Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
File: UHDcUgTez3q-pQcNdfoFjIrAE9U.mft (raw, json)
Hash identifier: UIJGAZRGYkWWSWhHOxtQoCDklCUCsSE+sTjAqxgz2sw=
Subject key identifier: 00:6E:B5:DB:84:13:2C:D6:38:A3:8A:C0:4B:33:80:41:25:77:3C:5F
Authority key identifier: 50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5
Certificate issuer: /CN=5070dc5204decf7abea5070d75fa058c8ac013d5
Certificate serial: 019E1E6CA97B4643973EED449F978ABBC153
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
Manifest number: 1628
Signing time: Tue 12 May 2026 23:01:38 +0000
Manifest this update: Tue 12 May 2026 23:01:38 +0000
Manifest next update: Wed 13 May 2026 23:01:38 +0000
Files and hashes: 1: 8MHx6pFnKDbOJZCL45Uqeu0OuEw.roa (hash: WqOpKbFAaR3JLKnMgyYQifvHuuro/dU0rsdqEF+6ZxA=)
2: UHDcUgTez3q-pQcNdfoFjIrAE9U.crl (hash: K4Q5Jgl4lxf6ewjGFnQ1VCjuezJuytAZNVK+UFmiNX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:a9:7b:46:43:97:3e:ed:44:9f:97:8a:bb:c1:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5070dc5204decf7abea5070d75fa058c8ac013d5
Validity
Not Before: May 12 23:01:38 2026 GMT
Not After : May 13 23:01:38 2026 GMT
Subject: CN=006eb5db84132cd638a38ac04b33804125773c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:04:9a:48:1c:01:0a:56:91:50:5c:5c:04:c8:
c8:1c:f0:5e:0b:9c:ae:e6:3c:ca:63:8d:ef:d1:cf:
0e:b8:8f:95:be:7a:0b:7b:f0:b7:d5:1b:f0:43:a8:
3f:e5:1b:27:d0:4e:ab:27:2a:00:c0:51:88:30:29:
80:e4:df:ad:d4:b8:ee:8a:c2:8e:6c:4d:28:a2:ce:
46:6a:bd:86:fb:e2:19:eb:46:4b:3e:3d:fe:dd:ba:
d5:81:a8:9e:e9:f7:58:3b:49:f0:6b:77:9e:c4:9e:
74:7d:5e:e3:b9:4b:8e:24:65:7a:74:08:84:33:08:
ec:04:f8:8a:07:59:b9:49:5a:e4:bb:b3:85:0f:9f:
9d:fa:93:ac:0f:eb:7c:d4:0f:86:65:56:01:cd:62:
e9:7c:bb:8f:5c:02:dd:b9:94:97:be:6b:9b:85:46:
a3:0f:4b:fd:1f:25:4d:c8:34:50:8a:bf:74:8c:7c:
72:65:06:87:87:83:75:ce:cf:9d:85:19:6f:38:bf:
56:b0:7e:e2:df:73:86:2e:30:1f:58:88:d4:c4:7d:
1d:a6:cc:5b:df:6f:c5:d9:60:32:e3:ca:12:40:3e:
d1:b7:78:88:bb:fe:8b:69:bf:47:bb:cc:e6:60:81:
7d:13:e8:91:2e:6d:cc:8e:19:d0:2d:4b:92:14:16:
6a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:6E:B5:DB:84:13:2C:D6:38:A3:8A:C0:4B:33:80:41:25:77:3C:5F
X509v3 Authority Key Identifier:
keyid:50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:b4:9a:9a:08:6d:92:99:51:86:b5:e3:f9:5c:a6:03:0b:3e:
6e:a2:f9:67:24:fe:85:0d:63:cd:47:85:5a:70:dd:d9:ac:ce:
c7:f0:8b:ec:a1:39:c5:25:c0:46:a1:37:6a:27:e9:8f:a2:46:
12:22:0e:b2:06:98:e9:d2:fd:d0:04:d8:73:b3:21:9e:0f:ea:
d6:c3:53:56:78:2a:63:06:c3:9e:e3:e2:f7:45:9f:b7:99:55:
bb:6b:a9:2e:fd:b1:38:bd:51:be:b5:cb:4d:bb:61:9f:c5:53:
90:4e:8f:37:07:e4:43:60:2c:ef:53:3f:13:62:7e:cf:ab:1c:
c8:95:41:c6:85:df:8d:5d:a6:e1:bf:e9:25:66:98:df:81:a8:
a0:e2:c0:08:37:83:d6:7c:a7:c4:db:ad:92:dc:37:89:74:6c:
13:6d:71:d4:8d:78:0a:d6:e2:5a:0e:06:ec:d3:a8:68:22:88:
f6:64:df:eb:a9:9e:0b:d0:77:d0:dd:a0:87:aa:3e:2a:ba:e2:
f2:c7:03:7c:ea:9e:df:41:81:af:e9:fb:d3:16:ef:d8:95:dd:
bb:65:24:25:1f:10:45:ab:b1:0d:df:ef:a7:2b:d6:40:08:f1:
eb:cc:25:8d:63:f1:b0:09:3c:80:9b:11:54:74:c5:b0:d4:52:
e1:61:de:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:01:48 2026 by rpki-client