Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft
File: ur8nIaXXgzW3uX22OuxDXJyji8c.mft (raw, json)
Hash identifier: /zUYnrNqMT9HPNnAd8XTpW9dvP2Oh1MtOLx5ggH3lSA=
Subject key identifier: 29:F6:FB:42:59:94:27:27:3D:01:05:88:59:74:C7:28:FC:78:F4:06
Authority key identifier: BA:BF:27:21:A5:D7:83:35:B7:B9:7D:B6:3A:EC:43:5C:9C:A3:8B:C7
Certificate issuer: /CN=babf2721a5d78335b7b97db63aec435c9ca38bc7
Certificate serial: 019CAB6BD80C29007788BDAFECBDE966E492
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ur8nIaXXgzW3uX22OuxDXJyji8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft
Manifest number: 0A40
Signing time: Sun 01 Mar 2026 22:01:37 +0000
Manifest this update: Sun 01 Mar 2026 22:01:37 +0000
Manifest next update: Mon 02 Mar 2026 22:01:37 +0000
Files and hashes: 1: ur8nIaXXgzW3uX22OuxDXJyji8c.crl (hash: bSclFZXpRJlV76xSJVuUhy/Xm0RdRdLx5/4EdZHgwtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft
rsync://rpki.ripe.net/repository/DEFAULT/ur8nIaXXgzW3uX22OuxDXJyji8c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:d8:0c:29:00:77:88:bd:af:ec:bd:e9:66:e4:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=babf2721a5d78335b7b97db63aec435c9ca38bc7
Validity
Not Before: Mar 1 22:01:37 2026 GMT
Not After : Mar 2 22:01:37 2026 GMT
Subject: CN=29f6fb42599427273d0105885974c728fc78f406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:24:45:08:8b:67:e0:6a:46:15:28:43:b1:4b:
4e:4d:f2:33:3f:52:8a:b3:93:81:69:69:64:3f:d7:
f8:3c:fa:66:42:b1:d8:0a:36:3a:09:84:a9:14:d7:
31:85:cb:f9:47:08:48:27:60:02:12:7f:1a:ce:07:
02:4f:72:2f:56:94:2c:59:46:84:70:78:79:7e:28:
92:25:29:1f:fe:de:29:c1:3b:a5:6e:4a:63:d9:e1:
76:86:fd:af:f3:d9:bd:7c:49:56:00:5b:57:3e:78:
7a:42:32:08:df:5e:56:dd:f3:1f:f0:2f:72:c6:04:
22:06:e7:57:92:37:92:57:0b:20:b6:45:7e:60:80:
b2:88:33:69:e4:69:1f:c9:8d:14:84:01:f4:90:de:
7b:fb:02:00:93:33:cd:92:18:51:10:97:5b:8e:da:
90:04:e5:6e:58:d4:7d:a6:3b:9e:72:6d:c2:72:15:
ab:3a:df:88:9f:84:73:0b:9e:39:13:76:cb:27:13:
e2:66:c9:16:4b:5a:c4:c4:e6:aa:6b:ca:aa:e3:06:
46:6a:bd:6d:63:3f:ad:83:bf:54:82:d9:ce:c4:ea:
b4:f9:b5:30:23:30:48:30:9d:49:7d:7a:68:b5:c7:
4f:8f:b9:d8:44:f5:f8:44:b3:28:14:6b:48:ab:fd:
a8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F6:FB:42:59:94:27:27:3D:01:05:88:59:74:C7:28:FC:78:F4:06
X509v3 Authority Key Identifier:
keyid:BA:BF:27:21:A5:D7:83:35:B7:B9:7D:B6:3A:EC:43:5C:9C:A3:8B:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ur8nIaXXgzW3uX22OuxDXJyji8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/cfd7a3-4624-40be-bb23-d7bff119fd5d/1/ur8nIaXXgzW3uX22OuxDXJyji8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:68:04:0e:7f:b0:7b:11:03:1f:eb:b0:81:cb:c9:16:65:cf:
5b:c3:2f:09:e1:bf:aa:d4:2d:39:a0:b0:10:f7:a1:95:57:47:
4f:f2:3f:6c:dd:fb:c2:6a:c9:c3:85:8f:d0:bb:63:1e:f6:67:
c8:5e:d9:7f:50:1b:2c:bb:c5:f3:5b:71:0c:31:03:cb:84:8c:
6d:5f:af:ff:1d:14:e9:4b:54:fe:af:6c:87:d8:f4:74:40:d3:
d7:4d:0a:26:98:5a:a6:f5:21:82:a9:3c:87:da:1b:2b:00:43:
ef:0a:65:4f:ba:a0:69:d2:82:ea:ef:fc:e8:bd:fe:fc:09:be:
ca:1d:06:6d:aa:44:4b:96:23:ff:b2:7c:0e:f8:ed:81:1e:78:
df:14:2c:4b:5c:57:6a:45:29:05:bd:d6:56:74:36:30:45:1d:
f6:74:38:ad:e6:7b:48:0a:bf:9e:a5:6c:ac:26:e2:f9:f1:6f:
02:db:84:68:52:1b:13:2e:be:ee:0c:80:1f:0e:7f:09:dd:83:
31:c6:66:44:8c:5b:32:7a:39:11:ea:8a:0c:bf:84:ec:f9:fd:
7d:87:19:68:84:bb:2b:59:18:54:14:57:ec:0e:58:0b:9d:73:
50:58:2b:8a:44:f7:30:2a:f4:1b:ff:e1:e4:6a:28:bf:2e:97:
19:94:30:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:39:43 2026 by rpki-client