Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
File: dUI-b2St_Fh6CPgawqySYOsu1hU.mft (raw, json)
Hash identifier: 57B2WrTTyPl6q9mkIXMFzx11bp9548iNS0AIe6hOrxk=
Subject key identifier: FF:6D:48:29:7D:99:6D:3B:08:E5:A9:A1:89:5E:30:2C:6B:E1:33:AB
Authority key identifier: 75:42:3E:6F:64:AD:FC:58:7A:08:F8:1A:C2:AC:92:60:EB:2E:D6:15
Certificate issuer: /CN=75423e6f64adfc587a08f81ac2ac9260eb2ed615
Certificate serial: 019CAB6BBD1ABE80F4C0732ACFE9F21E3ECF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
Manifest number: 0EB7
Signing time: Sun 01 Mar 2026 22:01:30 +0000
Manifest this update: Sun 01 Mar 2026 22:01:30 +0000
Manifest next update: Mon 02 Mar 2026 22:01:30 +0000
Files and hashes: 1: dUI-b2St_Fh6CPgawqySYOsu1hU.crl (hash: 1PODsX1d+Gdb3t5wFl5T6pi7rNeemuhkMqKOHVBnvu0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:bd:1a:be:80:f4:c0:73:2a:cf:e9:f2:1e:3e:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75423e6f64adfc587a08f81ac2ac9260eb2ed615
Validity
Not Before: Mar 1 22:01:30 2026 GMT
Not After : Mar 2 22:01:30 2026 GMT
Subject: CN=ff6d48297d996d3b08e5a9a1895e302c6be133ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2d:61:d5:c8:29:12:a6:af:aa:0b:29:50:e1:
57:24:d4:a9:8a:60:ab:5e:a4:ff:28:e4:d4:cc:21:
a6:48:e0:b1:95:81:d3:8c:cd:b9:f5:85:db:f3:b0:
40:80:b6:b7:17:11:ec:d5:2c:90:a7:e6:5b:b9:9f:
c7:da:22:42:78:97:f0:42:21:ea:9e:59:d8:80:ec:
2b:3b:63:3a:d3:1b:c3:0e:93:60:43:00:90:f0:00:
0d:5d:97:5e:a7:fd:bc:d2:7a:5d:6f:9f:aa:ec:b1:
16:7a:cb:aa:3c:1d:bd:bd:d3:36:27:31:b7:a7:d4:
dc:7b:54:4c:46:79:27:ae:b4:c6:53:f9:ac:af:db:
e9:bd:bf:a8:4d:b9:cb:17:d4:49:46:f8:c0:a3:49:
00:99:4e:ea:dc:3a:33:c0:72:b0:8c:ac:ec:a1:d1:
78:10:7c:22:b4:9b:38:c7:b2:5e:2e:ce:e2:a2:29:
51:0f:c8:0e:3b:90:ba:18:4e:24:81:c4:95:22:8e:
8c:7c:e3:e0:d3:a6:fd:93:13:92:53:6c:00:f5:36:
38:6f:6f:6e:b9:f9:17:7e:10:d9:21:1e:54:5b:49:
25:19:d1:9e:71:6f:84:3c:56:96:c7:0f:19:04:db:
e0:8b:94:84:87:e8:75:2a:0e:4b:64:67:92:59:09:
66:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:6D:48:29:7D:99:6D:3B:08:E5:A9:A1:89:5E:30:2C:6B:E1:33:AB
X509v3 Authority Key Identifier:
keyid:75:42:3E:6F:64:AD:FC:58:7A:08:F8:1A:C2:AC:92:60:EB:2E:D6:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:8d:08:d5:03:3a:30:db:15:60:1a:59:b9:dd:9d:f7:6e:85:
29:20:d5:5f:07:08:56:c2:46:07:52:47:e9:ff:ac:f0:a2:3a:
3f:f8:25:e7:53:15:dd:80:58:de:23:80:eb:43:c3:5f:75:2f:
42:c4:6c:51:d2:02:04:92:ed:ae:d5:99:a2:90:c7:24:cc:6a:
23:fa:c1:58:a5:95:1e:41:23:7c:da:12:6a:55:a1:f5:10:66:
a3:12:00:63:4f:11:cd:ec:9b:65:f4:16:bd:8e:1b:50:6b:db:
24:bb:b5:5c:79:37:a5:12:e9:86:8d:7c:2f:fa:e9:d6:85:ac:
af:3f:5d:0d:a6:7c:a0:00:ca:91:fc:a7:eb:4b:cc:37:b0:43:
40:ef:f2:4b:84:c6:f7:00:79:03:0d:3f:09:87:12:f3:8c:83:
86:e2:08:1b:c2:23:c0:1f:68:d5:ee:18:be:e2:b0:e8:c1:12:
35:af:59:13:28:3f:f2:d5:5b:1c:22:a5:da:ff:75:d0:56:36:
c3:75:a4:e7:e6:9e:f3:c4:1e:ae:62:8a:71:da:10:8c:b7:ea:
c5:96:ef:e0:8e:3a:60:99:5d:7d:fa:fd:a4:bc:42:8a:4b:43:
40:7b:fe:5a:30:f9:22:86:e9:cc:b6:f5:ff:0b:11:9c:ee:a9:
02:7a:c6:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:00:10 2026 by rpki-client