Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json)
Hash identifier: k8WNGJoGT/VLPpEk5MpXh1LmUOobzTSynUVlshpV+iA=
Subject key identifier: 57:DF:61:39:CE:97:A0:3C:67:BF:7F:58:CF:DE:BE:E7:02:CD:C7:ED
Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Certificate serial: 019D2AA9546ABE96E2580C22A3AD11F14ADE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
Manifest number: 0D29
Signing time: Thu 26 Mar 2026 15:00:33 +0000
Manifest this update: Thu 26 Mar 2026 15:00:33 +0000
Manifest next update: Fri 27 Mar 2026 15:00:33 +0000
Files and hashes: 1: R4Xor_QOm8kkue50w13Q01GksLs.roa (hash: hz+RaanVrQajJNEjuOfF15dTh+z02W3jfEQAUxrmmAk=)
2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: Yo2jzXcQAb3fEiz2lyl/5ZAURXrcYyitZZx5WBkOe/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:54:6a:be:96:e2:58:0c:22:a3:ad:11:f1:4a:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Validity
Not Before: Mar 26 15:00:33 2026 GMT
Not After : Mar 27 15:00:33 2026 GMT
Subject: CN=57df6139ce97a03c67bf7f58cfdebee702cdc7ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:05:86:f9:b9:d9:87:97:d8:81:89:49:26:2d:
f9:dd:90:25:fb:96:27:78:b9:40:27:a9:de:43:dd:
19:57:82:4c:30:d1:43:80:89:90:2f:d7:4f:3b:f1:
54:ac:7d:57:8f:01:2d:6a:59:c3:0f:a1:c5:5c:5b:
d4:fa:80:ba:46:1b:ae:81:e4:13:9c:7a:3b:e1:19:
59:5e:b2:1e:48:1b:66:48:0c:27:10:a0:ef:7e:bf:
c3:a0:7c:7c:45:7d:f5:60:e6:28:db:3a:69:2a:95:
79:e4:44:80:eb:1a:e6:87:b4:ab:d1:23:be:77:d2:
e8:73:1b:84:8a:be:94:f1:9d:b6:82:66:e7:95:1a:
65:ca:d3:02:0c:50:fc:ec:d8:67:e5:02:cb:a5:ed:
87:d1:45:0f:9b:ee:2c:93:a8:0c:a8:71:a6:d0:02:
a4:e8:5f:80:d9:50:6e:9d:d5:d5:e8:e1:ff:26:fd:
7f:cb:48:25:e2:43:0c:6b:70:4f:d8:03:2f:8c:15:
02:ae:03:9d:c5:7d:fa:3e:26:86:6c:05:70:14:29:
66:a6:3a:c8:66:5a:8a:05:4a:72:8b:8e:c2:2d:90:
21:1e:91:b7:eb:5f:70:1d:44:23:c2:04:f4:6e:ea:
d6:97:3c:7b:c9:7b:ed:d6:80:e2:fc:e1:0c:4d:73:
16:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:DF:61:39:CE:97:A0:3C:67:BF:7F:58:CF:DE:BE:E7:02:CD:C7:ED
X509v3 Authority Key Identifier:
keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:52:35:30:d5:0f:d4:ed:3f:20:d6:19:78:98:4c:2c:34:e0:
e0:90:7e:b7:c1:1c:99:61:00:cc:ad:7e:37:11:60:ca:d7:7e:
4f:06:e5:90:e9:93:93:17:19:77:ca:58:ac:09:f4:57:eb:7a:
16:d6:61:d6:73:49:a8:22:ce:12:46:fc:70:06:1c:49:ef:85:
27:3b:2d:2c:8e:92:5a:a1:bc:e9:82:ec:30:6c:5c:40:18:cc:
cf:83:11:a1:6f:20:6d:f7:95:d9:64:24:21:0c:a5:8b:3e:a1:
4c:f9:ab:58:fd:97:94:e0:09:38:b2:03:9d:33:c7:4f:ea:61:
03:f2:52:5c:a3:08:6c:87:c6:0f:36:c1:d2:ef:c7:ab:b9:62:
d0:c7:72:86:f4:0a:30:dc:20:9f:33:a1:ce:99:52:6a:76:97:
a1:ef:24:6d:fd:1f:34:77:4f:9b:e9:d7:98:59:04:75:ec:6b:
47:0b:3a:26:5c:14:30:0f:18:33:c7:8d:5e:f6:12:1a:38:01:
70:b8:b4:69:bd:05:0e:d6:96:c0:02:eb:f4:c3:11:af:cd:d0:
28:18:5a:9b:02:93:8b:e9:98:fe:07:f2:f1:7b:ce:f2:65:a3:
bd:c1:06:74:17:4a:ed:59:aa:8b:82:38:84:dd:6f:4a:3c:5c:
20:48:d1:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:24:13 2026 by rpki-client