Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
File: umCk2HTZYByBQsNS-AxWpDJ2zUc.mft (raw, json)
Hash identifier: C9L5g13Gn6r2iRnLy584sXn2qgUekbOz4TvseqzZXyA=
Subject key identifier: BF:1A:E5:4F:BD:B3:FE:DA:41:5D:E4:4D:07:13:4C:21:5E:CF:30:17
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 019D277241F9AC25D121A8E0B4C801500D8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
Manifest number: 1896
Signing time: Thu 26 Mar 2026 00:01:32 +0000
Manifest this update: Thu 26 Mar 2026 00:01:32 +0000
Manifest next update: Fri 27 Mar 2026 00:01:32 +0000
Files and hashes: 1: WoQJ2osYoFuYoWIyHvgo9Cec_t4.roa (hash: wB9N0PcZkOcrh3O/SmhX92RwWwOtgRdO/TEPN7XWM+M=)
2: _Tm2JxUvXUUwS72Udu0m-0BuZ-0.roa (hash: 1aBi4zXI+QFcwyGnxOISG2CE4CmnOOCxmThNKagGEBI=)
3: f52WTL9GGOhNAMMc7rBjnwIaWTc.roa (hash: 5tjbY4JIpfmV2gm3hhjE23Rvphjz0c3k2ZjG+/otkGI=)
4: p32AqgICpWGV5IUX6fmyer79QMY.roa (hash: Qp7WxCFuaih23zF/G1VCAMMPnZC5xDFs0GhMuipzmtk=)
5: qVb5PhcWzp2jSjoiwq3ZVNNlrxY.roa (hash: uqKfbYVlW5hlUaluGy9iii/BrL+kIfu3455zS2T6GtM=)
6: sSAJGD3q9WywlcJzJJU8b9wkNnI.roa (hash: GScXqHaLC/DvIVFv4LbVlGQC4NvQYCtdCncZDyaINVM=)
7: umCk2HTZYByBQsNS-AxWpDJ2zUc.crl (hash: nbthUpsceogg/QWfzu6WBGDu2+5Yqx+Ro3kRwrPaCP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:41:f9:ac:25:d1:21:a8:e0:b4:c8:01:50:0d:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Mar 26 00:01:32 2026 GMT
Not After : Mar 27 00:01:32 2026 GMT
Subject: CN=bf1ae54fbdb3feda415de44d07134c215ecf3017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:09:35:8c:15:1b:8b:2a:ea:e5:d6:54:2f:ac:
96:bc:9c:66:e1:1d:b6:b5:da:fa:b7:b6:be:62:b8:
ef:15:0d:1a:b2:01:74:17:4f:fb:73:29:45:11:b2:
db:5b:c1:98:f5:c4:31:1a:ff:54:06:22:aa:ee:18:
93:ed:61:89:36:fb:85:29:dd:a6:f3:c0:12:a1:c6:
58:4f:21:54:6b:c9:90:a9:03:7c:93:41:03:a8:53:
62:0c:a2:6f:fc:9e:e2:62:c8:bc:28:3e:b9:91:37:
86:08:ad:28:c7:4e:5f:18:fb:44:63:9e:a5:a7:f5:
4d:6d:5b:d1:06:82:8a:f8:57:11:c4:7a:1e:69:74:
c8:55:be:3e:56:72:0a:ff:ab:b8:30:82:03:8f:ba:
74:e9:93:63:f5:01:64:dc:cc:db:84:6d:9b:86:16:
90:fa:71:c9:77:53:97:1c:c3:91:7e:ed:0d:b0:58:
79:a6:53:f0:a0:d5:3b:15:2d:51:f5:5f:0e:26:bd:
7c:22:66:71:00:e4:48:dc:76:d2:f1:e0:46:0c:c9:
9e:38:a5:e0:a5:76:6e:84:04:16:67:36:4f:a9:e1:
2e:e7:23:3c:8c:f2:8f:78:72:63:7c:2c:a5:98:63:
ec:32:eb:e0:9b:dc:33:fb:0c:44:6c:f8:9a:0d:82:
67:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:1A:E5:4F:BD:B3:FE:DA:41:5D:E4:4D:07:13:4C:21:5E:CF:30:17
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:c8:65:90:74:38:e4:42:c2:ec:25:69:a1:fa:b7:a2:86:0c:
dd:18:4e:e4:71:43:32:96:f1:15:13:4e:77:ef:d4:5c:d9:db:
dc:5b:37:e6:20:01:f3:05:a5:bf:71:a6:61:2f:f2:6b:bd:8f:
a0:9e:03:dc:27:60:42:46:8e:58:f0:cc:2b:bd:19:e5:a3:34:
24:6c:ac:e5:30:0c:83:64:22:34:42:32:84:c2:68:0b:2a:a8:
96:a4:c7:da:86:79:15:dc:59:05:8a:d2:14:76:f6:72:83:7a:
f3:8b:83:8e:47:9b:3b:67:c8:f4:cc:a1:ff:0a:3f:ff:15:5b:
36:f1:d5:64:d9:e1:93:19:db:57:6b:aa:cf:97:d0:be:f5:86:
7c:b2:a1:3f:e4:2e:92:4e:f4:1f:b8:76:bf:a9:23:15:8f:44:
55:cc:eb:d9:b5:ec:c7:58:2b:90:23:31:35:b4:a3:3c:6f:9a:
6e:29:62:5d:93:6e:de:bf:03:a0:07:11:56:c0:11:6a:b1:72:
79:27:e1:af:29:cb:8d:c9:dc:31:06:2e:7c:5b:fc:32:a4:27:
0f:bb:43:1e:f4:8b:5d:15:0b:3d:7d:f4:46:7e:56:e3:2e:8c:
fe:2b:ea:62:69:0a:a9:7e:97:94:99:9b:06:54:42:8b:3d:18:
91:09:40:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:23:04 2026 by rpki-client