Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.mft
File: uqSm69s4PhGdaVPHfxaGbnPvLbU.mft (raw, json)
Hash identifier: Y3Px6zQuohz+Hu6RKvPgvRDFHd5PwWyOq8BqhvqvTzI=
Subject key identifier: 7F:27:D6:61:F1:8B:24:A7:D8:50:5D:52:B5:53:9D:8A:A0:4A:01:99
Authority key identifier: BA:A4:A6:EB:DB:38:3E:11:9D:69:53:C7:7F:16:86:6E:73:EF:2D:B5
Certificate issuer: /CN=baa4a6ebdb383e119d6953c77f16866e73ef2db5
Certificate serial: 019D24DEC72D628A82D10803F4B701702D4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqSm69s4PhGdaVPHfxaGbnPvLbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.mft
Manifest number: D2
Signing time: Wed 25 Mar 2026 12:01:12 +0000
Manifest this update: Wed 25 Mar 2026 12:01:12 +0000
Manifest next update: Thu 26 Mar 2026 12:01:12 +0000
Files and hashes: 1: Hykty8ZT3B_khffcWdZGH8-bqU4.asa (hash: 1q5LAz7I6wf4mRO+VjAfuoGiwZX81t5qBHaYtssjPNg=)
2: uqSm69s4PhGdaVPHfxaGbnPvLbU.crl (hash: uwOqWmdcFWfkCnrq4vcg+1pLG+XfWR4rEX7TX2noXBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqSm69s4PhGdaVPHfxaGbnPvLbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 12:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:de:c7:2d:62:8a:82:d1:08:03:f4:b7:01:70:2d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa4a6ebdb383e119d6953c77f16866e73ef2db5
Validity
Not Before: Mar 25 12:01:12 2026 GMT
Not After : Mar 26 12:01:12 2026 GMT
Subject: CN=7f27d661f18b24a7d8505d52b5539d8aa04a0199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c2:63:70:35:94:1c:54:dd:f9:e4:18:9e:b8:
51:a6:95:03:ee:40:9d:47:1d:9b:73:ae:3c:8c:f1:
7f:4a:be:4d:ce:5c:d6:04:a1:27:0f:96:91:bf:d3:
3b:5f:19:40:57:a5:a1:a4:84:bc:73:63:33:68:1a:
fe:d3:0a:d6:e6:05:c2:0d:4c:34:d5:3b:11:c2:22:
bf:c2:57:73:b7:cb:06:b2:c5:76:54:0c:8d:18:11:
7b:8e:ba:ba:6f:e2:26:d0:49:8f:a0:e2:82:43:50:
4f:09:84:cf:09:8e:95:87:a4:ca:d2:27:6a:92:7d:
9f:83:40:28:3b:66:ed:5b:d3:85:58:2d:c3:06:97:
f8:be:ba:fa:0d:01:d6:72:bd:6f:8f:99:33:c7:72:
93:ca:8b:f4:c9:88:87:e4:80:aa:67:27:0f:1e:b0:
32:95:e3:3c:20:e1:68:08:bd:57:e8:0e:d5:2b:42:
e9:8f:94:06:48:58:c3:a5:92:14:cf:e8:8a:c2:18:
65:28:89:32:eb:24:b8:13:61:59:1b:d1:20:92:f0:
6b:69:18:fb:b8:1b:0e:dc:1b:21:0b:fd:0e:4f:11:
94:41:32:9f:0f:ee:c6:37:48:9b:80:c9:ef:55:d2:
42:d1:d3:d6:d4:5a:1a:98:60:51:9c:5e:2a:88:94:
4c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:27:D6:61:F1:8B:24:A7:D8:50:5D:52:B5:53:9D:8A:A0:4A:01:99
X509v3 Authority Key Identifier:
keyid:BA:A4:A6:EB:DB:38:3E:11:9D:69:53:C7:7F:16:86:6E:73:EF:2D:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqSm69s4PhGdaVPHfxaGbnPvLbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:13:dd:16:a6:39:5a:b4:c0:25:ec:e4:37:d2:83:de:81:03:
de:1f:d1:fd:74:2d:a0:4d:14:1b:cc:ea:2a:be:d6:cf:a8:1e:
e6:92:08:39:1a:ce:ce:82:06:66:d3:8b:c6:dd:02:a6:3b:8d:
ff:55:4a:fc:7d:31:b1:3c:30:b0:1f:3b:6e:2a:fc:6e:be:5d:
ce:43:8d:ac:59:34:ff:ea:b4:20:84:59:4c:4f:53:de:ed:0b:
28:31:b8:2e:38:02:ba:6a:d5:56:f7:23:2b:9b:d5:d2:41:c7:
4e:e6:d1:e6:cf:96:a3:12:c3:21:12:5b:53:5d:95:64:ac:70:
3c:4f:0d:9b:13:a9:af:c5:06:ee:7d:a7:41:da:16:d8:45:36:
22:f7:9e:de:4f:b2:c4:54:6d:6d:97:71:c0:6b:24:9f:e9:87:
b4:f5:38:37:ed:68:35:00:73:8a:9b:a7:af:cb:2c:dd:5b:c5:
36:03:f6:12:cd:cf:62:a2:e7:69:a6:73:f6:52:7f:ca:47:ef:
e3:37:ab:26:cc:da:a0:92:32:75:5e:a6:d6:eb:76:7a:03:3a:
34:2c:70:53:8a:63:52:e1:1d:10:5b:67:ca:ee:12:31:3a:44:
a3:93:42:80:95:38:20:a3:c7:f0:a9:39:a9:93:9e:02:47:be:
32:8f:bd:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:25:57 2026 by rpki-client