Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
File: UFzWGp9t6drMDTySFwbffVCvvW8.mft (raw, json)
Hash identifier: 1xuxRUcH2LrXT6QqAHfKZtcH3DVxM+8nu1hTUjGcZBo=
Subject key identifier: 5B:52:A5:16:B1:02:43:5D:E4:BA:DA:96:79:61:96:2F:9E:0F:B1:30
Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Certificate serial: 019CAB3468BCB16E510DFF5A3AEA573AE6CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
Manifest number: 0E9A
Signing time: Sun 01 Mar 2026 21:01:04 +0000
Manifest this update: Sun 01 Mar 2026 21:01:04 +0000
Manifest next update: Mon 02 Mar 2026 21:01:04 +0000
Files and hashes: 1: KYZm_9MuL_c9ERWs0Td3tSLq0RM.roa (hash: fei8OCGwkyhg3dv3nNRDFJMFMNR03cAB020hgr7s0HQ=)
2: UFzWGp9t6drMDTySFwbffVCvvW8.crl (hash: RIM2MmNP3GLCxztaaQJKCFBbArnYPWITOptGBqX0nNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:68:bc:b1:6e:51:0d:ff:5a:3a:ea:57:3a:e6:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Validity
Not Before: Mar 1 21:01:04 2026 GMT
Not After : Mar 2 21:01:04 2026 GMT
Subject: CN=5b52a516b102435de4bada967961962f9e0fb130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:21:83:1e:56:39:cc:bb:93:41:8f:0d:de:5e:
fb:a9:ef:c4:9e:fe:c1:3c:40:99:ba:59:bb:ef:5c:
bc:8a:91:26:ed:10:aa:8c:5d:e9:e9:95:0f:59:f3:
52:8c:37:04:ac:27:64:7d:34:12:24:92:e2:75:a5:
ad:a2:aa:3f:bc:5b:55:43:f3:02:16:60:75:dc:70:
ef:3f:ee:cd:d7:a1:57:93:a6:83:78:92:32:0d:9a:
46:30:76:9f:d0:cc:15:dd:84:da:b4:93:9f:9d:ee:
95:28:f7:87:37:50:16:63:bb:6f:59:49:b0:be:1d:
88:51:b6:f1:5a:56:15:a1:d2:af:8f:b2:c2:06:8e:
92:0d:6d:fa:a4:12:1b:1a:b6:86:10:d3:9e:cf:f0:
b1:6f:4d:b2:2d:5f:6b:3a:77:87:71:7f:1b:be:74:
89:a8:cb:78:a2:c9:bf:1a:b3:3b:a6:bb:62:e6:29:
9e:f9:f3:2d:d0:f9:5a:f3:e7:21:9c:bb:ef:78:a1:
e1:c2:81:87:17:0c:64:6f:d0:ab:ca:6c:3c:4a:c4:
00:bb:a9:4c:fe:bc:fc:99:5d:99:57:d0:51:b7:47:
f1:e6:2f:d2:87:5e:56:36:c2:15:f7:7c:86:75:5f:
71:a6:4c:fa:0f:7d:c0:0d:7f:b2:bd:19:52:a8:9d:
7d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:52:A5:16:B1:02:43:5D:E4:BA:DA:96:79:61:96:2F:9E:0F:B1:30
X509v3 Authority Key Identifier:
keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:66:93:40:9d:19:d9:59:1e:1a:64:54:6d:2b:39:25:07:ab:
4b:f0:87:02:0d:46:87:28:a3:43:ff:33:49:f2:d8:84:0c:3d:
fa:80:16:19:c1:a6:21:6d:c5:d2:45:8f:e5:74:9a:e7:38:00:
64:00:54:6c:e7:35:54:a1:79:d0:87:85:13:e9:3d:08:d2:ee:
c1:11:a2:eb:6e:3f:ac:0d:9d:22:01:c3:93:3a:ca:51:3c:e4:
50:87:dd:c5:2b:a2:a0:e4:6b:ea:ff:2e:04:24:03:a8:81:ac:
ae:60:72:1c:77:86:2c:07:df:56:20:b4:e9:50:96:25:f5:fb:
97:67:5b:83:95:da:2f:e6:17:ae:5e:03:0f:6a:2c:19:b5:16:
49:d2:fb:b3:98:b7:e4:a9:5f:09:73:12:fe:df:5e:a9:fc:1c:
86:cb:e7:16:ef:2e:8d:27:97:1e:73:82:b4:cc:7d:8b:f4:99:
95:c5:ca:ca:a7:a1:b5:7b:92:a0:48:86:21:4d:e5:26:43:de:
14:e6:7c:a2:7e:2e:ac:70:42:76:21:e8:9f:f0:ca:51:38:e3:
de:8f:b3:94:b1:dc:a3:85:f8:f0:d3:09:cf:92:cd:3f:ff:42:
1f:57:a3:91:4f:3c:43:59:52:8c:c6:17:db:a2:18:6a:e8:0d:
9b:9d:1c:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:34:23 2026 by rpki-client