Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
File: uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft (raw, json)
Hash identifier: /jElnyazYfoYDYcbvnY7rYyTeyAnnG/5hxOYRqMJpec=
Subject key identifier: 62:6D:07:F8:FE:4A:06:A8:B8:85:62:00:B1:C9:7D:07:53:B2:E4:4E
Authority key identifier: B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
Certificate issuer: /CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Certificate serial: 019D9962B768057FDF06AC87755096DEC898
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
Manifest number: 085A
Signing time: Fri 17 Apr 2026 03:01:16 +0000
Manifest this update: Fri 17 Apr 2026 03:01:16 +0000
Manifest next update: Sat 18 Apr 2026 03:01:16 +0000
Files and hashes: 1: uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl (hash: RtjVie83lu0JKQV83JxfQ07tDs4Q71RJEWSkHjPnhZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:b7:68:05:7f:df:06:ac:87:75:50:96:de:c8:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Validity
Not Before: Apr 17 03:01:16 2026 GMT
Not After : Apr 18 03:01:16 2026 GMT
Subject: CN=626d07f8fe4a06a8b8856200b1c97d0753b2e44e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8a:38:38:c4:58:86:3b:37:43:6f:ff:af:cb:
a4:2a:30:b5:9a:d2:eb:5d:b9:35:82:20:30:cd:1b:
bf:69:8e:6d:7c:7e:fa:91:df:70:d3:11:77:4d:cb:
3a:59:a6:4c:45:6a:59:e7:42:2e:cb:0a:d2:da:a8:
b8:82:24:68:85:2e:7d:5a:a7:5c:90:f5:7d:7b:06:
31:50:bb:2f:95:d6:31:9a:56:b8:bb:ee:65:bd:8a:
6d:31:68:8b:ea:37:07:1e:59:73:0d:6d:12:a5:62:
a0:ca:c8:95:9f:48:59:6a:15:55:b2:e6:16:7e:ab:
6f:8c:bd:ae:ea:b8:b3:55:c0:0e:7c:b5:36:11:c0:
82:f1:78:f8:5b:55:ae:1b:35:63:dc:f8:1f:53:45:
5b:90:f1:b8:17:a8:be:90:73:2c:8c:1f:0c:94:35:
e6:69:b2:1d:ee:3d:7e:08:ba:30:34:29:ad:b0:a2:
c8:2e:d0:25:96:52:b1:03:1b:4a:77:2d:12:d6:0f:
d4:b2:b4:c0:34:c1:b6:91:22:26:62:32:e7:c3:55:
7d:89:8f:82:95:3e:98:00:10:4f:fa:ab:1c:0e:81:
83:e2:a8:b3:81:a6:68:51:83:66:57:09:f7:7a:5c:
74:e6:c3:15:61:84:f2:d9:be:7c:96:36:10:62:ac:
f1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:6D:07:F8:FE:4A:06:A8:B8:85:62:00:B1:C9:7D:07:53:B2:E4:4E
X509v3 Authority Key Identifier:
keyid:B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:88:02:2f:67:cf:d6:a0:5d:f7:4f:ec:af:a3:0d:6e:0b:c5:
e8:a9:b2:34:15:74:59:ee:0b:55:84:ae:8e:c5:01:ed:15:70:
2e:22:b1:68:06:bc:29:4e:48:05:87:d4:b6:fb:7d:52:d7:ce:
d4:14:0b:11:97:51:f8:a2:a7:8b:7c:85:51:77:cb:b1:17:c5:
49:3f:77:f8:b2:fd:18:81:23:01:e9:56:41:fc:9c:70:80:10:
51:3f:0e:a8:03:18:a4:0d:1f:14:b2:62:eb:41:81:0b:51:6c:
7a:4a:84:eb:f1:75:a8:0d:2a:3a:44:00:d3:b2:35:f1:5e:1b:
b0:19:15:e0:35:d9:13:f3:1b:aa:f4:ef:38:47:3c:27:7f:f7:
7d:f9:d0:2e:32:cb:57:3e:ae:c5:54:5b:f9:36:6a:75:fd:56:
f6:b1:37:67:c9:90:d0:00:69:e2:de:a1:8f:7d:3f:d6:d5:7b:
b4:5d:22:01:80:dd:d7:50:c3:c3:60:9c:2e:5e:63:bb:1c:6c:
fd:b7:4d:a3:2e:b5:e9:9a:5c:a8:7d:a5:4b:81:41:8a:c3:fd:
69:a3:47:68:92:1f:91:f9:58:4e:81:ee:21:51:92:47:4d:1a:
4e:85:bd:00:53:38:88:f1:1e:73:2e:ca:f3:7b:1e:cc:b1:90:
d0:ef:9d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:09:55 2026 by rpki-client