Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.mft
File: UB7eLUfXfhQKl78pidqCpYdzyMA.mft (raw, json)
Hash identifier: EJWWN3Ckv/xG9LEeMopWgFVJ52AIba2e2Cdjoa3gg7I=
Subject key identifier: A3:A1:0F:33:90:4E:E0:F6:B7:D4:9A:B9:FE:6B:85:3D:FA:05:CE:5E
Authority key identifier: 50:1E:DE:2D:47:D7:7E:14:0A:97:BF:29:89:DA:82:A5:87:73:C8:C0
Certificate issuer: /CN=501ede2d47d77e140a97bf2989da82a58773c8c0
Certificate serial: 019D98F4DF128397EA2AE63618AC70C8FDFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UB7eLUfXfhQKl78pidqCpYdzyMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.mft
Manifest number: 0FA6
Signing time: Fri 17 Apr 2026 01:01:17 +0000
Manifest this update: Fri 17 Apr 2026 01:01:17 +0000
Manifest next update: Sat 18 Apr 2026 01:01:17 +0000
Files and hashes: 1: UB7eLUfXfhQKl78pidqCpYdzyMA.crl (hash: yYhL3C0yYuc7xhUMKWeKF/+W8xi6iMp9jDwMl0lsbjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/UB7eLUfXfhQKl78pidqCpYdzyMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:df:12:83:97:ea:2a:e6:36:18:ac:70:c8:fd:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=501ede2d47d77e140a97bf2989da82a58773c8c0
Validity
Not Before: Apr 17 01:01:17 2026 GMT
Not After : Apr 18 01:01:17 2026 GMT
Subject: CN=a3a10f33904ee0f6b7d49ab9fe6b853dfa05ce5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b8:c2:f4:eb:6b:69:c3:4c:93:4f:bd:93:c3:
70:ee:99:51:07:66:86:bb:0a:f2:28:a2:5a:76:8e:
6e:7c:d1:65:63:5d:9d:e7:36:15:3e:37:30:bc:5a:
30:06:3f:67:40:81:51:2f:72:15:2b:83:4b:d0:95:
3c:a9:c5:21:23:09:fb:9e:3f:88:f8:cd:08:39:b8:
6a:ed:b9:7f:0c:d1:d9:e5:15:65:51:a7:52:09:8f:
65:94:46:b2:e0:2b:94:6b:9c:b6:cd:73:04:e4:68:
22:6f:ef:a7:40:4c:6d:8a:63:c3:b8:5a:2a:17:87:
28:b2:b8:2f:34:c6:e0:27:c2:0f:60:fe:03:3c:ab:
61:7a:68:73:3e:99:9d:c0:2c:7f:7c:4d:a3:a9:ce:
6f:8b:cd:f6:81:bd:16:23:16:e4:d2:4d:42:9c:c6:
98:8a:88:f6:d2:34:ce:d2:04:2b:4a:f7:7d:d1:e4:
52:fd:5c:2e:31:40:eb:75:57:56:79:bf:fc:a5:ce:
0a:99:35:e7:5a:94:53:01:6e:4d:07:6b:c2:23:99:
e1:6a:fc:63:dd:5c:45:ff:49:c4:ae:57:18:ba:f2:
6e:76:65:63:4b:d6:06:35:76:a8:a5:3c:5f:e8:2b:
17:cc:6f:24:76:8f:56:87:2c:f6:52:98:0e:c8:18:
84:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A1:0F:33:90:4E:E0:F6:B7:D4:9A:B9:FE:6B:85:3D:FA:05:CE:5E
X509v3 Authority Key Identifier:
keyid:50:1E:DE:2D:47:D7:7E:14:0A:97:BF:29:89:DA:82:A5:87:73:C8:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UB7eLUfXfhQKl78pidqCpYdzyMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/01b79c-7225-4916-8221-12edd0e0d21b/1/UB7eLUfXfhQKl78pidqCpYdzyMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:14:3a:b6:2c:e3:91:99:72:38:85:c5:cd:82:c7:b0:5c:eb:
b5:3f:53:a9:95:19:11:9f:e5:1a:7d:89:6f:09:7b:8d:b7:37:
15:24:ec:cd:df:c5:cf:12:3f:8b:f5:02:46:cc:68:10:ac:bc:
e7:83:a0:fe:48:e0:8b:db:47:85:2b:6e:35:b4:b3:fd:47:f1:
c7:d9:ee:65:53:e5:d7:6a:07:da:a7:4a:53:72:ce:13:8c:80:
cf:4a:db:12:8e:28:b0:a2:85:3e:bb:eb:04:ba:a5:5c:67:41:
76:9c:c5:26:b8:11:2b:a7:1e:1c:79:f3:2f:ef:dc:a3:92:90:
ff:16:7c:93:29:0e:92:80:19:34:f9:33:ef:e5:e6:e6:0b:b1:
3d:70:d6:35:49:9f:a4:60:d0:98:77:b5:12:72:ea:a0:0f:bb:
8d:3f:49:11:83:63:0b:15:75:51:47:97:c0:62:d3:82:33:a8:
9f:24:7d:17:43:dc:37:5f:1e:c9:bc:86:fe:3a:14:04:12:ab:
2a:b7:00:b9:40:63:f2:39:af:0d:a7:bf:b7:51:b9:60:ec:ee:
d2:e7:37:3e:36:29:3c:c6:e2:27:1e:5f:f0:9d:8e:bd:2a:14:
23:87:89:ac:d2:07:27:29:bb:35:5f:08:29:0c:5c:c4:fa:c0:
e5:60:ea:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:32:48 2026 by rpki-client