Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: 8xt+sUbijZXC7RY8uF8wU8abV+cH566aLCnfJrYGZHE=
Subject key identifier: F8:41:A4:0E:12:12:04:E7:5E:60:35:B7:5D:DA:65:F8:32:7D:63:06
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 019D29CEA61142BB2697698308C1F3E60F52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 1125
Signing time: Thu 26 Mar 2026 11:01:41 +0000
Manifest this update: Thu 26 Mar 2026 11:01:41 +0000
Manifest next update: Fri 27 Mar 2026 11:01:41 +0000
Files and hashes: 1: 6Lv0ELrWKZzM2WUhjrrfSxrLv5I.roa (hash: b+tPMLvT0wTQ8KNZFO7LFZXenP25HBtSk8cAgN48xuk=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: rkOh2YrqEjlnmy+Uw05muJGwzlIoMJxYMH8ukPTc25Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:a6:11:42:bb:26:97:69:83:08:c1:f3:e6:0f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Mar 26 11:01:41 2026 GMT
Not After : Mar 27 11:01:41 2026 GMT
Subject: CN=f841a40e121204e75e6035b75dda65f8327d6306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:fc:24:d8:11:f2:4b:71:59:68:fb:2c:a1:91:
68:3a:21:62:86:4d:94:b8:43:3a:49:c7:a6:bf:e9:
3b:99:66:6f:15:31:aa:af:31:bd:0f:21:0b:5d:28:
71:72:df:4b:63:a3:60:e5:71:24:d0:22:d8:8d:66:
20:15:36:ab:f0:74:f5:41:7b:8f:17:21:74:13:ca:
e6:01:08:f6:cb:4f:05:95:e0:cc:b7:82:41:35:00:
8e:b4:2e:c6:db:3a:8f:22:23:3c:80:56:ee:55:ee:
44:e1:6c:b4:30:70:55:d8:52:60:a3:eb:e2:30:a2:
52:ee:f4:c1:8e:39:3b:ef:80:fd:01:5a:e4:8c:81:
d9:98:be:a1:21:ab:cd:c6:c2:3d:2e:51:f2:89:76:
cc:e3:c5:6a:b8:d0:1b:81:04:8a:0c:61:d3:de:0e:
25:07:fd:5e:dd:1c:17:5f:f0:4c:3c:11:e1:24:52:
89:e0:bf:8f:50:41:d4:b5:a3:23:c6:30:64:22:4e:
03:98:32:6a:78:50:be:34:1d:19:d2:46:bd:d6:2b:
3e:e5:bf:85:12:ce:00:31:cf:ff:1c:c5:44:0e:6b:
9b:9a:1b:0f:9f:14:aa:1d:44:a2:63:6d:21:12:2d:
ea:8c:cf:d0:b2:33:5c:39:88:64:bd:a4:ac:b1:f1:
a0:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:41:A4:0E:12:12:04:E7:5E:60:35:B7:5D:DA:65:F8:32:7D:63:06
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:b2:21:4b:e6:ac:77:55:11:07:e5:4e:95:11:23:46:3b:60:
b0:03:ae:62:1a:56:6f:fe:a3:7c:7a:39:74:38:bf:b9:42:bb:
d4:86:28:cd:f7:a6:1a:23:d7:51:35:da:15:15:08:d8:24:20:
78:ab:25:b9:0d:71:89:59:21:99:f0:54:39:ed:10:e3:b0:11:
9e:88:60:95:7b:e6:f8:93:a2:fd:17:38:85:43:45:7c:a4:6f:
1a:37:35:57:94:3d:7c:ce:e6:51:74:90:76:e9:6b:63:f5:0b:
f8:4d:6a:9b:b1:91:ba:b5:fd:fb:51:8c:65:b2:ba:d5:4f:42:
bc:87:b5:8d:f3:df:70:99:83:a2:68:5a:a5:3c:59:91:7f:1f:
29:54:dd:2b:a5:2b:98:a4:e6:46:bf:f6:06:9d:84:33:23:94:
cd:66:1c:98:a0:20:bd:5d:f1:0f:2e:fa:a5:7e:fd:e6:11:9e:
fb:0f:c1:76:2e:9f:56:96:b0:67:09:be:a1:3f:27:c1:fa:13:
75:3b:ce:8c:11:d4:94:cb:92:af:8c:28:d6:28:d0:14:67:b9:
59:2c:63:2f:65:a2:ed:df:5f:62:9e:fb:ab:55:ce:73:f2:f6:
14:f8:cd:89:5c:e7:0e:a3:65:f8:15:b3:1c:a3:77:ef:86:03:
4c:a5:44:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:10:21 2026 by rpki-client