Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
File: UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft (raw, json)
Hash identifier: 60d2IYXMlWqboJSsJcLKS8hAF320/fHFWyikpCVBoAg=
Subject key identifier: 1E:1E:E5:AE:63:FA:12:60:68:03:6D:EE:88:FB:18:3F:A0:79:1C:8D
Authority key identifier: 50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
Certificate issuer: /CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Certificate serial: 019D265FA51F53F12DFA8600DE8D83A43E4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
Manifest number: 07D2
Signing time: Wed 25 Mar 2026 19:01:35 +0000
Manifest this update: Wed 25 Mar 2026 19:01:35 +0000
Manifest next update: Thu 26 Mar 2026 19:01:35 +0000
Files and hashes: 1: NRjE2ub-qyO1bTuX03Zvfc6I9B4.roa (hash: T1iZTA7aq3lUr9C6VWAbrTX5NRDe5+H29lpTIjZMGkc=)
2: UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl (hash: FHFXePTxzAJfob9L2icBGv4qMzgRNIkDHENQerNpLLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:a5:1f:53:f1:2d:fa:86:00:de:8d:83:a4:3e:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Validity
Not Before: Mar 25 19:01:35 2026 GMT
Not After : Mar 26 19:01:35 2026 GMT
Subject: CN=1e1ee5ae63fa126068036dee88fb183fa0791c8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:eb:99:82:14:83:ea:93:74:f7:ee:f0:5a:cb:
3a:bc:bb:4c:07:26:a3:07:56:21:d2:27:50:18:74:
13:7f:dd:e7:48:2e:c2:b9:e5:40:d7:b7:9e:8b:f0:
95:d9:9f:a5:c3:cb:0d:ee:76:f4:fe:05:33:54:49:
5a:c6:ea:1a:d2:64:a4:c1:bd:4d:f0:60:af:b5:16:
86:d8:20:28:30:a6:22:0f:6c:02:48:22:62:7c:e6:
1d:7b:d1:85:33:c8:1e:b7:a5:87:49:04:89:b4:fe:
95:9e:77:b5:c4:65:20:5f:a8:ba:a8:50:7f:af:cd:
31:f5:67:19:8c:8e:44:50:02:43:3d:56:e7:22:1d:
33:77:3a:3d:37:bd:b6:72:ed:43:3e:77:13:9c:0d:
0b:8d:fe:5a:69:7d:57:82:5b:58:70:8f:ac:71:04:
6f:f2:ae:0a:3e:f8:45:6c:41:9d:18:a9:9d:28:10:
54:6f:35:c4:97:1d:9d:f9:0f:0f:ba:06:11:89:19:
3c:48:67:f1:6d:10:67:aa:1a:d2:33:d7:ce:ef:35:
8f:20:ba:e4:e0:e5:3e:e8:34:da:e2:e3:79:86:d5:
dd:62:35:fe:7f:59:a1:fe:e2:ea:82:d3:ae:8e:00:
f4:02:91:5d:f3:07:50:05:db:ae:f4:b8:01:b1:e9:
fc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:1E:E5:AE:63:FA:12:60:68:03:6D:EE:88:FB:18:3F:A0:79:1C:8D
X509v3 Authority Key Identifier:
keyid:50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:7c:dd:b0:86:06:fe:51:ec:19:9e:3d:7d:9f:4d:e3:bf:97:
72:1a:4a:a7:3c:0f:4e:76:3d:ec:6f:77:bb:46:e6:2b:e3:ee:
9c:3a:8e:ba:bd:99:69:da:4b:10:11:ed:19:2b:8a:87:29:ef:
e4:85:ec:97:5c:40:38:9f:89:76:05:0d:69:2e:71:2d:1f:e0:
8b:aa:d6:fd:75:20:02:10:b2:e8:c1:b4:d5:92:ac:e6:62:cf:
f7:44:8b:5c:09:a6:0f:2c:1e:25:00:26:ad:f3:13:94:cb:2f:
8f:6b:51:de:eb:de:45:7a:32:9c:f8:d2:39:2e:40:93:f6:43:
9b:18:c8:7c:93:3a:5a:5d:fe:86:46:7e:71:0b:2c:cb:3e:4b:
7c:f8:e3:7e:e3:a3:5d:3e:fc:ea:cd:1e:e3:93:41:be:ff:1d:
47:98:25:0f:b9:0b:2a:ad:ee:4b:01:ab:5a:9c:22:7f:15:2e:
e6:0e:6f:4e:c3:8a:86:7b:6c:ec:76:c8:3a:51:41:20:8d:24:
28:4a:43:08:bb:5f:27:94:bd:97:63:6c:5b:1e:2c:f9:0c:78:
10:87:17:c5:09:5e:51:2f:19:0a:18:07:ac:45:38:6f:22:cc:
aa:2c:cf:a6:75:1d:ef:f7:1c:ec:81:cd:ad:5a:a7:99:8e:46:
c4:9e:72:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:30:16 2026 by rpki-client