Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft
File: UMXKBp6qqux3WtCk6jtHYFtyiiU.mft (raw, json)
Hash identifier: 7OAcT0MvuDmmJZVJmknygEkVllHzmNr4b3sem7PE6vs=
Subject key identifier: CC:24:38:01:E7:DE:2F:CF:70:92:AE:32:18:15:8F:1F:AD:49:57:91
Authority key identifier: 50:C5:CA:06:9E:AA:AA:EC:77:5A:D0:A4:EA:3B:47:60:5B:72:8A:25
Certificate issuer: /CN=50c5ca069eaaaaec775ad0a4ea3b47605b728a25
Certificate serial: 019D2884DB8E349BB1A1713AC82A2D4F38A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMXKBp6qqux3WtCk6jtHYFtyiiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft
Manifest number: 17D9
Signing time: Thu 26 Mar 2026 05:01:28 +0000
Manifest this update: Thu 26 Mar 2026 05:01:28 +0000
Manifest next update: Fri 27 Mar 2026 05:01:28 +0000
Files and hashes: 1: KxBvAyccf-9KNR7XcfENvV7BG2A.roa (hash: XbvB1YWfNONmSqL2//OKA3cnfbk/wWIRkQaPtz1eP/Y=)
2: UMXKBp6qqux3WtCk6jtHYFtyiiU.crl (hash: Fy3llRl2Ttkhd4r11JprPfKi1oGwBQl/w8hu7bL5+tg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft
rsync://rpki.ripe.net/repository/DEFAULT/UMXKBp6qqux3WtCk6jtHYFtyiiU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:db:8e:34:9b:b1:a1:71:3a:c8:2a:2d:4f:38:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50c5ca069eaaaaec775ad0a4ea3b47605b728a25
Validity
Not Before: Mar 26 05:01:28 2026 GMT
Not After : Mar 27 05:01:28 2026 GMT
Subject: CN=cc243801e7de2fcf7092ae3218158f1fad495791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:52:06:21:d2:7b:89:a0:87:fc:e1:79:46:39:
fb:f3:ec:bd:16:89:30:25:6d:24:12:3e:54:33:99:
87:38:30:8f:d5:4b:60:b8:a6:e6:3c:ed:74:74:9d:
0a:a7:3d:50:03:ec:d1:46:a1:08:e6:45:b8:87:a5:
d8:fb:7e:ec:77:a8:29:1c:41:83:b1:7b:da:e1:d0:
ee:d8:d2:a0:c4:59:87:96:8b:4e:7f:7e:ab:46:84:
03:d7:87:b1:13:81:be:0a:7b:ac:5b:24:a1:45:6f:
56:b7:15:0d:73:4a:90:da:26:ee:ed:7b:bb:d9:60:
26:98:2d:9e:82:2d:23:b9:cb:b2:8c:70:7b:85:0c:
c9:0f:92:8b:1b:31:75:34:35:c8:27:5b:43:c2:9d:
0f:39:32:36:97:62:52:3b:ce:6f:07:b7:13:9e:f4:
5b:33:43:55:9d:7c:59:7e:cb:4c:1c:60:5e:15:61:
4e:9e:13:e0:40:b2:7c:04:d9:95:d1:eb:8d:fb:be:
9d:69:16:1b:c2:a5:7d:e0:de:f4:47:d8:54:d2:73:
89:d9:c1:1f:95:17:8a:82:cc:e2:bd:6a:d5:4e:13:
dd:1c:8d:74:9a:7a:c6:ff:bd:82:d9:f9:e3:93:e1:
96:36:73:1e:46:c9:06:2c:1e:d5:ae:4a:32:bd:9a:
1d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:24:38:01:E7:DE:2F:CF:70:92:AE:32:18:15:8F:1F:AD:49:57:91
X509v3 Authority Key Identifier:
keyid:50:C5:CA:06:9E:AA:AA:EC:77:5A:D0:A4:EA:3B:47:60:5B:72:8A:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMXKBp6qqux3WtCk6jtHYFtyiiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:71:d2:35:df:81:82:f5:e1:1d:44:94:8b:e4:d6:f6:d9:b3:
bd:90:96:99:68:66:31:bc:56:b2:5b:4a:65:95:4d:be:2c:02:
05:37:f6:97:05:d9:2e:51:78:a3:66:e6:f2:5f:cc:3e:8c:66:
8f:3d:25:2a:e8:4e:b8:d7:46:26:5e:79:53:e7:a5:e7:a2:fc:
e5:64:f6:15:2d:28:5a:4d:21:77:86:a6:9e:d9:c7:8c:bc:fd:
6d:58:d4:f0:4d:c2:47:75:e7:2f:7a:ba:92:b9:6e:83:f5:a0:
e1:c7:08:4e:32:fa:be:01:96:88:02:b3:aa:3c:f1:91:63:aa:
a5:da:06:17:ac:38:2c:03:2e:6d:a6:2a:d7:36:30:48:62:54:
da:7f:74:a9:7e:e7:6c:71:7f:00:8f:6b:b1:fe:c4:9a:07:7c:
b2:5c:0b:9b:48:4e:62:02:53:e4:03:ff:02:70:33:43:ce:ec:
4c:95:d1:59:35:9f:35:c5:0b:7b:e6:7b:ed:85:09:b9:9f:97:
ca:02:d1:47:8c:da:80:e3:5e:be:ab:ee:8c:b4:b8:44:8a:63:
e9:2a:a6:a6:6d:f7:f6:72:a5:dd:10:4e:af:d6:f6:51:38:6d:
38:6f:35:3a:1b:67:b9:4d:62:e2:78:ca:e6:62:30:7e:05:53:
7a:de:d2:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ohNuONJuxoXE6yCotTzipMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwYzVjYTA2OWVhYWFhZWM3NzVhZDBhNGVhM2I0NzYwNWI3
MjhhMjUwHhcNMjYwMzI2MDUwMTI4WhcNMjYwMzI3MDUwMTI4WjAzMTEwLwYDVQQD
EyhjYzI0MzgwMWU3ZGUyZmNmNzA5MmFlMzIxODE1OGYxZmFkNDk1NzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwlIGIdJ7iaCH/OF5Rjn78+y9Fokw
JW0kEj5UM5mHODCP1UtguKbmPO10dJ0Kpz1QA+zRRqEI5kW4h6XY+37sd6gpHEGD
sXva4dDu2NKgxFmHlotOf36rRoQD14exE4G+CnusWyShRW9WtxUNc0qQ2ibu7Xu7
2WAmmC2egi0jucuyjHB7hQzJD5KLGzF1NDXIJ1tDwp0POTI2l2JSO85vB7cTnvRb
M0NVnXxZfstMHGBeFWFOnhPgQLJ8BNmV0euN+76daRYbwqV94N70R9hU0nOJ2cEf
lReKgszivWrVThPdHI10mnrG/72C2fnjk+GWNnMeRskGLB7VrkoyvZod3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMwkOAHn3i/PcJKuMhgVjx+tSVeRMB8GA1UdIwQY
MBaAFFDFygaeqqrsd1rQpOo7R2BbcoolMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVU1YS0JwNnFxdXgzV3RDazZqdEhZRnR5aWlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9jZGU3OTAtNGUzYi00YTRlLWI4NGMt
NTU2NTA2NzAyYTU3LzEvVU1YS0JwNnFxdXgzV3RDazZqdEhZRnR5aWlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9jZGU3OTAtNGUzYi00YTRlLWI4NGMtNTU2NTA2NzAyYTU3
LzEvVU1YS0JwNnFxdXgzV3RDazZqdEhZRnR5aWlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR3HSNd+B
gvXhHUSUi+TW9tmzvZCWmWhmMbxWsltKZZVNviwCBTf2lwXZLlF4o2bm8l/MPoxm
jz0lKuhOuNdGJl55U+el56L85WT2FS0oWk0hd4amntnHjLz9bVjU8E3CR3XnL3q6
krlug/Wg4ccITjL6vgGWiAKzqjzxkWOqpdoGF6w4LAMubaYq1zYwSGJU2n90qX7n
bHF/AI9rsf7Emgd8slwLm0hOYgJT5AP/AnAzQ87sTJXRWTWfNcULe+Z77YUJuZ+X
ygLRR4zagONevqvujLS4RIpj6Sqmpm339nKl3RBOr9b2UThtOG81OhtnuU1i4njK
5mIwfgVTet7SIQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:55:56 2026 by rpki-client