Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
File: UAFR5GSyl5E3bAxXvrQMWE71oc8.mft (raw, json)
Hash identifier: j281nGrQ4B2vXA6miFTAm89636RmH/rBGG1GezvAIDM=
Subject key identifier: 59:46:26:EB:CC:19:2C:AE:07:43:72:FC:48:02:34:6E:6D:91:EB:8D
Authority key identifier: 50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
Certificate issuer: /CN=500151e464b29791376c0c57beb40c584ef5a1cf
Certificate serial: 019D27DFA8C50259FFAF4CC3D78DDBCF7C78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
Manifest number: 11AC
Signing time: Thu 26 Mar 2026 02:01:02 +0000
Manifest this update: Thu 26 Mar 2026 02:01:02 +0000
Manifest next update: Fri 27 Mar 2026 02:01:02 +0000
Files and hashes: 1: DQXO04aHVF3WA-Uo1KSu2Uv_5Z8.roa (hash: Bz0GwY7uz2/9HGwt667qRq1fWspWzC65aQYWTQYVTX4=)
2: E38S2iuMO9vMOny68uYZj610htc.roa (hash: j5FESm0d3Q8JXR8RXWmvIsv0pwl9dgxNmPqCykFcXso=)
3: UAFR5GSyl5E3bAxXvrQMWE71oc8.crl (hash: ehSGmJqtJhXHzHgVTuX8cr82KEbkBH0HSmwcAyjKD+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:a8:c5:02:59:ff:af:4c:c3:d7:8d:db:cf:7c:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500151e464b29791376c0c57beb40c584ef5a1cf
Validity
Not Before: Mar 26 02:01:02 2026 GMT
Not After : Mar 27 02:01:02 2026 GMT
Subject: CN=594626ebcc192cae074372fc4802346e6d91eb8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:29:63:3e:98:2c:f3:99:cc:c9:55:fa:99:11:
36:18:cb:11:6b:b5:ac:af:39:62:2c:a0:e9:3d:f5:
05:05:e5:4b:b1:02:29:d4:2c:59:82:41:44:38:e2:
74:e1:04:e5:0e:02:33:38:36:0a:55:43:78:28:02:
de:e4:66:b4:64:d2:20:4d:a5:c0:d8:43:d0:41:52:
0e:af:f8:09:99:45:f0:1e:2e:06:98:ec:3f:ca:64:
47:38:b1:72:70:50:ea:4b:80:2c:9a:b8:c4:7f:e6:
10:fa:b9:7d:61:2b:d0:b7:4b:d1:76:9f:82:ee:8b:
2a:27:3f:a3:df:88:56:ae:c6:6d:f2:05:40:ca:68:
e4:ba:6e:f4:39:4c:d5:84:1d:14:20:bc:ac:b5:cb:
51:b0:e2:96:cf:67:89:a6:9c:40:f3:89:57:e9:a6:
75:fe:7b:0c:da:b5:ac:8c:a4:d5:20:34:28:d9:e3:
5b:9d:d3:bf:c0:38:12:fa:46:8f:22:db:7d:f4:08:
a5:5e:ab:21:85:37:bd:07:f9:b5:ff:cd:f6:73:56:
87:e3:9d:7a:6b:d6:f0:71:9f:c8:44:05:cc:5a:fe:
88:53:50:68:14:6c:f0:ff:aa:16:44:c0:79:5a:8a:
73:3b:bd:4d:de:23:bf:75:a4:d5:bd:d7:70:60:70:
8a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:46:26:EB:CC:19:2C:AE:07:43:72:FC:48:02:34:6E:6D:91:EB:8D
X509v3 Authority Key Identifier:
keyid:50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:74:7f:2f:20:fc:11:97:3d:79:93:29:b9:8c:30:41:4a:2f:
8a:b5:55:8e:a2:af:c5:c3:c7:ee:50:8b:08:6a:01:69:48:30:
01:ec:14:ea:50:3b:8f:0a:7e:f3:91:fa:68:bd:95:26:a1:64:
da:b1:57:61:8d:25:f7:7c:0b:61:04:d4:51:67:e4:ed:05:2d:
1c:c8:57:c8:be:fa:de:7a:66:f7:1e:04:fb:70:f2:4e:a9:d7:
39:d6:d4:b9:35:ad:65:9a:34:12:45:d6:ea:c9:74:1d:72:a4:
e3:0e:e8:63:2f:06:ab:d9:14:ef:8d:c5:e7:51:e4:7b:4d:6d:
93:16:c7:03:c6:bd:76:ce:b1:01:57:4b:e0:dc:53:21:57:0c:
d6:1b:c3:da:f8:9b:d4:10:32:b0:67:52:8d:de:28:72:38:52:
a1:ca:07:e2:52:31:52:8c:12:1f:17:f3:36:0e:d6:7e:e1:51:
17:f8:e8:a3:ed:51:59:c6:33:58:d8:62:cc:a5:a8:61:8f:03:
32:38:64:8e:cb:68:04:dd:da:fa:14:63:8a:2f:03:5e:ac:7d:
84:28:4b:e3:ea:67:c9:7f:bc:12:60:86:fd:98:b9:bf:26:0d:
3c:9f:ff:59:df:d6:16:33:60:05:7f:b7:8f:26:c1:75:2b:f1:
0a:b4:47:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:44:49 2026 by rpki-client