Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
File: Uo017K6KUozuxk3jvWO3P6QtX0o.mft (raw, json)
Hash identifier: sPQZt3B7Ck7gU+q/fYb/R9DJHVfk2j1N4pF0SP8pMp0=
Subject key identifier: C3:5B:BA:B0:89:57:8E:69:CF:23:B4:57:2A:5A:11:00:C6:21:FB:F1
Authority key identifier: 52:8D:35:EC:AE:8A:52:8C:EE:C6:4D:E3:BD:63:B7:3F:A4:2D:5F:4A
Certificate issuer: /CN=528d35ecae8a528ceec64de3bd63b73fa42d5f4a
Certificate serial: 019D25F12B07BAF50A1685AF03F40DD89F8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
Manifest number: 0CB2
Signing time: Wed 25 Mar 2026 17:00:55 +0000
Manifest this update: Wed 25 Mar 2026 17:00:55 +0000
Manifest next update: Thu 26 Mar 2026 17:00:55 +0000
Files and hashes: 1: Uo017K6KUozuxk3jvWO3P6QtX0o.crl (hash: ceGZWb4lmW/99zoS7b1+O/HOPpAcD2AuW7vhypkyS3c=)
2: jmmeH3G-Gl7O7CxO9eM1m6xDfME.roa (hash: Wq2XWQbDU1erZ3uKJEqO1ZrsNU8Z2zdZsF7YP6SoAlU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:2b:07:ba:f5:0a:16:85:af:03:f4:0d:d8:9f:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=528d35ecae8a528ceec64de3bd63b73fa42d5f4a
Validity
Not Before: Mar 25 17:00:55 2026 GMT
Not After : Mar 26 17:00:55 2026 GMT
Subject: CN=c35bbab089578e69cf23b4572a5a1100c621fbf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6d:8a:23:2c:43:1c:ac:c4:eb:3e:3b:96:56:
53:9e:fa:84:87:29:7f:59:b0:35:2a:14:1b:19:69:
bf:3b:44:40:df:9b:fd:2c:d4:e1:e6:35:47:95:45:
73:36:de:6c:c6:07:4e:a8:47:58:03:c3:3f:51:9f:
00:da:66:ec:92:b4:f0:23:68:77:8b:4b:2a:c5:e1:
72:3a:70:3c:73:8e:98:d4:6a:e2:6a:32:2a:7a:49:
20:6b:06:0c:b2:48:99:0c:de:d0:db:b6:8f:f8:2b:
e7:a8:6e:a5:df:e5:87:50:95:7d:cc:7c:d9:a0:8f:
16:1d:d9:b2:79:90:52:49:d1:16:1e:19:97:79:58:
95:50:ba:15:fc:a2:1e:ad:bb:fd:4e:93:ee:d3:76:
ea:c7:26:63:98:e5:2f:2b:98:1a:4b:5f:78:a3:2e:
32:8c:04:a1:c1:fd:f0:f4:6a:be:aa:1c:c1:e3:8c:
e6:e7:85:9e:25:dd:ba:d4:e3:3f:18:d4:eb:b6:c2:
e5:96:ba:47:90:85:fb:7b:7a:05:66:0e:bd:09:00:
59:23:da:0f:fa:51:8c:04:cb:96:bb:e4:4e:e3:7b:
fe:ef:13:d6:0f:4a:c6:8a:aa:76:3a:a6:1c:20:b4:
e2:a1:7a:bf:e7:de:f1:f1:a9:2f:60:4e:df:cd:a8:
dd:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:5B:BA:B0:89:57:8E:69:CF:23:B4:57:2A:5A:11:00:C6:21:FB:F1
X509v3 Authority Key Identifier:
keyid:52:8D:35:EC:AE:8A:52:8C:EE:C6:4D:E3:BD:63:B7:3F:A4:2D:5F:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:c0:1b:a2:c9:a4:74:64:0b:48:98:cd:fc:3d:92:e4:4c:5b:
df:d1:dd:b7:fb:a9:0f:c1:6f:f0:ba:c5:9a:74:08:38:92:25:
8f:78:79:ca:4e:35:fd:c2:b7:9e:da:6f:78:e1:82:ef:30:8a:
c6:89:73:5f:ad:6c:bd:eb:24:d8:05:c3:16:8a:9a:34:0f:68:
a4:11:2c:08:1e:3b:53:e4:57:ed:25:82:8c:b6:93:de:47:67:
0e:e2:6c:b2:08:2e:13:cc:bd:5a:f6:d3:77:68:b8:e4:55:d6:
37:25:55:5a:ab:17:27:91:56:b2:23:57:57:d1:a5:c5:31:9a:
f0:2b:b3:8a:b7:b0:c6:fc:9d:bc:8e:49:2b:57:22:01:d6:36:
00:bd:aa:97:c2:0a:42:b7:6a:ea:4e:11:04:af:a1:06:19:5e:
59:2b:67:d5:e7:03:f6:8d:1c:c5:1a:05:ad:7c:65:94:3d:4d:
92:92:73:5a:f3:25:bb:f1:c7:93:9d:3d:c5:98:26:41:6d:ce:
27:b4:49:70:c5:53:46:e7:be:b8:6a:23:6c:3e:fb:c8:24:df:
0a:7f:bb:5d:99:6a:af:4b:b4:6f:7c:68:a2:9c:cc:7d:79:fd:
f2:8d:d3:ce:77:38:c6:94:6e:16:ef:a7:df:ef:2b:cf:28:5d:
be:3e:78:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:01:24 2026 by rpki-client