Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
File: uEWIWKHL3onJKQYPQvKw35JNTik.mft (raw, json)
Hash identifier: RPpvBWxHMIt8cVvGvLaXeifQxGPuHzx+maLtV3KlNyk=
Subject key identifier: 7F:CF:E5:33:28:D5:17:CD:13:18:03:B5:AB:D4:0A:CD:5F:B4:C8:63
Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
Certificate issuer: /CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Certificate serial: 019D27DF693749E4C2EEBDA557377E1F1040
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
Manifest number: 0D07
Signing time: Thu 26 Mar 2026 02:00:45 +0000
Manifest this update: Thu 26 Mar 2026 02:00:45 +0000
Manifest next update: Fri 27 Mar 2026 02:00:45 +0000
Files and hashes: 1: HqjPBLQP0k_ZWUi4re8PM7q9yeE.roa (hash: zWvSWnQ+ZhrAVivum98kmHRXOZE35K47bVLXG/JHPOg=)
2: uEWIWKHL3onJKQYPQvKw35JNTik.crl (hash: su3zDaKHBMMlZe3ZhVn4OCqZgTL24q3fNaI/rZSCkbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:69:37:49:e4:c2:ee:bd:a5:57:37:7e:1f:10:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Validity
Not Before: Mar 26 02:00:45 2026 GMT
Not After : Mar 27 02:00:45 2026 GMT
Subject: CN=7fcfe53328d517cd131803b5abd40acd5fb4c863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e0:2b:28:6a:b0:d2:55:3f:15:06:c9:80:e3:
31:89:ac:90:e1:e2:bb:64:a0:e1:af:77:39:be:b3:
ba:98:64:06:23:96:74:13:8a:2b:76:d0:ba:e3:51:
0c:f6:57:ac:62:18:72:d3:ca:d7:ee:f7:f2:52:d3:
30:17:f3:e2:48:eb:80:a1:17:74:67:99:2a:7d:16:
90:5c:5a:65:30:be:25:01:a5:95:48:32:9e:90:62:
08:91:47:d1:9c:42:e6:bc:53:e0:6d:42:c4:1f:2c:
49:85:78:a7:59:3a:95:4d:ac:c5:1d:5d:84:85:1a:
d2:1c:65:65:76:5a:75:6e:e5:f9:e1:9e:21:de:c5:
dd:ef:14:2f:bc:7a:28:0d:1d:da:d3:43:a2:46:f5:
4f:c4:af:f1:a7:8d:7b:e7:e4:11:50:e9:c7:bb:54:
60:ee:93:3b:8e:c2:be:33:28:68:be:a2:23:77:c0:
64:44:30:5d:d2:01:89:23:83:73:64:16:68:b5:24:
ac:5a:f4:b3:2b:17:7a:43:68:8e:58:ca:f6:eb:57:
dc:6a:01:e9:86:41:b3:3d:08:bd:49:66:00:2a:1c:
cb:b7:79:ca:b1:2d:c2:92:f5:10:7e:d4:c9:47:8a:
5c:1a:4f:20:ad:94:95:4f:b8:71:37:27:4b:86:40:
68:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:CF:E5:33:28:D5:17:CD:13:18:03:B5:AB:D4:0A:CD:5F:B4:C8:63
X509v3 Authority Key Identifier:
keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:1a:8b:78:be:b6:d4:5b:07:9a:18:a8:d0:20:9b:a7:6f:c3:
f0:ce:11:b7:1e:eb:47:c4:88:4f:83:11:76:0c:40:e8:c3:20:
15:51:65:78:cf:6f:ef:97:eb:74:f2:84:dc:76:c7:1e:8e:b1:
a5:a2:91:1c:c4:b6:35:97:e5:44:01:14:5a:c4:61:47:d0:ee:
44:33:52:28:b4:b8:36:f0:60:8a:f4:d9:64:0f:df:df:51:4c:
06:61:53:4c:b3:e7:ed:0a:f3:06:1e:de:d7:97:d5:ed:33:95:
5c:d1:db:72:27:cd:18:04:a4:fb:60:08:9a:2f:ce:66:7c:2b:
bc:ea:bb:8c:2b:d5:b6:a7:f9:a7:8c:db:cc:b5:7e:c8:d7:c2:
8b:2e:72:d3:6f:d7:e8:12:6b:54:43:e5:ab:d7:ec:a4:aa:67:
5c:79:45:38:28:19:41:8f:73:2b:95:68:54:bc:2b:e6:94:52:
bd:c6:4d:6f:8d:7a:26:8c:56:ca:47:58:15:7c:de:57:1e:22:
a1:74:c2:8a:c2:0a:27:5b:d8:fb:af:78:a7:ee:7a:a3:13:f3:
0c:50:be:21:f1:e3:f0:c7:ec:ad:a1:da:2c:5f:97:08:cf:54:
bd:86:62:79:92:75:e7:86:96:9f:8b:f3:a9:a9:42:aa:2b:6f:
4d:54:cb:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:39:13 2026 by rpki-client