Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft
File: UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft (raw, json)
Hash identifier: IwdgJUlhJzG0JKe42j6Xy2B3GWkvZoEplibblKP5H4c=
Subject key identifier: 60:5C:8E:30:D3:25:2C:8A:44:5E:89:8C:4E:5F:82:70:8D:8D:B4:91
Authority key identifier: 52:F2:5B:D0:5A:C1:48:85:1F:A2:A4:63:AD:0D:E0:70:81:84:04:F7
Certificate issuer: /CN=52f25bd05ac148851fa2a463ad0de070818404f7
Certificate serial: 019D28F2D4B086F92A32CFB2EAC2CEDFADF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft
Manifest number: 0CB1
Signing time: Thu 26 Mar 2026 07:01:35 +0000
Manifest this update: Thu 26 Mar 2026 07:01:35 +0000
Manifest next update: Fri 27 Mar 2026 07:01:35 +0000
Files and hashes: 1: UvJb0FrBSIUfoqRjrQ3gcIGEBPc.crl (hash: SGJiFh6JWt2xp+Pm+kCs3G7Kg9KxQu1FsmlhqR2q6gQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:d4:b0:86:f9:2a:32:cf:b2:ea:c2:ce:df:ad:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52f25bd05ac148851fa2a463ad0de070818404f7
Validity
Not Before: Mar 26 07:01:35 2026 GMT
Not After : Mar 27 07:01:35 2026 GMT
Subject: CN=605c8e30d3252c8a445e898c4e5f82708d8db491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cd:29:e8:f4:53:4f:c4:cb:59:67:7d:cb:b4:
62:14:55:40:1f:34:10:fd:25:dd:53:a2:16:e9:0a:
99:a0:1f:4d:e7:60:1c:cf:2b:7a:23:ed:90:d3:e2:
5a:e8:86:ad:23:ac:f5:75:f0:1d:79:dd:b4:f5:60:
c1:4b:c1:58:8d:cf:d5:9a:61:c3:9d:65:4f:4c:81:
75:ab:17:00:ec:56:9e:c2:7d:03:f5:a3:97:54:0c:
c7:4c:0a:c0:64:1f:e1:be:58:f7:a5:ed:b5:92:e6:
01:3f:c2:bb:44:b3:fe:f2:90:71:b7:47:4a:2c:de:
19:16:cd:32:d6:cf:f1:f7:ec:ad:64:2e:af:47:2a:
0e:43:18:7a:78:96:b5:17:e4:b9:5b:58:fa:12:b3:
12:96:2b:5a:a4:0d:17:78:a1:db:11:99:bb:b7:c6:
dd:a6:b1:0a:c9:18:95:29:f1:d2:8b:1d:bf:0b:be:
80:24:b2:c5:95:60:03:e3:5e:78:fd:e7:f7:50:a7:
6d:bf:a9:1a:e3:92:b9:94:b1:94:53:1a:66:c5:08:
cf:78:03:b9:96:5f:61:be:9c:ea:90:70:73:97:63:
1c:d5:cd:71:27:28:72:29:c4:81:b8:e9:f4:ab:90:
38:bd:70:42:d4:90:3f:15:5d:55:6c:f1:31:85:06:
cb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:5C:8E:30:D3:25:2C:8A:44:5E:89:8C:4E:5F:82:70:8D:8D:B4:91
X509v3 Authority Key Identifier:
keyid:52:F2:5B:D0:5A:C1:48:85:1F:A2:A4:63:AD:0D:E0:70:81:84:04:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:58:b0:a6:d3:45:43:b0:1c:c5:87:0c:c7:da:0f:c7:4c:48:
c2:0d:5e:dd:78:1a:23:43:96:58:3d:5f:7e:4f:c3:b5:07:41:
bc:f6:c1:87:f7:5e:6d:3a:63:8e:aa:c3:de:aa:54:69:26:29:
8c:85:90:0f:58:a1:7a:c1:ef:a3:5c:41:7e:32:34:3c:69:e5:
3c:df:2a:19:ef:11:e1:9e:1a:54:8d:d4:ed:3f:3c:c2:c1:9e:
d7:aa:ee:4f:c6:31:0d:a7:db:4e:47:a2:ec:ea:cf:82:86:12:
f7:60:30:94:91:03:40:ba:5a:bf:ff:8e:39:a3:a3:10:2c:d2:
12:0c:29:2d:b9:a1:f3:f5:c7:2c:b5:e2:8e:41:21:b7:c7:a6:
5c:47:8a:20:70:a4:5c:45:92:1c:be:18:70:ff:e8:e4:54:a9:
7e:50:36:29:4f:b7:c5:97:b1:8a:c7:2c:fc:d8:06:30:6b:c1:
0c:31:b0:be:f9:8a:b1:0e:55:f9:88:e1:8e:26:49:9d:4e:0f:
23:b6:d9:c2:1b:37:1f:f8:cb:08:68:57:08:55:c2:18:e5:a2:
09:2d:84:07:1c:93:0f:81:57:03:90:f0:3c:23:16:db:83:4b:
db:ae:fb:2a:04:2d:87:e4:0e:8c:73:64:ad:c6:a7:18:95:79:
77:ec:21:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:17:02 2026 by rpki-client