Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: sZuCV35/if2aO5MWW99tSN171u/dLmuZsjapghoogXY=
Subject key identifier: 88:1A:C5:B1:A5:E3:F0:83:AF:9B:AE:45:71:04:3B:D4:1A:45:D3:11
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 019D9C2C889AC0CF3A730864A8F6D867C508
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 0695
Signing time: Fri 17 Apr 2026 16:00:57 +0000
Manifest this update: Fri 17 Apr 2026 16:00:57 +0000
Manifest next update: Sat 18 Apr 2026 16:00:57 +0000
Files and hashes: 1: La2aKUWeZDjg9QmjOG5Ypn3DLPs.roa (hash: 0EBH5b7C6wuxTeA4u0lRX6AP5UIiFNUIOVkyZ9JGpK4=)
2: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: gVME2Im5EUYr/FZx+ooSDeYS22eQoW/clAkzRBwrXHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:88:9a:c0:cf:3a:73:08:64:a8:f6:d8:67:c5:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: Apr 17 16:00:57 2026 GMT
Not After : Apr 18 16:00:57 2026 GMT
Subject: CN=881ac5b1a5e3f083af9bae4571043bd41a45d311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:05:02:15:1e:c7:74:de:70:45:f0:0e:03:9e:
06:f1:78:39:f0:dd:22:8c:a1:26:34:40:7c:89:0d:
15:37:d2:d4:9b:2a:4a:84:95:71:4e:db:f0:b3:fc:
4e:10:ff:4f:f4:6a:5b:f2:fd:44:7c:77:b8:48:f2:
2f:c4:29:8d:cb:78:04:30:8e:dc:77:cc:2d:c2:b6:
d4:0f:08:5f:9f:4c:d6:2d:73:72:9a:36:c3:a7:e9:
7a:d4:18:e9:79:ce:d9:c9:ef:1e:c2:f5:63:50:ad:
c8:5d:41:ad:b2:30:20:0b:b3:1d:ad:d3:f1:7a:e2:
86:d8:4f:b5:1f:0d:9a:fd:6d:2c:db:17:fd:37:df:
f2:0c:21:51:79:1d:66:61:08:34:96:81:d4:24:f7:
dd:5a:a6:9c:e3:1b:c0:79:5e:91:b4:c4:b6:9c:ad:
18:e1:86:02:1c:c1:de:84:75:72:4b:c3:95:5f:51:
48:ea:cd:01:77:c7:1f:78:46:cd:5d:c8:69:fa:34:
bf:70:15:7c:40:09:27:9c:34:3c:3f:e2:ba:3a:b0:
28:d7:4b:3c:08:dc:fc:3a:da:a0:50:0e:f6:01:5f:
93:fe:55:fa:ca:a6:31:65:66:13:04:de:16:3d:07:
bd:73:89:db:71:60:e1:f4:38:60:14:47:94:51:81:
03:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:1A:C5:B1:A5:E3:F0:83:AF:9B:AE:45:71:04:3B:D4:1A:45:D3:11
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:6b:1b:3b:ab:c1:78:bb:70:03:28:13:13:f6:4b:8c:f6:50:
2c:40:a9:b6:c9:c9:07:9e:3e:10:ef:19:10:19:d5:fe:30:b7:
dd:a4:b5:99:ee:ec:ea:2f:fc:b1:b1:0e:60:78:0d:3e:46:48:
a5:c9:37:00:e3:c4:71:24:27:b9:30:d5:9b:6f:a3:0d:07:99:
0f:b7:13:e0:17:45:49:fe:ed:18:63:01:3f:0a:c4:1d:f2:fb:
3d:43:03:65:39:dc:fa:22:81:9c:30:ec:c8:03:92:bf:76:07:
78:e7:9b:6c:13:1e:a0:ed:c2:de:ca:78:60:d7:4a:d7:f7:85:
fc:a8:21:37:38:16:04:80:05:ff:4f:36:71:e9:5a:54:34:4d:
02:57:90:d3:d8:17:23:37:ce:ab:58:4d:4d:1d:6f:cd:1d:58:
b6:d0:dc:7c:08:ab:aa:55:b9:f8:f4:9e:74:f7:7c:59:98:28:
12:d7:b9:79:e3:34:96:40:18:f2:e9:5c:32:b4:1b:53:ac:58:
d3:1b:f6:36:41:95:f6:e9:81:36:8a:b3:3a:c3:e1:f7:88:55:
fc:83:60:4e:23:e0:6b:43:35:4e:df:bd:c9:25:6b:2c:80:55:
26:a6:a1:da:5b:46:c0:56:e5:ba:05:ca:1f:f9:9e:33:65:c6:
89:1f:7f:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:04:35 2026 by rpki-client