Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
File: u7hl_W36q6dxJJt-uujr1SgKDJc.mft (raw, json)
Hash identifier: n1eaNb6mNsZeH7rMh3q/MH/MeeLaBwPQ97TqzSJsBIY=
Subject key identifier: 08:4B:6D:17:58:DE:AE:A4:5A:EF:8A:87:8B:93:22:C6:5F:F2:75:42
Authority key identifier: BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
Certificate issuer: /CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Certificate serial: 019D9B19DB8F41559C90C4CF3F0F1E634A6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
Manifest number: 140D
Signing time: Fri 17 Apr 2026 11:00:56 +0000
Manifest this update: Fri 17 Apr 2026 11:00:56 +0000
Manifest next update: Sat 18 Apr 2026 11:00:56 +0000
Files and hashes: 1: Bym-x8E18AtLf0ybpilnkQ7yGpo.roa (hash: R+XsuHoebGNFenykqVHPvxpXZ/5AsWEx8oTWF+hIAFQ=)
2: u7hl_W36q6dxJJt-uujr1SgKDJc.crl (hash: PgyzKwHy856QhQoDU60uEqGqt/XI2ksD2Pf+YHoWXTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:db:8f:41:55:9c:90:c4:cf:3f:0f:1e:63:4a:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Validity
Not Before: Apr 17 11:00:56 2026 GMT
Not After : Apr 18 11:00:56 2026 GMT
Subject: CN=084b6d1758deaea45aef8a878b9322c65ff27542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ef:2e:ee:e3:08:08:98:cc:68:49:70:82:93:
34:98:fd:4f:31:aa:a0:73:41:d2:1e:a6:71:c7:50:
28:21:29:1a:b8:24:a3:01:28:30:f4:b5:cd:15:27:
e0:a5:5a:73:41:29:7f:19:53:96:6c:16:b0:67:e3:
0a:6a:38:80:75:f3:be:8e:82:54:76:7a:f1:c4:72:
20:00:16:da:b9:44:29:9e:fb:31:7d:4d:ad:6c:cb:
ae:b6:99:9c:26:f3:c9:f3:28:25:aa:91:a8:78:6f:
ed:01:bd:bd:a6:22:58:db:a2:5a:33:42:82:ff:6b:
9d:25:ad:fd:97:1d:9c:53:2f:21:fc:a1:1e:3b:d0:
ea:24:6f:4f:d4:dc:b2:c4:43:ff:2b:db:26:24:7b:
86:56:19:a9:8e:6d:45:a8:07:4b:e9:6c:74:c6:28:
5e:97:8c:7b:50:b2:38:6d:dc:8e:c4:c8:b8:58:0b:
58:1a:4b:80:44:eb:ad:62:d8:ef:21:ea:ca:67:ee:
dd:06:7b:6e:e9:ed:76:fc:28:99:09:ff:3f:a5:77:
b3:9b:7f:2c:5f:23:de:19:75:95:e8:ab:9e:dc:3f:
df:75:fb:03:7c:33:b5:07:d4:54:de:87:9a:69:23:
00:14:57:28:57:ec:0a:37:a5:6f:e2:7a:3c:b9:12:
28:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:4B:6D:17:58:DE:AE:A4:5A:EF:8A:87:8B:93:22:C6:5F:F2:75:42
X509v3 Authority Key Identifier:
keyid:BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:03:67:84:1e:54:6c:47:01:fe:05:d9:f1:54:12:b2:77:1e:
6e:af:f2:d9:84:49:5e:da:dc:b6:bb:77:a3:ba:f8:25:52:42:
8f:f5:99:20:3d:b9:1e:88:bc:54:3f:7c:aa:da:1f:ba:26:2d:
5c:28:26:4a:d4:0c:05:fb:e1:60:f4:7d:a5:db:80:67:0f:06:
ba:e6:c6:01:a1:c4:f4:4b:46:e6:dd:9d:c8:26:e2:3c:29:f0:
ed:c9:a0:b5:59:33:95:b8:f0:59:2c:bb:29:1a:04:e4:1d:1f:
81:4f:61:d1:7c:e4:d4:2a:3c:0d:27:6c:45:a0:83:aa:a3:5c:
1a:be:10:aa:b4:70:23:23:d0:af:34:e2:be:36:36:ef:d0:f4:
c6:54:52:42:d1:25:c9:27:7c:00:b4:ec:14:74:bb:a9:11:0a:
16:48:bd:8e:7e:67:cf:52:e3:27:9f:8b:9f:7e:2b:16:7f:f9:
e3:5b:09:a0:ce:6e:93:9b:94:81:f2:62:ac:5a:96:73:8f:e4:
ff:39:ba:55:92:be:41:2d:cd:36:fd:fd:fb:17:df:b9:bb:91:
6c:77:25:48:fa:11:90:39:0f:ef:1b:41:7a:20:c9:32:f1:bb:
6e:36:ed:1e:2c:10:0a:3e:22:86:37:d1:94:02:49:f9:68:aa:
56:31:e9:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:14:25 2026 by rpki-client