Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: RpLdIk2RTzOUMDoJaqL4rpfHgVZkpUmJsPvcPv+k2m4=
Subject key identifier: C0:ED:3C:55:CB:4B:90:A4:9C:9C:47:59:06:70:EF:A0:96:9C:17:64
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 019CACB45F8A5D1368A005026AA99F48B1E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 0619
Signing time: Mon 02 Mar 2026 04:00:27 +0000
Manifest this update: Mon 02 Mar 2026 04:00:27 +0000
Manifest next update: Tue 03 Mar 2026 04:00:27 +0000
Files and hashes: 1: La2aKUWeZDjg9QmjOG5Ypn3DLPs.roa (hash: 0EBH5b7C6wuxTeA4u0lRX6AP5UIiFNUIOVkyZ9JGpK4=)
2: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: IkKQaiGg692WcRBvRSlhUq837T2zcmf4tRPiqVpTon0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:5f:8a:5d:13:68:a0:05:02:6a:a9:9f:48:b1:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: Mar 2 04:00:27 2026 GMT
Not After : Mar 3 04:00:27 2026 GMT
Subject: CN=c0ed3c55cb4b90a49c9c47590670efa0969c1764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b2:15:8b:99:78:22:0d:fc:af:9d:fb:5f:87:
8f:73:1b:01:0a:c0:0c:75:f4:55:62:48:c2:b1:67:
93:ea:6a:4a:61:96:cf:65:5d:54:41:e7:a4:01:80:
1f:f2:bd:c6:6c:23:b5:41:d8:62:24:17:09:2e:0d:
6a:2a:93:81:f5:b6:2a:9d:47:78:a2:a6:ff:28:4b:
f1:d4:3b:30:70:05:5e:80:fe:0c:f1:35:c1:74:df:
06:6c:08:10:a5:88:2b:ac:78:3a:87:48:7f:ff:1f:
2d:fd:a4:f5:7e:10:6d:ac:d0:df:71:d8:38:24:e9:
9b:4e:ec:b1:8c:5e:31:22:d5:f3:0b:98:73:13:58:
a4:91:03:7a:9d:26:90:4a:c1:65:65:92:10:cb:fd:
58:d2:93:7a:31:57:e9:fa:b1:61:f1:bb:e9:6f:7a:
c8:64:dd:91:55:bf:a2:f5:01:40:1a:e5:5f:93:a2:
df:f5:27:16:37:ea:94:c2:b6:84:c0:ee:37:5a:1d:
87:8b:f3:76:3e:ec:32:fd:a5:1a:26:5d:76:21:d4:
c9:c8:0d:31:61:2b:5a:9d:51:f2:d7:dd:30:da:12:
1e:5c:76:d0:d4:18:ad:d1:71:9d:27:b5:e7:4b:05:
c4:1d:57:f8:05:aa:b8:1d:61:b6:03:91:af:9f:e2:
66:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:ED:3C:55:CB:4B:90:A4:9C:9C:47:59:06:70:EF:A0:96:9C:17:64
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:19:59:9c:ff:80:78:bb:97:58:3c:ce:04:49:7b:44:e0:4c:
c2:10:6a:ee:50:67:eb:ac:79:09:cf:80:0f:00:6a:08:b0:f8:
cb:4d:b7:78:0e:5d:aa:4b:a4:f5:0d:84:49:b8:f1:a4:92:47:
65:8d:7d:a7:bb:a5:4e:c9:78:a4:5d:f1:74:d3:90:15:33:ed:
4e:37:77:4a:1c:bf:96:76:74:f1:c0:87:90:7f:ff:35:9e:c3:
a2:08:8e:8d:5d:b1:07:dc:17:3a:b7:c0:d4:b1:9a:29:90:80:
49:1d:07:ef:66:5b:c9:34:08:81:40:9c:60:c0:cd:55:26:70:
4e:a9:75:52:99:82:4f:17:e8:b5:b4:6a:ca:f3:98:1d:be:18:
8e:fb:78:18:6d:0d:09:6f:4a:27:b3:94:8f:f1:4a:7e:12:23:
a7:cd:f6:14:62:e9:7c:da:4b:aa:a7:b1:dd:8a:2b:35:e8:90:
45:c5:35:8d:7c:80:77:49:22:fc:5f:bb:15:6b:91:6f:d4:80:
e1:fb:4f:28:34:fd:dc:fc:20:e9:9d:5e:7e:8f:76:07:37:5d:
a6:79:c8:95:66:31:28:9c:a0:84:14:65:ce:b6:a1:2c:d4:05:
b1:bd:51:64:12:09:64:36:a4:ff:4f:b3:50:af:bc:7d:f8:66:
55:f6:3b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:24:34 2026 by rpki-client