Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
File: ufurlhxKPhbNdhvC_tuaKBd8tHM.mft (raw, json)
Hash identifier: rBfmiYxmbj/TLmL9DyIbuSbgXudsmCS4gGO74YFNjGY=
Subject key identifier: 27:1F:F1:E9:5C:68:BE:CF:81:FB:BC:C6:A2:2A:7F:CF:E3:F2:F0:70
Authority key identifier: B9:FB:AB:96:1C:4A:3E:16:CD:76:1B:C2:FE:DB:9A:28:17:7C:B4:73
Certificate issuer: /CN=b9fbab961c4a3e16cd761bc2fedb9a28177cb473
Certificate serial: 019D28BB5D6751B05B10DF13DBC5551490D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
Manifest number: 030D
Signing time: Thu 26 Mar 2026 06:01:00 +0000
Manifest this update: Thu 26 Mar 2026 06:01:00 +0000
Manifest next update: Fri 27 Mar 2026 06:01:00 +0000
Files and hashes: 1: HhLUsfKh-_ZQPH0jp_nvnXhcEik.roa (hash: JQHkY+TwXCZHHIexxM/lQ6tlNIHOgno3i+/VT4xHUVI=)
2: ufurlhxKPhbNdhvC_tuaKBd8tHM.crl (hash: 4wMRvXWTbNbxTwHKXtZBUMafWNemg963ybNMGAhPnf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:5d:67:51:b0:5b:10:df:13:db:c5:55:14:90:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9fbab961c4a3e16cd761bc2fedb9a28177cb473
Validity
Not Before: Mar 26 06:01:00 2026 GMT
Not After : Mar 27 06:01:00 2026 GMT
Subject: CN=271ff1e95c68becf81fbbcc6a22a7fcfe3f2f070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d9:09:f7:5a:8c:44:74:0c:f6:d3:07:2f:8a:
88:28:36:79:3c:06:8c:60:c5:bc:83:1c:80:74:2d:
eb:8c:e5:71:b7:6f:d1:40:d2:75:93:53:1c:e5:e5:
8e:04:26:ad:a9:30:a5:64:9a:fa:75:49:d9:6d:8d:
1d:08:80:fb:a7:8f:8f:22:3c:f8:1c:92:73:c2:2f:
c7:6f:ff:14:51:53:88:68:1d:f5:d2:40:03:b7:2a:
79:d3:ac:7f:45:5b:82:f5:80:7b:fd:8b:30:b9:d1:
7e:24:f0:f9:d3:77:75:c0:db:91:55:a0:fd:93:49:
ba:c1:0a:06:11:ff:d9:dd:44:c3:1e:32:49:7a:03:
08:bd:b3:ef:8d:12:bb:d1:86:e8:a6:ce:4d:6b:c0:
c3:5e:0e:a9:42:9d:4f:f3:1c:d8:70:ac:61:a1:ae:
2d:78:03:81:3b:28:a3:52:8e:8d:bc:bc:7a:97:51:
bc:12:fd:82:72:91:0a:2a:b2:b3:19:81:cc:3e:bb:
97:d3:cd:a9:33:de:50:b2:2b:70:3d:9d:34:ce:3c:
74:41:9e:a6:c3:86:50:8f:56:c7:56:45:e8:4f:19:
11:4f:57:a8:9d:3a:89:31:d1:cf:cd:04:54:3d:97:
01:88:32:14:71:c5:0d:ea:9b:db:a3:07:74:1c:6b:
0e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:1F:F1:E9:5C:68:BE:CF:81:FB:BC:C6:A2:2A:7F:CF:E3:F2:F0:70
X509v3 Authority Key Identifier:
keyid:B9:FB:AB:96:1C:4A:3E:16:CD:76:1B:C2:FE:DB:9A:28:17:7C:B4:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:1c:a1:31:e6:86:19:9b:4e:ad:47:ca:c1:01:07:22:ae:39:
a7:5c:59:2f:25:9b:bc:01:fc:12:b8:0f:71:c2:0e:56:c9:aa:
d2:ae:1b:95:28:68:e0:c8:ea:99:69:ec:d5:e5:46:d9:50:eb:
00:70:a9:e3:2a:ba:23:28:57:35:25:97:93:50:4b:6b:b5:19:
e0:ac:9d:5a:f1:2c:41:9c:97:14:99:5d:c3:a0:3d:f0:ac:58:
05:ed:88:55:3b:20:35:ae:ab:7b:6a:f4:36:6d:0e:ab:0d:4c:
93:a9:82:07:08:5d:7b:03:be:9d:b0:db:8e:d8:25:2a:c9:31:
6b:c4:81:37:0f:c9:99:b5:79:96:54:21:55:a0:3f:d5:8c:22:
e7:08:41:6a:a4:0f:94:a2:40:2d:a1:39:41:be:dc:26:af:cc:
be:c2:29:42:45:c1:3c:19:f9:31:05:0d:af:66:3a:95:8b:1f:
16:66:6a:6a:96:dc:a0:fb:00:92:1e:03:f9:a0:b2:13:68:11:
a9:95:bf:d2:52:4e:4a:56:10:a0:ed:8d:5a:bc:5d:84:c4:70:
3a:23:a0:3f:b1:8a:04:92:d9:0e:b3:dd:7d:d9:21:0f:b4:92:
ba:e0:e4:f4:e5:25:ee:0c:37:c8:71:97:ca:82:af:90:75:10:
a4:ba:fe:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:19:08 2026 by rpki-client