Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json)
Hash identifier: MBD6LTtMmBo1bQoyFJSRhf9eANBdll1wZKgg+LHKb/c=
Subject key identifier: EC:83:3A:50:16:0B:11:56:F5:38:03:95:12:1E:22:8C:DB:5E:1C:18
Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Certificate serial: 019E1FED22BFAC1C9A87C6D4AD4B16EFA6A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
Manifest number: 0DA8
Signing time: Wed 13 May 2026 06:01:35 +0000
Manifest this update: Wed 13 May 2026 06:01:35 +0000
Manifest next update: Thu 14 May 2026 06:01:35 +0000
Files and hashes: 1: R4Xor_QOm8kkue50w13Q01GksLs.roa (hash: hz+RaanVrQajJNEjuOfF15dTh+z02W3jfEQAUxrmmAk=)
2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: Tn4Q1yY1dWloCuEGZELUKmpsTM/zAlYhucFSwqIVxcM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ed:22:bf:ac:1c:9a:87:c6:d4:ad:4b:16:ef:a6:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Validity
Not Before: May 13 06:01:35 2026 GMT
Not After : May 14 06:01:35 2026 GMT
Subject: CN=ec833a50160b1156f5380395121e228cdb5e1c18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:89:19:32:eb:f6:27:46:cf:fd:a9:88:d5:e1:
21:ab:da:74:0a:47:d1:ad:cb:9b:34:33:1b:5a:c3:
b3:21:a3:d8:20:8e:25:f3:10:4e:0a:05:6b:6c:30:
60:6a:5e:f8:82:b1:81:b4:f7:74:47:ab:2e:4d:61:
9f:77:43:91:0e:13:81:d5:36:79:57:2a:b1:d7:35:
4e:fb:73:4e:ae:d2:af:44:39:8d:c2:31:c5:52:3e:
3b:3d:8e:8a:21:bb:2b:38:8e:59:c3:69:13:d0:b3:
a0:88:92:de:96:95:02:34:75:c1:44:4d:1a:87:17:
f8:69:a5:06:e9:d9:f2:c1:e3:dc:73:52:30:bd:66:
c5:22:bd:fd:f5:10:7e:32:bc:29:3b:df:31:12:d2:
80:d8:bb:c3:ce:f6:11:38:e9:2a:a1:77:31:c6:28:
4f:18:53:4d:e6:9a:c6:b7:31:fb:d6:f1:cf:e3:2b:
67:a8:97:7d:1e:cb:1e:c1:a9:86:68:43:31:1e:9d:
10:b8:bf:cd:57:ea:7b:0e:8d:45:c2:4c:33:87:85:
d5:d5:2a:a6:0a:aa:f5:b1:19:5a:4c:6f:f7:a9:71:
dd:8e:75:c4:fc:29:bb:54:81:16:7a:80:69:c1:3a:
a5:ba:06:c4:f7:58:4c:29:d1:95:04:c2:56:22:92:
55:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:83:3A:50:16:0B:11:56:F5:38:03:95:12:1E:22:8C:DB:5E:1C:18
X509v3 Authority Key Identifier:
keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:f1:f3:1c:4a:e7:04:0f:76:ff:31:f6:0d:d8:f6:e3:ad:ad:
29:77:9a:46:96:93:33:47:2b:1e:55:91:da:7d:eb:08:8b:65:
08:3d:b0:8c:93:bb:40:ae:c9:a7:5a:79:ef:83:86:e3:77:2c:
90:77:85:05:9c:d7:4a:45:ce:34:99:cb:71:ec:2b:0c:b3:da:
de:37:57:ac:4a:84:6e:ce:94:9c:63:3e:f4:8d:ea:07:6a:a6:
e3:0b:1b:f9:ed:e5:da:ca:fc:99:33:92:be:f4:df:6e:6f:c6:
e1:43:3c:35:46:c0:eb:26:fd:94:42:cd:79:dd:a2:34:98:94:
00:45:87:b4:a0:33:34:77:85:44:70:26:eb:b0:aa:78:8b:ff:
09:54:ab:44:c9:90:d2:a0:0b:74:49:a0:7e:cb:1a:f3:6b:17:
6c:92:0c:ca:81:ea:0a:69:99:1a:58:d1:fe:0b:d6:14:a3:53:
99:84:57:8f:7e:c6:8f:2e:5d:aa:f0:bf:9e:db:12:56:23:fe:
81:17:4b:c0:84:98:0e:dc:ee:28:23:37:04:83:34:d8:f7:ab:
ba:60:e3:3f:20:1e:9a:e0:81:21:cb:64:8c:56:aa:85:5b:ed:
eb:65:3b:93:9f:77:7e:d6:d0:62:e6:fb:e0:9b:2d:8b:6c:c9:
14:0b:6c:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:01:05 2026 by rpki-client