Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.mft
File: UB7eLUfXfhQKl78pidqCpYdzyMA.mft (raw, json)
Hash identifier: raI0RtW/agZs+FdG4mrcX1bhd3LifUXETFb5vlvnhpE=
Subject key identifier: 0F:63:CD:8D:40:CD:5B:38:24:E0:75:7A:97:E5:A4:DB:77:55:C2:BD
Authority key identifier: 50:1E:DE:2D:47:D7:7E:14:0A:97:BF:29:89:DA:82:A5:87:73:C8:C0
Certificate issuer: /CN=501ede2d47d77e140a97bf2989da82a58773c8c0
Certificate serial: 019CAD5A1F8ED118742BCDE6D141B1DAA508
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UB7eLUfXfhQKl78pidqCpYdzyMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.mft
Manifest number: 0F2C
Signing time: Mon 02 Mar 2026 07:01:30 +0000
Manifest this update: Mon 02 Mar 2026 07:01:30 +0000
Manifest next update: Tue 03 Mar 2026 07:01:30 +0000
Files and hashes: 1: UB7eLUfXfhQKl78pidqCpYdzyMA.crl (hash: LUgMV4NwMPmAZhGExCkWBfxbhVL8RQiQeffykazInhY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/UB7eLUfXfhQKl78pidqCpYdzyMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:1f:8e:d1:18:74:2b:cd:e6:d1:41:b1:da:a5:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=501ede2d47d77e140a97bf2989da82a58773c8c0
Validity
Not Before: Mar 2 07:01:30 2026 GMT
Not After : Mar 3 07:01:30 2026 GMT
Subject: CN=0f63cd8d40cd5b3824e0757a97e5a4db7755c2bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1d:37:4c:13:0a:59:c3:db:91:e3:6d:29:9f:
b0:df:29:d9:1e:26:1e:83:ba:2e:80:f2:54:0f:20:
57:61:03:4f:30:c5:af:cb:1f:8a:11:47:f6:c0:4f:
98:1d:ba:0d:03:da:69:d5:07:3b:ea:97:6d:72:cf:
72:f8:b2:3d:21:47:c2:e9:b3:8c:ff:e3:66:aa:42:
c4:81:b7:2f:54:b7:6a:7a:54:02:20:fb:3a:cb:67:
1a:80:aa:45:06:e9:db:8f:3c:03:fd:d3:8f:c5:fb:
ae:c1:b6:79:a0:56:2d:6f:37:e0:10:92:86:b9:38:
75:8c:c7:b5:3e:53:af:16:de:80:11:bc:d3:a3:f1:
da:a4:25:71:4d:c3:fe:0a:f7:6a:e6:a1:ea:8f:a4:
78:14:ef:6f:db:6b:ae:4e:3e:ff:32:d2:bb:8a:c2:
a4:0c:df:14:8d:1c:2c:b5:b1:0e:99:c7:dd:36:82:
8f:2c:62:dd:ce:b5:1b:3e:5f:02:15:c3:2b:c4:1b:
d7:42:f6:96:f7:92:a4:1e:5a:6b:49:97:45:c0:41:
0d:b2:fc:c3:e3:a1:e5:b4:ad:c4:23:e0:96:28:9e:
66:9b:6a:4c:7f:31:44:c8:42:62:ac:7d:b1:3e:c8:
ba:eb:90:af:e9:27:38:0d:40:ce:a9:4b:c6:b5:39:
fe:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:63:CD:8D:40:CD:5B:38:24:E0:75:7A:97:E5:A4:DB:77:55:C2:BD
X509v3 Authority Key Identifier:
keyid:50:1E:DE:2D:47:D7:7E:14:0A:97:BF:29:89:DA:82:A5:87:73:C8:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UB7eLUfXfhQKl78pidqCpYdzyMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:9f:1e:7c:79:5c:08:cd:6d:0c:77:cf:30:3b:79:59:e8:54:
58:c7:b7:c5:98:ed:e2:b3:85:8a:4a:41:9c:f0:a9:c7:ce:a3:
a9:73:79:ad:fa:fb:48:9f:f4:7b:90:fd:7e:f0:12:13:63:1d:
ed:64:d2:fb:dc:d8:23:ef:2c:34:5f:6b:36:9a:c2:d5:f9:42:
8d:eb:bd:fc:f1:f9:b4:9b:d9:d5:70:21:25:86:24:4f:ee:a5:
9e:4a:3a:15:19:e8:f3:69:72:a5:58:91:e6:f6:ec:ef:b7:4c:
60:ef:7e:8f:c6:50:a5:fe:1d:4e:e9:0b:7a:36:bb:02:50:3e:
f8:4f:74:f9:ee:99:cb:f4:6e:7a:18:73:d2:75:8d:02:1a:e8:
ed:a6:58:4a:3a:6c:7b:1d:26:5b:ec:4d:c9:31:39:9b:48:2e:
f2:40:b6:b7:fe:85:c0:ef:69:c1:ef:0c:23:77:16:09:7d:83:
05:97:69:51:6b:0f:26:89:c6:7a:e9:3c:5b:d9:12:54:35:7e:
54:03:d1:9d:68:b8:d5:b2:8d:9f:72:3c:39:ea:f3:c9:8c:9b:
4e:5e:ef:9f:bf:4e:66:cc:c7:a4:3e:16:d4:03:c3:7a:c8:05:
05:9f:be:1a:77:41:25:15:4f:43:73:28:73:bc:36:5c:56:38:
96:2c:89:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:02:03 2026 by rpki-client