Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
File: zUBlln3sCStfyQFS5KlTObodIok.mft (raw, json)
Hash identifier: uAcWEG4lSOKWxd0vr66Cen3RzmWfHh9lMWhfM9W5508=
Subject key identifier: 89:3A:A9:56:8F:FD:08:4C:D1:CB:D4:AC:CF:FA:97:B1:9D:8F:5C:9D
Authority key identifier: CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
Certificate issuer: /CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Certificate serial: 019E1F4813D43FE5E2DB7D05DA7882DD1922
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
Manifest number: 0F5E
Signing time: Wed 13 May 2026 03:01:17 +0000
Manifest this update: Wed 13 May 2026 03:01:17 +0000
Manifest next update: Thu 14 May 2026 03:01:17 +0000
Files and hashes: 1: wRE9U-STcq388gs--_aR0rhDAmE.roa (hash: PeDJ2qi9G/BGwM64tes30qEst81Dt7OlqBewf1kK90o=)
2: zUBlln3sCStfyQFS5KlTObodIok.crl (hash: zknHzZnW5XYDxq0M1I/8jGFmWV78zwuRLUzn2YPerKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:48:13:d4:3f:e5:e2:db:7d:05:da:78:82:dd:19:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Validity
Not Before: May 13 03:01:17 2026 GMT
Not After : May 14 03:01:17 2026 GMT
Subject: CN=893aa9568ffd084cd1cbd4accffa97b19d8f5c9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3f:f6:ee:6b:99:77:6e:8f:c8:0e:3e:7d:a3:
51:a4:1c:b8:e3:f3:c4:9c:06:8b:db:de:9c:13:32:
2e:41:86:5b:65:2d:6a:18:27:49:72:21:ed:75:c3:
6d:d0:5b:2a:d8:8d:86:41:b3:b1:a2:76:35:5a:01:
59:5d:c4:cf:55:44:9b:4d:5e:bf:87:35:df:2d:17:
ad:fd:30:d4:24:54:3b:ab:07:a6:2f:8d:2a:fa:24:
de:b1:de:06:b9:ee:92:c7:c2:5f:9a:67:d7:c5:0e:
25:b2:34:99:65:a3:ef:b7:a1:87:79:58:06:d2:cd:
cb:8b:3c:bf:ad:80:be:88:6b:03:64:25:66:ed:d8:
22:2b:9a:7b:4c:d6:93:12:91:b2:40:0b:4c:4a:9b:
b0:1c:25:43:18:ee:48:bd:4e:58:5e:4a:fe:1e:5b:
cb:84:3d:e7:91:2e:bb:02:ea:e7:8e:13:e4:1c:f3:
c5:70:c9:46:c8:9d:cd:94:01:a4:86:f5:93:53:ad:
ae:47:7a:84:85:68:b7:bd:30:ef:ff:a7:6a:ff:50:
cf:2d:30:15:2e:e5:a2:68:29:d2:83:bd:e9:26:a9:
1c:16:1e:0b:6b:bc:a6:dd:91:9f:24:51:db:db:8e:
96:26:41:49:c6:5e:a4:a7:ef:13:79:89:cd:3f:c8:
48:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:3A:A9:56:8F:FD:08:4C:D1:CB:D4:AC:CF:FA:97:B1:9D:8F:5C:9D
X509v3 Authority Key Identifier:
keyid:CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:41:28:73:6b:bc:ea:6b:73:01:30:8c:19:1c:64:59:d1:2b:
4f:de:ee:98:a1:37:6e:b2:72:6d:1d:ec:09:d7:45:4f:e0:44:
a7:88:14:d0:5b:25:d6:81:30:8f:8b:83:bc:e1:b8:ca:3b:4e:
7e:b7:3b:5c:6c:11:a0:02:fe:16:6a:2c:3b:88:40:b2:fc:ad:
3f:89:87:13:e8:d6:43:b1:3d:83:e6:ac:f3:de:ac:79:84:a2:
32:29:24:2b:5a:8f:36:77:b3:27:8c:06:52:04:03:4b:5d:13:
1f:8b:f1:13:7b:52:2e:5b:d2:bc:fc:36:dd:05:d6:72:1d:33:
b9:9d:d1:7d:b3:ea:cb:c9:77:ed:9a:b1:84:5a:41:ea:64:7c:
0d:24:03:d4:aa:cb:be:56:1a:71:83:2d:d3:78:2c:f4:d8:16:
42:56:28:0a:78:61:34:c6:24:fc:84:c3:11:f9:1e:3b:9f:2a:
12:1e:aa:18:47:4e:7f:7c:70:6a:9b:de:d7:93:52:a2:c8:29:
5e:57:40:39:0b:85:f6:40:35:72:07:e7:a0:74:25:31:6b:53:
a6:f7:0c:70:73:30:78:d7:35:a0:03:d7:86:9c:f2:39:30:b8:
93:92:35:d1:93:4d:43:a2:f7:47:28:15:67:37:fe:1e:ba:cf:
0f:b5:4e:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:34:26 2026 by rpki-client