Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
File: UIJpb7xB2QYWimDOCUlJAiz2Keg.mft (raw, json)
Hash identifier: JDQtsddOr6doe5dnJOm4Ldpv7acZk8fD4welDMea+Nc=
Subject key identifier: 3F:7F:99:31:D0:65:E9:80:73:D3:C5:CF:93:A2:67:70:FF:C2:28:E0
Authority key identifier: 50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
Certificate issuer: /CN=5082696fbc41d906168a60ce094949022cf629e8
Certificate serial: 019D2696279FCCA08B47B939C5E53C33A332
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
Manifest number: 060D
Signing time: Wed 25 Mar 2026 20:01:07 +0000
Manifest this update: Wed 25 Mar 2026 20:01:07 +0000
Manifest next update: Thu 26 Mar 2026 20:01:07 +0000
Files and hashes: 1: UIJpb7xB2QYWimDOCUlJAiz2Keg.crl (hash: hKOrz1ly5hAAxS4oKMIz9+jxMF5c1mGQ/GicYl/cKJs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:27:9f:cc:a0:8b:47:b9:39:c5:e5:3c:33:a3:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5082696fbc41d906168a60ce094949022cf629e8
Validity
Not Before: Mar 25 20:01:07 2026 GMT
Not After : Mar 26 20:01:07 2026 GMT
Subject: CN=3f7f9931d065e98073d3c5cf93a26770ffc228e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:66:dc:b0:a1:4b:7b:f3:9d:28:17:60:bc:8e:
00:a1:7f:45:b2:a2:12:a9:56:83:ba:68:5e:eb:c8:
52:16:ea:d9:ed:b5:47:08:f6:3d:aa:90:31:97:1f:
20:01:a4:ca:4a:82:68:9c:e9:13:13:07:52:32:1c:
b6:59:47:b6:89:93:9d:40:a4:6e:6c:84:ba:9e:93:
d8:38:04:56:13:7c:df:0e:46:5f:10:69:9c:d3:c2:
b3:cb:d8:07:19:5a:56:89:2c:65:49:96:02:63:5c:
29:c0:e0:82:5d:67:79:56:a4:ec:71:ea:e9:17:bb:
80:7c:c1:34:d5:31:15:2b:bf:c3:73:06:b4:58:53:
7d:fc:5b:0d:4d:05:63:fd:48:33:da:1f:fa:99:00:
da:fb:a2:0a:29:19:97:8e:bb:b5:bd:e8:77:05:67:
bc:f4:3e:fd:61:02:a6:39:6e:d1:d3:8b:23:86:14:
30:ef:9c:70:e7:0d:4e:f9:ef:90:4a:16:a3:25:ff:
bf:55:a3:aa:b3:48:f2:c9:29:e2:ac:ce:cd:05:3e:
ac:63:27:16:46:e0:bd:ab:e1:04:b3:ff:85:93:e3:
b7:40:7c:ee:5a:d4:3e:68:1d:d1:4e:e2:a9:0f:ef:
9d:ea:42:ed:3e:c6:cd:70:fb:d7:7f:f2:76:fe:c5:
ac:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:7F:99:31:D0:65:E9:80:73:D3:C5:CF:93:A2:67:70:FF:C2:28:E0
X509v3 Authority Key Identifier:
keyid:50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:b5:07:83:65:6b:df:58:f0:62:d8:e0:62:30:00:59:04:22:
8e:b6:ac:e8:77:c7:98:22:d9:b0:ee:cc:84:ec:c3:0a:2e:6a:
6e:dc:0a:65:f1:13:c4:57:ac:75:e9:2a:3b:6d:5b:5f:93:55:
c4:8d:cd:db:bf:30:2c:e2:8b:9a:2c:0b:3c:fa:32:a9:fd:e2:
48:32:f5:13:9e:89:38:45:ba:38:26:54:4b:17:d5:67:e1:15:
52:5c:96:52:5c:3e:95:44:3a:42:71:bb:34:f6:64:cb:c8:84:
b2:53:33:48:48:87:6c:ae:59:fc:ed:9e:2f:3c:bf:9a:fa:57:
98:82:c2:ef:35:b4:62:10:52:e4:50:b4:27:ec:dd:bd:e3:08:
9a:50:b1:5d:75:eb:7f:f6:be:9d:9c:a0:68:f9:40:25:85:92:
c7:0f:65:c3:6c:bb:54:98:88:fa:53:f3:66:d1:87:50:dc:79:
03:a0:3a:7d:7f:e6:33:92:ac:7e:50:82:a5:53:92:38:c8:1b:
33:2b:c4:fa:91:21:9d:e7:fa:65:84:e5:19:c8:56:3f:d4:93:
11:dd:7a:cd:d9:3b:fe:4e:a5:1a:82:06:2c:c9:14:ed:38:0d:
63:71:9c:eb:8f:6a:9f:2e:a0:2c:e8:6f:de:da:3d:bf:94:13:
65:bc:df:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:40:02 2026 by rpki-client