Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft
File: UqWb8EMIAwY1n1opSR9UWwcFHAU.mft (raw, json)
Hash identifier: AVD5TnP2pK7Zu+4Un2HQbcDtTy3kmHKzPMIUs/i1BzE=
Subject key identifier: 0F:53:96:7D:56:DE:76:94:D9:67:A5:FB:83:E7:2C:F5:38:A9:64:98
Authority key identifier: 52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05
Certificate issuer: /CN=52a59bf043080306359f5a29491f545b07051c05
Certificate serial: 019D2C60ABE571796703CC2838BEFA1BC790
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 23:00:26 +0000
Manifest this update: Thu 26 Mar 2026 23:00:26 +0000
Manifest next update: Fri 27 Mar 2026 23:00:26 +0000
Files and hashes: 1: Hx2Y_QxMoZhXy4e6JKX5KPRxYeM.roa (hash: 3uzaIFxXEFFxlqJhGt+PM/l/uaNGyKXUk1SwVD4qq1o=)
2: UqWb8EMIAwY1n1opSR9UWwcFHAU.crl (hash: LFn6yReaOVILi8fNPiQaARDdjVc4C95FW5u/kV73pUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:60:ab:e5:71:79:67:03:cc:28:38:be:fa:1b:c7:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a59bf043080306359f5a29491f545b07051c05
Validity
Not Before: Mar 26 23:00:26 2026 GMT
Not After : Mar 27 23:00:26 2026 GMT
Subject: CN=0f53967d56de7694d967a5fb83e72cf538a96498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f2:99:f0:9c:72:07:33:64:73:4b:b9:0d:60:
36:b6:5f:3a:fc:28:1a:50:a6:6d:e3:45:b1:a3:07:
62:0c:ef:32:11:74:75:13:0d:ef:b1:03:3c:8b:ce:
3c:da:04:8e:77:c3:b6:82:69:cf:c7:37:63:56:9e:
ed:c4:43:28:6e:54:11:9a:a3:19:1b:a5:61:05:77:
d4:fa:fb:43:16:88:bf:6e:b4:ad:2f:8c:0a:bf:65:
3d:35:b0:31:8d:88:85:84:2e:66:7e:cd:ca:15:ac:
8c:43:47:9c:03:09:29:bb:13:fa:54:43:64:d9:f8:
a3:12:66:74:0a:df:9c:2e:70:b0:86:ca:b4:7d:9e:
32:c3:21:17:58:37:c4:c5:af:2e:bb:e2:8a:dd:12:
ea:ee:9f:35:f1:5c:d4:7a:7c:0f:b4:ef:70:b7:0b:
8c:cb:f4:c5:4d:ce:cb:f4:66:e6:69:40:63:c1:f0:
ca:c7:3b:17:2f:a6:73:84:3e:f7:8f:37:30:fa:c5:
07:3c:1d:16:15:5d:1c:99:7c:88:e5:24:9e:ea:1a:
d9:dd:eb:76:07:50:07:20:77:5d:1d:83:57:99:7a:
fa:52:9b:57:64:31:cc:b2:ce:9b:e8:c1:32:0d:dd:
e6:68:56:83:28:e6:e9:4f:ff:7a:9d:1d:5f:1a:8b:
99:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:53:96:7D:56:DE:76:94:D9:67:A5:FB:83:E7:2C:F5:38:A9:64:98
X509v3 Authority Key Identifier:
keyid:52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:74:46:f0:b1:44:bb:03:81:7d:35:73:9c:2e:b9:b7:30:0f:
da:c1:0e:0f:04:58:cc:57:44:fd:bf:78:c0:cb:8e:28:90:37:
28:3a:d7:a6:f3:b4:21:fd:1f:30:b0:98:da:b4:0e:e9:48:61:
53:9f:9a:ff:92:63:3a:ba:fb:40:db:d8:d0:d0:35:e1:f4:1d:
6e:8a:82:10:3e:13:7f:32:2e:2c:63:bc:26:ce:71:fd:e7:b0:
74:89:c0:bd:e5:e0:70:75:2a:c0:b8:fe:40:0d:65:5c:65:3c:
d5:b5:55:7f:c3:cb:df:0f:32:6d:1b:5e:3d:e9:df:04:e2:30:
db:5f:0e:b8:e8:37:da:12:4d:98:cb:e7:9a:53:66:43:e6:15:
9f:4b:e3:42:df:fd:03:2b:9d:e2:e5:c1:18:40:c4:e3:9f:e6:
44:4b:72:8f:4c:9f:0c:3e:ee:3c:16:1e:03:eb:d1:33:37:78:
ba:9a:4a:09:26:b7:e1:20:6f:19:ee:de:e0:6a:41:7e:89:22:
92:3d:17:41:ba:19:a0:c9:51:77:f6:52:eb:94:45:3b:45:24:
68:0b:87:26:4b:44:7c:63:24:7f:42:90:5d:53:fb:ec:b7:b9:
50:6f:d4:9a:d3:23:be:af:77:72:d7:2d:bb:62:31:2b:e0:52:
5c:15:10:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 03:10:47 2026 by rpki-client