Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft
File: uaoBqzUmuOu4r7F7mKcSfw9UykU.mft (raw, json)
Hash identifier: sBt+H8aT19GNoQpkiHoWZ6Tajx5EthBWl1ob2EZJu90=
Subject key identifier: 1B:91:F6:3F:2D:DB:4E:7B:F2:72:40:D0:0E:53:F6:E4:CB:50:04:A0
Authority key identifier: B9:AA:01:AB:35:26:B8:EB:B8:AF:B1:7B:98:A7:12:7F:0F:54:CA:45
Certificate issuer: /CN=b9aa01ab3526b8ebb8afb17b98a7127f0f54ca45
Certificate serial: 019D254CC94CE1CAE6121BE8D99BE097130C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uaoBqzUmuOu4r7F7mKcSfw9UykU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft
Manifest number: 1668
Signing time: Wed 25 Mar 2026 14:01:22 +0000
Manifest this update: Wed 25 Mar 2026 14:01:22 +0000
Manifest next update: Thu 26 Mar 2026 14:01:22 +0000
Files and hashes: 1: N3jaze7YJRe2qAy_Yl4PgjOPV78.roa (hash: J9hAHBk9hnYVFJwAFN6kZ7iaHqqOjhd7Ue4bGVAtGs4=)
2: uaoBqzUmuOu4r7F7mKcSfw9UykU.crl (hash: vQ+ahIB9/2+IwlLlQUAIbZd3YVwSOt1sqgPwItMcQSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uaoBqzUmuOu4r7F7mKcSfw9UykU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:4c:c9:4c:e1:ca:e6:12:1b:e8:d9:9b:e0:97:13:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9aa01ab3526b8ebb8afb17b98a7127f0f54ca45
Validity
Not Before: Mar 25 14:01:22 2026 GMT
Not After : Mar 26 14:01:22 2026 GMT
Subject: CN=1b91f63f2ddb4e7bf27240d00e53f6e4cb5004a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:b2:27:6b:0f:65:2e:97:81:9d:17:1c:69:
95:e7:7c:c4:22:15:22:23:19:4a:c6:4b:38:b1:cf:
05:28:c2:0a:32:b4:48:bb:56:e0:94:48:45:7f:c4:
db:a7:5f:35:be:6d:f1:4c:56:85:49:33:29:d9:0c:
e3:2d:1b:f5:07:36:d6:15:7a:33:6f:e7:e2:32:f7:
a7:d6:0f:91:a0:c5:f6:b6:b1:e7:1b:c7:a6:dc:35:
dc:81:6f:26:3e:cd:e5:85:7e:09:c2:98:f5:0a:cc:
8f:11:01:73:a8:78:db:57:7d:c2:47:35:05:4f:6a:
82:a1:1b:c8:05:16:7c:07:12:a5:6c:d9:00:c0:94:
2b:39:1d:a7:b8:7e:3e:1c:c3:3f:19:f0:69:7a:34:
d1:30:f9:9e:09:33:33:e6:11:54:40:e9:82:2a:1e:
a0:d2:5d:31:08:99:04:3b:ac:90:27:38:b6:17:18:
b8:19:59:31:40:c4:8a:7a:7f:19:03:d2:30:eb:ba:
69:18:1d:94:61:26:a4:6a:61:4b:cf:24:4a:a7:09:
fe:aa:70:42:5f:ff:20:d3:e1:ff:6c:95:43:5c:b1:
46:00:89:02:7c:ac:b9:4a:45:1d:51:38:aa:12:0e:
59:38:b3:8d:19:42:5f:02:66:c8:13:44:cf:92:22:
5c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:91:F6:3F:2D:DB:4E:7B:F2:72:40:D0:0E:53:F6:E4:CB:50:04:A0
X509v3 Authority Key Identifier:
keyid:B9:AA:01:AB:35:26:B8:EB:B8:AF:B1:7B:98:A7:12:7F:0F:54:CA:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uaoBqzUmuOu4r7F7mKcSfw9UykU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:fc:73:63:ba:da:97:14:2e:44:01:09:2e:72:28:24:50:11:
50:e5:70:77:68:2c:4e:9a:24:06:99:4e:3d:75:e1:13:5e:e1:
43:3d:64:80:17:01:a4:75:09:5d:17:3a:5a:fa:65:05:f9:78:
ce:df:bc:69:47:d1:12:69:03:cf:76:2a:c2:1c:95:4f:5a:be:
ee:c0:54:4a:6c:c2:6c:9d:c0:30:95:8d:6a:20:f5:63:ad:60:
e0:d7:bb:68:fe:45:4a:13:b8:b6:ed:35:d5:0c:26:3a:3f:30:
80:2f:ed:95:c2:d8:67:4a:0b:c4:4a:01:b0:87:20:28:6e:04:
ea:31:b0:f3:83:2c:31:91:2d:05:7c:ab:10:84:07:f5:10:44:
3e:fc:b3:85:41:db:55:1a:0d:12:ca:df:32:4c:6b:01:fa:36:
4b:20:ef:ad:c6:5d:92:cb:46:e2:6f:ea:fd:11:37:1c:ba:c4:
94:bf:19:d5:3e:c9:9f:2d:10:92:6d:65:51:02:1b:db:d5:04:
43:d6:cb:f9:1e:dc:38:40:c0:5b:fe:0b:bd:42:7b:aa:ec:4c:
4c:04:e4:da:30:f4:fc:fa:04:6b:1b:af:bc:55:4c:e3:44:8e:
ac:69:52:dc:04:f4:78:12:c9:d8:42:7d:35:19:88:f4:56:41:
53:8d:6a:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:54:14 2026 by rpki-client