Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: 1DYEDvbPMvOZsBrKqdNHjklxvGa8Bm+CCkXYWVJeDDY=
Subject key identifier: AB:EA:50:E1:A1:4A:63:3E:5A:2D:20:15:0C:03:8D:38:F2:15:E3:E0
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 019E20FF48EC148370C4BE4B1E764FAD9598
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 11A5
Signing time: Wed 13 May 2026 11:01:01 +0000
Manifest this update: Wed 13 May 2026 11:01:01 +0000
Manifest next update: Thu 14 May 2026 11:01:01 +0000
Files and hashes: 1: 6Lv0ELrWKZzM2WUhjrrfSxrLv5I.roa (hash: b+tPMLvT0wTQ8KNZFO7LFZXenP25HBtSk8cAgN48xuk=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: ytlMl2Utg4N1zprJDxRUnPTX2KojhfN/4h2upRQcD3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:48:ec:14:83:70:c4:be:4b:1e:76:4f:ad:95:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: May 13 11:01:01 2026 GMT
Not After : May 14 11:01:01 2026 GMT
Subject: CN=abea50e1a14a633e5a2d20150c038d38f215e3e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:02:2e:d1:df:0c:3b:58:44:7d:08:1f:fa:3b:
92:c2:37:8c:ac:36:87:63:a2:2c:92:06:3b:b0:a4:
a6:31:35:68:90:2d:63:4b:62:30:00:d6:85:04:24:
e5:90:6d:1e:d1:71:76:7c:92:30:2f:d1:50:99:71:
ff:74:ec:20:3c:e0:fb:23:b8:95:ef:45:84:b6:03:
45:29:38:90:d7:b8:b9:a2:94:82:2b:62:37:a9:20:
e2:bd:46:ea:4b:90:00:78:0e:f8:8e:c0:a1:9c:60:
6e:b1:52:2d:a7:b6:0f:09:5c:36:e6:1d:8d:e8:bf:
70:48:a5:07:b4:c7:a0:a6:d5:d4:95:38:53:e8:a1:
28:bc:3c:db:da:e6:8c:34:05:3c:37:37:67:04:74:
73:1a:1c:b9:51:67:bb:41:ae:67:81:2e:e1:82:a5:
8d:f0:b2:3a:c3:7c:be:91:21:eb:42:7b:26:17:84:
33:68:cf:6a:ef:c2:4c:ae:4a:2b:e8:eb:5c:4f:b7:
6a:4a:a4:bc:75:61:ba:a5:0b:af:8f:3b:39:91:28:
13:18:35:d6:58:a3:f4:4c:33:8e:24:c8:bd:a4:4e:
9f:21:ff:55:f0:27:4b:be:22:60:be:de:63:17:4c:
16:64:9c:49:bd:be:99:65:18:3e:e1:ea:ca:e9:eb:
e5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:EA:50:E1:A1:4A:63:3E:5A:2D:20:15:0C:03:8D:38:F2:15:E3:E0
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:b4:59:c7:1c:08:1c:60:a3:f5:0c:45:b9:b0:cb:52:37:9b:
4f:e4:64:bd:cb:02:46:6e:d7:27:0f:50:35:88:7f:04:40:2d:
f5:47:e4:27:54:c4:61:6f:97:0e:13:78:d6:f7:8d:09:8e:b3:
02:53:a4:71:11:e4:a6:ce:cd:45:c7:96:b5:d5:30:9b:1e:95:
ca:a4:4b:29:28:c1:44:a3:9a:b8:69:7a:1e:7d:01:36:7f:bd:
42:7a:a1:e6:8c:38:f0:7f:8d:c0:3f:da:18:1d:a5:59:b7:d4:
93:f6:6e:1c:91:6c:36:f4:af:4f:be:16:df:21:5a:63:f4:ae:
69:cf:b2:d5:59:67:ec:4a:05:fc:30:04:c3:8f:7b:a9:ad:71:
68:bf:ac:ef:70:34:5f:5c:ef:08:76:4d:2b:bf:a4:59:1e:b0:
f3:75:2a:36:d1:bd:8f:ee:7d:dc:f1:4b:aa:a7:16:ba:e5:9b:
32:20:03:a0:87:ed:d0:16:29:d6:4a:23:eb:00:47:98:81:b5:
27:4d:5a:01:4f:d9:4b:79:ae:46:28:e8:7f:7a:fc:b8:c2:3a:
c1:fa:a9:18:d8:68:c0:a2:e9:0d:42:aa:42:89:de:58:fc:e4:
c6:34:ce:25:05:f4:1c:86:aa:c4:cf:af:4e:7c:29:ba:6d:a9:
e6:d0:a3:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:15:11 2026 by rpki-client