Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
File: UAFR5GSyl5E3bAxXvrQMWE71oc8.mft (raw, json)
Hash identifier: 9I3+vWWrT4tsIGv9Lbh/6uRKgRp/jz/3vRaSVmxFYoo=
Subject key identifier: 50:29:B3:F1:AC:83:36:C3:C7:9F:0B:46:19:18:45:EC:EE:18:81:AD
Authority key identifier: 50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
Certificate issuer: /CN=500151e464b29791376c0c57beb40c584ef5a1cf
Certificate serial: 019E1F110413D085C352C3CDC6498CDF6F8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
Manifest number: 122C
Signing time: Wed 13 May 2026 02:01:09 +0000
Manifest this update: Wed 13 May 2026 02:01:09 +0000
Manifest next update: Thu 14 May 2026 02:01:09 +0000
Files and hashes: 1: DQXO04aHVF3WA-Uo1KSu2Uv_5Z8.roa (hash: Bz0GwY7uz2/9HGwt667qRq1fWspWzC65aQYWTQYVTX4=)
2: E38S2iuMO9vMOny68uYZj610htc.roa (hash: j5FESm0d3Q8JXR8RXWmvIsv0pwl9dgxNmPqCykFcXso=)
3: UAFR5GSyl5E3bAxXvrQMWE71oc8.crl (hash: 934gsUY6db1dqfFk6ET+kh5kBby5AmusO4lK4ViaVK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:04:13:d0:85:c3:52:c3:cd:c6:49:8c:df:6f:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500151e464b29791376c0c57beb40c584ef5a1cf
Validity
Not Before: May 13 02:01:09 2026 GMT
Not After : May 14 02:01:09 2026 GMT
Subject: CN=5029b3f1ac8336c3c79f0b46191845ecee1881ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:17:76:90:84:f9:bb:3c:97:29:45:81:ed:a4:
d9:09:41:61:77:7d:f8:5b:c6:c7:89:86:16:51:ce:
5b:28:d3:1b:55:97:94:01:2c:5b:a0:16:c8:54:4a:
02:96:51:2b:1c:2f:1f:a5:75:2c:86:ca:06:83:87:
fd:f3:6a:0e:e0:14:47:a8:76:6c:cf:0f:84:15:95:
17:e0:60:ae:d9:dd:af:51:a9:8a:54:f0:b2:3d:26:
e9:aa:2d:4a:ac:38:69:b0:e8:35:c4:e8:d7:7f:e9:
82:c9:6f:41:70:a7:09:cd:71:33:ed:b7:7d:97:c8:
78:29:00:01:0a:17:72:f5:5d:3f:cd:e2:ac:91:cf:
c0:96:de:f6:25:bc:ec:2c:5a:c3:6f:da:07:01:ee:
9f:d7:ea:00:88:4d:5d:16:b9:c5:e4:88:e9:dc:41:
42:a6:51:72:db:dd:c0:ea:32:de:8a:5a:ce:9e:73:
47:b0:f8:68:45:09:3e:24:22:7a:81:1f:62:ce:bf:
0a:75:b3:92:ca:7a:e3:d4:37:0b:b5:7b:ba:6d:84:
45:38:ee:16:35:87:89:d6:fa:55:6f:c2:10:6b:97:
13:e9:b0:e8:fa:5f:47:d9:fb:35:ca:69:86:aa:86:
94:37:6a:36:61:b6:0a:41:d6:21:9f:76:73:5f:cf:
02:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:29:B3:F1:AC:83:36:C3:C7:9F:0B:46:19:18:45:EC:EE:18:81:AD
X509v3 Authority Key Identifier:
keyid:50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:90:21:96:3a:04:43:78:80:30:fd:97:28:0b:20:8c:3a:dc:
61:22:78:03:14:39:b2:ce:53:d0:c0:1f:7f:d4:72:1f:4a:4a:
29:7f:50:83:fb:f0:6f:85:b8:86:b1:ab:bb:84:8f:14:03:34:
22:95:dc:17:10:4e:97:bf:a8:9c:03:da:fb:cd:7a:d5:04:18:
b8:0d:20:98:c8:9d:49:b4:2b:2b:15:4d:08:b5:3c:08:1d:09:
76:62:dd:59:d6:6f:9a:8f:c4:26:12:d9:67:d8:b4:75:00:f9:
3e:c1:b9:08:43:f8:df:be:53:2c:ea:d3:84:7b:7c:58:9a:84:
fe:1b:36:a3:1f:7d:bd:aa:1f:10:a0:7d:d2:63:26:c9:fe:71:
b9:72:6e:5c:ff:3c:04:f0:6a:4a:b0:01:4a:2f:6c:1d:7f:94:
71:29:2e:c2:20:48:04:e2:c5:22:03:4c:a6:dc:92:9b:a0:6f:
85:db:f4:e2:32:f9:df:2b:6b:2a:1c:59:78:92:b2:99:96:80:
96:cb:2a:89:3b:fe:53:dc:76:45:7a:06:f1:1a:a8:e1:5c:c9:
5e:9a:de:4f:43:ad:8d:71:27:1c:22:70:12:16:27:c0:12:78:
b4:2c:41:5d:c7:e5:dd:c8:1b:62:6c:0f:41:51:54:c1:32:08:
80:fe:10:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:58:18 2026 by rpki-client