Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
File: u7hl_W36q6dxJJt-uujr1SgKDJc.mft (raw, json)
Hash identifier: wFK6uR7018aEklIM2dZ3joGEoamigS4MFf69ua5YcZg=
Subject key identifier: 0E:32:D4:43:4C:A2:48:FB:81:63:70:D1:5C:02:90:30:21:46:0A:BA
Authority key identifier: BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
Certificate issuer: /CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Certificate serial: 019CAF7EB1D6EF2D907AD3E8189B9A2E9A7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
Manifest number: 1393
Signing time: Mon 02 Mar 2026 17:00:41 +0000
Manifest this update: Mon 02 Mar 2026 17:00:41 +0000
Manifest next update: Tue 03 Mar 2026 17:00:41 +0000
Files and hashes: 1: Bym-x8E18AtLf0ybpilnkQ7yGpo.roa (hash: R+XsuHoebGNFenykqVHPvxpXZ/5AsWEx8oTWF+hIAFQ=)
2: u7hl_W36q6dxJJt-uujr1SgKDJc.crl (hash: ny6Qhem5fZG/367eD9RngjBmn+OcQnAW87TM1B6/SzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:7e:b1:d6:ef:2d:90:7a:d3:e8:18:9b:9a:2e:9a:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Validity
Not Before: Mar 2 17:00:41 2026 GMT
Not After : Mar 3 17:00:41 2026 GMT
Subject: CN=0e32d4434ca248fb816370d15c02903021460aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:56:90:c5:b4:5b:44:07:d5:7f:e3:41:8b:3f:
e0:5c:74:66:5a:59:72:c0:c3:98:79:73:c5:57:27:
67:ef:36:70:e0:14:06:0e:aa:5d:f2:2e:fa:f9:e2:
fe:12:4a:f1:b0:2f:d0:0c:df:e2:96:68:46:9f:39:
85:27:c9:fc:17:5a:28:c2:5b:89:21:23:30:f5:a1:
00:f0:96:27:1c:6d:4a:ac:7f:f6:de:9b:f5:03:66:
90:66:4a:59:90:06:dd:9e:00:f3:b2:6c:8b:fd:9c:
f9:c4:0b:8d:7d:82:ca:5d:a4:0a:29:73:c1:a3:03:
51:b9:03:45:16:a7:67:45:2b:a7:b8:0d:02:d6:dc:
24:bb:7f:ed:b7:02:52:0e:dd:6e:b2:a9:e1:a4:a0:
30:a4:0f:a1:e1:0d:b4:9a:4c:da:ea:95:b8:12:3d:
7e:90:dc:2c:c2:c1:52:6e:4c:6d:08:51:18:34:af:
8a:df:b7:ba:b1:35:58:c7:df:6a:c6:db:97:98:4a:
e8:27:5f:4b:05:27:5f:0d:4f:22:6f:1c:b4:f7:da:
c7:2b:88:3d:05:05:1b:49:15:c8:64:47:dc:fe:1c:
d8:c2:a8:66:d0:6b:9c:8f:81:a2:d3:be:a2:ef:72:
52:a5:0d:43:07:27:23:d5:54:9e:b1:64:0f:2d:28:
45:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:32:D4:43:4C:A2:48:FB:81:63:70:D1:5C:02:90:30:21:46:0A:BA
X509v3 Authority Key Identifier:
keyid:BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:8c:84:a7:0b:06:3b:be:e7:2d:af:52:b3:6b:34:0f:38:ae:
e0:81:7b:a3:76:db:49:52:55:5b:8a:6c:cc:40:19:b8:01:75:
30:68:57:e9:83:2b:82:11:4c:bb:cd:a7:2b:8e:ce:02:17:96:
e1:ae:02:f5:a3:2a:3e:1f:7e:2b:6b:a4:fc:b3:39:19:98:14:
39:39:d3:c6:85:7a:14:d6:8a:c1:74:15:15:63:36:01:08:84:
cd:5b:68:eb:d2:b4:ef:b0:91:fc:2e:e3:68:b2:07:e9:23:2c:
f4:a3:56:42:ef:b2:89:76:05:02:43:58:90:1b:6f:75:0e:30:
8f:a7:80:fc:2a:97:d8:cb:da:d9:a3:15:fe:93:3d:ec:6e:96:
5a:f1:92:55:4c:1c:15:a9:f4:d7:db:c9:9f:8f:39:32:de:18:
73:1b:ff:ac:7c:b4:0e:8f:42:ca:ec:f0:f1:f6:b4:cf:60:a3:
70:46:23:96:78:38:6e:32:70:3e:23:a6:da:a7:d3:47:39:6b:
7b:f3:1f:18:25:18:0a:94:52:6d:78:f8:fb:e3:5b:8d:f7:2b:
84:79:72:89:f9:48:f3:d8:f6:d3:d7:62:e6:6d:37:90:1b:8d:
b2:fb:7d:59:d1:09:0e:44:db:83:87:31:a5:48:e0:f3:7c:89:
7a:1a:a8:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:11:44 2026 by rpki-client