT+Xs=
Subject key identifier: 34:D0:B3:59:65:2B:F2:B9:47:A5:10:F6:07:68:7C:A9:A2:79:7D:AB
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 019D2960B75BA3E64677DB3F5E3D91B6F285
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number: 0867
Signing time: Thu 26 Mar 2026 09:01:37 +0000
Manifest this update: Thu 26 Mar 2026 09:01:37 +0000
Manifest next update: Fri 27 Mar 2026 09:01:37 +0000
Files and hashes: 1: UfxnZEwkQdyHN4gibAtk_ce1zeI.roa (hash: Bl9GgITeZ3znWiaIE2fwC3TQwsJfWdhy5zENaMdMELI=)
2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: +LNkmWIAw9fI3fYSoYR0hmYlikfIUlwfTeBEasz4RkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:b7:5b:a3:e6:46:77:db:3f:5e:3d:91:b6:f2:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: Mar 26 09:01:37 2026 GMT
Not After : Mar 27 09:01:37 2026 GMT
Subject: CN=34d0b359652bf2b947a510f607687ca9a2797dab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b3:66:0d:36:97:75:aa:17:f6:af:f3:ba:9d:
15:40:01:e4:50:20:e9:ea:ba:46:34:29:24:8a:58:
29:d7:d1:a0:cd:6a:95:b1:07:17:45:2b:4a:fe:50:
90:17:f8:29:18:1a:82:cb:dc:00:a3:87:fa:15:53:
b0:69:86:21:59:7b:34:d1:7b:9a:e1:9e:5b:1f:b6:
e5:7d:f6:84:82:48:46:2e:9a:42:3e:94:a1:5b:a4:
04:e2:d9:7b:69:97:20:38:db:f7:fb:55:fb:2f:9c:
8d:cb:f2:97:68:ce:a3:79:e5:9d:1a:89:68:f3:78:
5e:06:f5:9c:1e:20:91:91:b0:f7:b4:ed:c2:8b:c0:
da:2d:23:5a:44:bd:2f:53:81:b9:f2:50:af:bd:99:
1c:77:e7:33:bd:ca:c7:d3:68:5a:bb:8f:a3:31:c9:
b3:da:54:26:b3:d1:50:79:be:52:c0:97:aa:3d:ee:
7d:5a:3e:47:91:1d:0c:5e:9d:73:ed:9b:8a:a7:60:
c7:21:7e:e5:c3:ff:8e:fb:c7:8f:de:30:5c:07:aa:
a3:59:6d:08:3e:41:c4:9b:ad:3c:45:a0:23:2c:34:
ad:53:ed:dc:c4:39:ef:f9:1f:6c:3c:40:d4:7d:f8:
a1:bc:70:21:2d:66:cd:49:f7:80:c3:b6:d8:aa:fc:
66:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D0:B3:59:65:2B:F2:B9:47:A5:10:F6:07:68:7C:A9:A2:79:7D:AB
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:8f:c5:5e:8a:e5:1f:6c:5b:83:8c:20:cf:7d:da:c8:2f:16:
c5:d7:69:dd:7f:8a:0b:68:df:7c:90:72:d7:3f:4c:7f:79:d2:
68:25:f0:c2:41:b8:01:55:1c:bf:fa:13:c2:a7:d3:4c:34:6f:
e8:0b:36:57:56:6b:fc:8d:ee:b1:dd:b5:e6:27:c2:fc:52:2e:
1c:41:e6:6f:65:b2:09:20:d0:8b:ed:6b:58:3a:0e:04:d5:04:
19:b3:cf:f6:2a:c5:a5:51:b0:1c:c3:87:d4:24:72:85:65:54:
ba:6f:10:9a:55:45:5f:59:40:c8:7b:08:8b:57:30:b9:ee:b9:
3b:7a:62:af:c7:4c:4d:e9:b6:f9:d0:36:70:11:01:b0:24:1c:
b0:16:83:36:4b:30:2b:76:b7:bc:12:bc:ea:a4:b9:5b:b1:95:
64:5b:00:03:7d:37:ef:59:e8:d5:25:0e:48:7b:75:90:78:96:
9b:2b:0f:bd:cb:8e:28:c9:5b:57:0e:62:9d:9c:f5:f5:51:1b:
11:43:38:55:89:7c:e7:a8:91:8f:fe:27:33:e6:ad:c4:88:3f:
82:eb:14:95:c6:3c:f8:0b:d1:4f:60:a4:1d:de:52:ec:82:89:
39:9a:25:44:14:d5:2a:c2:77:bc:ad:2e:30:f4:8e:49:68:b1:
dc:02:16:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:28:09 2026 by rpki-client