Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
File: UHDcUgTez3q-pQcNdfoFjIrAE9U.mft (raw, json)
Hash identifier: 1ut6x0asEg9Z4UxGKcHJ+1EiDW5wHaaYoVmM77+itkQ=
Subject key identifier: 7B:33:BC:73:4E:48:99:83:6E:66:53:16:0B:76:82:32:1C:5E:94:CC
Authority key identifier: 50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5
Certificate issuer: /CN=5070dc5204decf7abea5070d75fa058c8ac013d5
Certificate serial: 019D273B1505A2A2BC9F78B52BC9973AE97A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
Manifest number: 15A8
Signing time: Wed 25 Mar 2026 23:01:16 +0000
Manifest this update: Wed 25 Mar 2026 23:01:16 +0000
Manifest next update: Thu 26 Mar 2026 23:01:16 +0000
Files and hashes: 1: 8MHx6pFnKDbOJZCL45Uqeu0OuEw.roa (hash: WqOpKbFAaR3JLKnMgyYQifvHuuro/dU0rsdqEF+6ZxA=)
2: UHDcUgTez3q-pQcNdfoFjIrAE9U.crl (hash: 5ZpQk7+fTfjlV3VX3ZAFRiTyBojRQ8BsjwdR2rqjWTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:15:05:a2:a2:bc:9f:78:b5:2b:c9:97:3a:e9:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5070dc5204decf7abea5070d75fa058c8ac013d5
Validity
Not Before: Mar 25 23:01:16 2026 GMT
Not After : Mar 26 23:01:16 2026 GMT
Subject: CN=7b33bc734e4899836e6653160b7682321c5e94cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b3:c6:a2:9c:8b:ba:f7:db:cb:03:b6:b1:18:
38:60:6c:a7:48:b2:59:82:a5:93:14:78:03:f1:9a:
bd:7c:45:1b:5f:6f:08:b7:73:08:2a:d1:77:af:2f:
d3:d4:28:7a:44:b9:cf:2f:03:8c:7d:bc:e8:c1:8a:
89:de:64:06:5c:4e:c4:ca:8a:09:1f:16:c5:c6:08:
6f:bf:db:2a:3b:62:d2:3f:0b:fd:24:2a:05:13:21:
65:a9:3a:10:f0:55:9c:82:56:a6:53:ae:86:cd:4c:
2a:f6:40:92:16:c1:66:5f:c7:61:c5:1c:6b:e4:f7:
ee:89:f6:bf:ec:a1:f2:62:5b:b3:d4:c9:56:97:5e:
0f:92:5b:d6:e8:a4:84:9c:48:3d:e4:c9:8c:f5:9b:
88:e7:e2:19:4b:ba:8f:86:8d:d4:3c:5a:f9:7b:17:
74:dc:7a:4a:98:9b:ff:fa:d2:1e:4b:e2:40:62:d9:
53:4b:41:f4:66:88:b1:a1:43:1b:d6:06:be:90:42:
68:54:e8:82:1a:51:43:21:25:a7:29:ba:2f:19:17:
26:81:60:f9:1d:24:32:4b:06:e5:eb:b2:0b:ba:cd:
90:db:4a:61:39:92:b3:06:cb:97:0a:43:8f:34:d7:
95:5e:8e:70:1f:d4:7c:52:c1:6c:8a:25:8b:b9:09:
73:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:33:BC:73:4E:48:99:83:6E:66:53:16:0B:76:82:32:1C:5E:94:CC
X509v3 Authority Key Identifier:
keyid:50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:02:de:e6:63:08:a8:a1:a7:94:82:30:3b:1e:be:52:e2:f1:
29:38:29:3f:76:b1:de:d8:1e:70:7b:f1:4a:7f:04:f8:68:0a:
a7:2b:0f:92:dd:08:c2:e4:c9:d5:84:b0:45:ce:eb:1d:12:97:
07:2a:5e:63:2a:2a:40:bc:86:d3:4d:8b:0a:b6:67:80:d0:30:
61:c7:f0:d3:1b:6a:fd:0c:c5:2d:64:8d:1a:52:97:28:07:a8:
05:64:67:73:94:e1:bb:38:fe:a2:0b:be:f1:e2:fc:64:df:ca:
db:a7:d5:eb:c8:31:8a:70:96:70:4b:61:db:fa:e3:a5:a2:df:
6b:c3:7b:9c:e4:a3:cd:dd:f8:6e:21:66:45:84:fc:ba:f1:fc:
b7:82:ad:a6:d7:ad:d6:3d:a4:9d:b8:16:31:ed:72:0a:aa:ec:
8b:40:c2:f9:38:d4:7e:76:4f:4d:c8:a8:fb:1d:ae:5d:6b:ef:
c0:c0:f9:dd:ab:ee:e2:c0:d0:51:db:d5:2f:39:18:51:47:fb:
4c:3d:1b:65:19:57:1f:d9:3c:0f:75:29:07:51:8c:70:ec:3c:
b8:2f:39:0e:54:e1:35:87:d9:bb:e1:15:24:35:db:cc:6c:bf:
95:db:47:d9:7f:58:cd:26:54:9c:74:8b:2f:35:a5:e4:38:7d:
56:7b:92:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:00:55 2026 by rpki-client