Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
File: uv5tfV8eRHjRoCUXHaawObJjAR8.mft (raw, json)
Hash identifier: UTVqTak+V/QiIYU+0MmzDoJCmPtrme5iWVVETzqkYXM=
Subject key identifier: B0:F5:42:54:8F:B7:0D:B3:EF:FF:E2:7F:D4:DE:BC:25:57:29:60:FA
Authority key identifier: BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
Certificate issuer: /CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Certificate serial: 019CAD5A5243922DCAF88CD500BF255D1391
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
Manifest number: 0BEA
Signing time: Mon 02 Mar 2026 07:01:43 +0000
Manifest this update: Mon 02 Mar 2026 07:01:43 +0000
Manifest next update: Tue 03 Mar 2026 07:01:43 +0000
Files and hashes: 1: uv5tfV8eRHjRoCUXHaawObJjAR8.crl (hash: y6swnAUe3xFwGWDsX5+qrWPcD2V79r09eAR3Gr6Idb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:52:43:92:2d:ca:f8:8c:d5:00:bf:25:5d:13:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Validity
Not Before: Mar 2 07:01:43 2026 GMT
Not After : Mar 3 07:01:43 2026 GMT
Subject: CN=b0f542548fb70db3efffe27fd4debc25572960fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:50:72:3c:c9:48:3e:19:2f:e1:c2:64:57:36:
bf:66:34:10:19:b4:12:b9:83:b1:51:19:fe:73:07:
b1:3d:eb:9c:06:02:64:0e:ed:97:2c:9f:ed:31:4e:
93:e4:be:39:93:14:21:d5:cb:6a:02:8f:5d:65:8b:
2c:45:5e:f9:a1:77:77:51:cd:82:44:25:fb:62:56:
2f:bb:72:6b:f4:ab:52:d7:1c:84:8c:10:71:39:3c:
de:ba:bd:bd:5d:ba:ff:f5:53:89:28:df:2a:17:9c:
c6:dd:84:00:b9:46:cd:78:71:15:f0:33:f6:1e:36:
56:c3:8d:16:dc:69:19:43:df:30:06:0d:62:8b:ff:
75:68:be:00:b1:c2:ed:70:f6:a6:00:7f:89:cd:57:
ba:27:ae:a7:2a:3d:c7:aa:23:22:95:da:9f:ff:19:
ef:15:30:2f:51:6c:ea:c6:6f:5f:3a:9d:05:cc:a9:
c3:94:38:a2:49:6d:0b:1e:b3:e5:6d:b9:19:33:9d:
78:84:ed:30:41:8d:ba:57:66:78:b4:80:b5:66:1c:
81:25:e5:d3:1d:3a:1a:41:7b:2b:5e:60:22:41:ba:
29:dc:c5:70:9b:a9:68:7d:0b:0f:be:e3:f4:e9:10:
70:23:9c:41:99:f5:92:1a:2f:9f:96:d0:f5:4d:8f:
d6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F5:42:54:8F:B7:0D:B3:EF:FF:E2:7F:D4:DE:BC:25:57:29:60:FA
X509v3 Authority Key Identifier:
keyid:BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:4a:00:2e:54:6d:18:80:4a:c1:7e:e1:70:be:95:c3:45:4a:
03:47:52:e2:38:8f:df:67:47:e1:72:0e:a5:36:f1:95:f0:f5:
4d:d6:8a:4e:f7:e6:cf:5a:e5:16:59:87:f9:a5:0f:2f:f0:51:
71:37:7b:6c:13:51:fb:98:45:f2:ff:0b:a6:68:13:ae:0f:a2:
22:d4:7f:54:a3:f1:43:0d:3a:91:26:83:79:4e:13:c0:a2:10:
2c:96:29:d4:fb:38:5f:81:a9:bf:ed:a6:9d:1c:71:22:75:a9:
2a:ca:47:59:18:6f:6a:e6:5f:45:df:4b:32:d8:28:cc:84:f2:
c9:ca:9f:82:22:1d:fe:95:ad:07:8f:82:41:ec:0c:70:c9:54:
51:95:da:90:46:a9:90:fc:d7:7a:67:9b:7b:54:09:65:9a:1b:
d7:d3:2e:7c:c7:c8:57:5a:a1:6c:75:81:68:05:e1:c1:2b:f0:
c4:d6:ec:bc:ed:43:62:2e:d6:92:65:73:44:4c:c4:9a:a7:76:
e3:10:43:86:f9:fe:8d:45:7f:92:b3:da:f3:e1:0b:52:15:ba:
9d:18:34:35:f9:73:a9:8b:5e:7e:14:76:42:59:34:f0:1a:a7:
f4:68:36:de:c4:cd:68:11:5a:69:ce:40:27:47:43:b6:62:49:
d8:87:a1:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:54:09 2026 by rpki-client