Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
File: U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft (raw, json)
Hash identifier: 4gyX4QxxuhWk+YAY5x3j6mNSnLat+wnEeq6LeUW1ZYU=
Subject key identifier: E7:CB:69:ED:D7:CB:4E:2E:D4:26:86:E7:45:F4:D9:F4:AE:20:89:1E
Authority key identifier: 53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
Certificate issuer: /CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Certificate serial: 019CAD22766E4E149249954F267A8176AA46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
Manifest number: 08D4
Signing time: Mon 02 Mar 2026 06:00:42 +0000
Manifest this update: Mon 02 Mar 2026 06:00:42 +0000
Manifest next update: Tue 03 Mar 2026 06:00:42 +0000
Files and hashes: 1: U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl (hash: xFDEmoRl6VKtnQ/VJDG+gpepzBLJxpLtpDfJUUnjLX0=)
2: XcRX1RAJL4NGdzyun1ejeZqAF24.roa (hash: YNAZegeHiWzquonxoxjxpFIiVyp3kn/I+1eygwpZVIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:76:6e:4e:14:92:49:95:4f:26:7a:81:76:aa:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Validity
Not Before: Mar 2 06:00:42 2026 GMT
Not After : Mar 3 06:00:42 2026 GMT
Subject: CN=e7cb69edd7cb4e2ed42686e745f4d9f4ae20891e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7d:ed:c4:17:cc:84:92:d7:8f:65:78:21:9f:
f1:b4:3e:90:d5:f1:cb:10:64:01:40:2b:a0:98:71:
7f:30:f0:4e:b2:37:54:e0:c1:24:0d:10:53:35:ac:
93:1b:95:53:72:d9:ef:69:5c:a1:f1:be:3f:73:b8:
3f:c2:20:f7:22:4a:9c:0c:db:ee:e3:48:f9:ee:33:
d0:41:ad:ef:bc:40:ab:04:e6:b4:78:e6:c3:8d:09:
d8:5e:1e:60:ad:38:15:de:d1:bd:30:c4:54:71:2f:
c3:0a:6a:67:c9:6a:2c:57:75:64:8d:e1:a4:8c:9f:
73:71:90:ee:ac:af:02:fa:0a:f8:83:40:1b:84:3d:
08:45:a3:f8:55:f2:cd:55:7d:ac:a4:de:0f:6b:53:
4e:8c:0a:e6:87:54:75:c4:2a:b7:a2:45:03:76:6f:
87:06:3f:ea:f9:fc:8c:cb:ef:17:99:c5:62:a7:8d:
8b:5d:a1:8f:04:3c:0a:a1:cc:92:4b:11:ad:8a:74:
33:40:fb:0c:ac:ec:e8:5a:48:07:4b:63:95:64:b1:
d9:df:90:7e:4b:3a:09:e3:df:17:59:d6:b8:08:d6:
ae:a5:c3:ad:d2:78:42:cd:c0:73:37:f7:32:75:46:
df:fd:18:98:d4:4e:d2:2a:b4:79:61:68:27:83:c3:
a2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:CB:69:ED:D7:CB:4E:2E:D4:26:86:E7:45:F4:D9:F4:AE:20:89:1E
X509v3 Authority Key Identifier:
keyid:53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:da:7b:7a:89:7f:ef:78:84:b8:de:a0:ad:6d:52:5b:d7:9c:
50:f8:af:b3:10:d2:66:88:1d:38:1d:28:f8:eb:31:00:3f:f7:
31:29:fa:a5:39:c3:f7:1c:f1:e2:64:8d:ae:4c:54:cb:05:24:
7d:7b:61:48:8e:b9:40:ed:e4:33:2b:8b:03:ca:05:3f:8d:9d:
3d:73:d7:2d:e5:b1:a6:55:e8:90:5e:f5:57:c9:88:ca:92:c4:
22:01:be:1c:52:86:73:b7:92:77:87:89:44:f0:68:75:40:28:
5e:b9:89:57:ba:f5:40:e0:f3:71:d0:c1:0b:0f:7c:ed:fc:41:
b7:ef:8e:cf:e9:85:4b:d6:2e:d1:fa:5e:bf:02:28:cb:20:23:
97:ee:58:0d:f0:1a:bc:56:1e:36:71:cf:d3:6a:db:c8:dc:d4:
26:85:7b:db:3a:99:99:5d:5d:37:7f:5f:5e:8e:ae:9c:32:c5:
cc:c2:c8:d7:dc:7c:a4:c5:ce:80:25:1a:d0:4f:ba:72:16:09:
b7:10:b7:4b:d5:f3:8d:88:c2:e6:4a:8c:ac:9a:d6:42:c6:9c:
43:29:e3:36:8d:49:d6:c6:01:43:7b:7a:77:18:f1:bc:68:e3:
01:d0:0c:3b:f3:a8:d0:16:5a:f4:e3:cd:32:23:00:04:98:37:
ec:93:af:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:29:44 2026 by rpki-client