Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
File: UgX1htgmO7BtZAUPj0hMFOgDxLI.mft (raw, json)
Hash identifier: dCrc/N2XtwL7JS8Bwjnvwm29oa/ux7L0yuI4PY4O1sI=
Subject key identifier: CE:A0:83:DE:BC:FC:5D:DE:61:27:DE:EF:29:D2:08:0D:1D:7A:CA:F4
Authority key identifier: 52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
Certificate issuer: /CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Certificate serial: 019D270451325B8CB22EF4768EB4BC380A9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
Manifest number: 0EC4
Signing time: Wed 25 Mar 2026 22:01:27 +0000
Manifest this update: Wed 25 Mar 2026 22:01:27 +0000
Manifest next update: Thu 26 Mar 2026 22:01:27 +0000
Files and hashes: 1: UgX1htgmO7BtZAUPj0hMFOgDxLI.crl (hash: iy8FwpXh7fJXM03tKePIGXYRdfOvzJkmVH24JYjxoIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:51:32:5b:8c:b2:2e:f4:76:8e:b4:bc:38:0a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Validity
Not Before: Mar 25 22:01:27 2026 GMT
Not After : Mar 26 22:01:27 2026 GMT
Subject: CN=cea083debcfc5dde6127deef29d2080d1d7acaf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:db:22:c5:80:45:90:99:e3:b1:fc:18:c4:04:
af:f3:1e:86:bd:f9:bc:cd:fc:1d:30:bd:fb:c7:bd:
22:2c:b5:3e:cd:62:e5:20:db:50:18:08:75:4d:8a:
d5:8b:1f:fd:00:67:14:5c:97:30:c9:cf:6d:27:1d:
d0:4e:6f:97:3d:bb:2c:1d:a3:79:04:5f:10:1f:88:
1e:ae:91:c5:9f:ca:c4:51:16:48:d9:16:ae:a6:ed:
7b:98:ee:82:3a:06:18:3d:a9:c2:41:3a:5a:5f:6a:
5d:4e:2a:b3:07:a8:40:34:44:06:26:dc:5a:66:35:
15:22:ff:fd:e2:85:93:f0:05:cc:e4:c4:43:b8:ef:
39:a9:d0:70:73:f4:d1:57:63:69:d2:fe:f0:10:3e:
8f:0c:6c:a7:19:b7:28:21:e4:dd:32:5f:ab:01:54:
41:97:4d:ee:88:57:f3:44:09:0e:b1:d9:d1:fc:08:
6f:f8:78:54:19:5c:6a:34:56:06:ca:01:88:61:be:
b6:55:b0:5b:48:a7:af:41:57:14:ec:7e:6f:fb:47:
b2:f9:79:f1:44:73:01:30:b2:a5:64:f8:eb:ec:ed:
9c:1c:38:8d:7c:b6:ac:1e:e3:e9:13:52:c1:09:8e:
8c:ee:a3:94:43:52:30:63:6d:2d:4d:f1:9d:79:eb:
0c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A0:83:DE:BC:FC:5D:DE:61:27:DE:EF:29:D2:08:0D:1D:7A:CA:F4
X509v3 Authority Key Identifier:
keyid:52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:60:4f:e0:af:96:fa:9c:6c:76:f3:d2:0c:16:da:27:52:71:
b9:00:ff:1b:61:9e:1a:c4:30:75:29:d5:58:39:61:d1:f7:e7:
09:2e:92:73:42:72:f9:8f:9b:79:34:2f:93:f7:bb:2a:78:03:
79:a3:7b:da:4c:c5:0f:7d:3e:26:91:4d:77:4c:93:a7:6a:8e:
b7:d8:c0:13:02:40:d5:f2:40:82:ec:bc:92:f0:85:c2:4c:c8:
27:f3:b1:42:fc:31:cb:a3:2a:54:5b:9b:f2:f4:58:05:0d:1a:
0b:db:1c:62:d4:4d:94:23:be:38:5d:87:6b:f2:66:9e:db:da:
5b:83:ef:70:db:6e:ff:2b:05:87:b5:b0:1c:da:c1:06:17:d2:
ed:08:8b:32:59:df:a5:15:a2:08:1b:b8:c8:a2:5c:87:d2:59:
03:27:f8:d9:33:db:3a:91:13:49:c3:20:d4:ee:53:d4:96:b2:
85:c9:1f:fe:0c:d0:e7:2b:b1:29:2a:84:a1:30:b0:02:28:24:
a6:00:ae:25:f7:f9:29:91:a4:a0:8a:c7:3d:c1:97:a0:9e:26:
36:0e:74:b7:1e:f2:c0:07:0d:1a:01:49:3e:2e:68:eb:d0:58:
c4:45:49:c0:2e:ff:8e:5c:99:62:27:8f:2f:01:70:c1:14:82:
76:38:42:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:14:13 2026 by rpki-client