Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
File: U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft (raw, json)
Hash identifier: FnpcQyNsYRBRDwDlpt1788OeeFLNoAF+zuqW2F6JPew=
Subject key identifier: D2:8C:24:72:7A:25:71:30:34:9B:20:C6:34:1B:1A:43:67:12:54:14
Authority key identifier: 53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
Certificate issuer: /CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Certificate serial: 019D9AAC3B93FA6DBF478610E79A037564DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
Manifest number: 094F
Signing time: Fri 17 Apr 2026 09:01:11 +0000
Manifest this update: Fri 17 Apr 2026 09:01:11 +0000
Manifest next update: Sat 18 Apr 2026 09:01:11 +0000
Files and hashes: 1: U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl (hash: rnb77dIjI9ZTpuW59+YvCO1x7Uzi6/E/abAGo421BoE=)
2: XcRX1RAJL4NGdzyun1ejeZqAF24.roa (hash: YNAZegeHiWzquonxoxjxpFIiVyp3kn/I+1eygwpZVIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 09:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:3b:93:fa:6d:bf:47:86:10:e7:9a:03:75:64:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Validity
Not Before: Apr 17 09:01:11 2026 GMT
Not After : Apr 18 09:01:11 2026 GMT
Subject: CN=d28c24727a257130349b20c6341b1a4367125414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:02:52:92:3e:61:7a:80:26:22:91:a9:fd:1d:
f8:31:d5:eb:f4:95:ae:d1:1f:97:ba:fb:6c:16:5b:
c8:2e:78:1f:c0:81:b7:0d:b8:d9:cc:26:58:c2:1b:
4c:f6:91:a7:cb:25:cf:30:af:5b:45:d5:fd:10:18:
61:97:6b:3b:07:2c:62:80:18:aa:16:a4:b2:bb:3d:
fb:2b:a7:a3:a2:0b:7f:f8:99:17:83:d5:04:d6:d1:
1f:a2:89:17:3a:dd:aa:40:af:55:0e:74:66:f7:c0:
c5:10:f9:5e:93:f6:66:25:bf:49:d4:2c:cc:f7:d7:
38:f9:e4:e8:d4:f8:e0:29:96:b8:42:d7:7a:42:63:
0c:6d:11:9c:58:11:85:42:b1:ab:a0:2c:50:06:8f:
91:c0:66:28:76:c7:9d:2e:0f:71:37:aa:cf:b1:50:
d0:c9:18:b5:24:78:7b:bc:5f:3b:1c:24:2d:46:bd:
35:bc:cb:c7:b7:17:20:79:59:8f:a4:25:22:2c:1c:
e9:9d:0a:aa:38:bf:25:b4:4a:19:12:6a:0d:57:66:
67:51:40:eb:4c:95:c4:9c:ef:5e:36:fe:b0:4b:73:
74:aa:2c:78:25:c9:0e:cf:f7:e1:c0:b5:03:06:20:
3e:a4:d3:a0:19:02:d8:60:53:f8:f3:7a:9e:64:13:
d2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:8C:24:72:7A:25:71:30:34:9B:20:C6:34:1B:1A:43:67:12:54:14
X509v3 Authority Key Identifier:
keyid:53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:6d:dd:e1:1d:8f:2a:7c:62:93:07:f1:2b:13:fc:86:23:b3:
5e:17:1e:cc:ff:4e:58:1e:2e:22:29:08:b1:56:a8:d3:d3:8b:
50:1e:dd:02:f5:7a:8c:2a:53:65:a3:94:ab:76:59:67:de:41:
3a:20:e8:bc:4b:9c:a1:b7:f6:de:66:96:30:36:1f:42:21:71:
13:fa:a7:83:62:1b:16:ff:c6:74:2b:29:09:b5:9a:c1:70:3b:
f0:f2:a5:61:0b:3f:b8:2c:3f:54:3e:6d:0c:a6:23:f9:23:7a:
05:e0:6c:56:43:c2:4f:c5:61:17:82:b8:97:ad:a2:27:56:a5:
18:dc:73:98:c2:7d:46:25:ac:e5:29:96:8a:bc:a0:15:8a:3e:
d9:b7:79:06:ef:fc:eb:e1:7e:36:6f:84:f3:f9:36:07:0f:13:
35:82:c1:24:b8:73:48:b3:9e:12:3f:0e:79:aa:c7:06:c8:c9:
6f:c9:e9:40:27:d1:51:1c:43:1c:31:79:a4:87:43:8b:17:7a:
39:96:6c:cd:27:56:3a:7d:9c:cc:da:b7:b3:00:b5:70:18:ac:
9e:76:ec:47:c2:d5:5d:44:cc:8f:d7:56:6c:69:26:6f:4a:c2:
c5:ea:5b:8f:30:50:be:a5:9c:5d:33:12:3f:14:41:2c:64:91:
94:2f:a3:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:49:52 2026 by rpki-client