Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
File: uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft (raw, json)
Hash identifier: SuzFsvUEbFbNU85LD1Ksm9h/yKhTIVi7+WWl/pxwxxE=
Subject key identifier: D9:46:CA:5C:34:82:61:89:4F:5D:A8:D9:8E:B7:3F:CF:8F:FF:37:E9
Authority key identifier: B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
Certificate issuer: /CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Certificate serial: 019CA9EB043FBFAFA453829ECAC77F7235FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
Manifest number: 07DE
Signing time: Sun 01 Mar 2026 15:01:17 +0000
Manifest this update: Sun 01 Mar 2026 15:01:17 +0000
Manifest next update: Mon 02 Mar 2026 15:01:17 +0000
Files and hashes: 1: uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl (hash: 6iTMQjGGb4bT0uHhKrWlCuQkyOHczXAlQVbTYUpzWkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:eb:04:3f:bf:af:a4:53:82:9e:ca:c7:7f:72:35:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Validity
Not Before: Mar 1 15:01:17 2026 GMT
Not After : Mar 2 15:01:17 2026 GMT
Subject: CN=d946ca5c348261894f5da8d98eb73fcf8fff37e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:93:da:ba:da:9b:6f:a8:d9:56:a6:7b:69:29:
17:ca:7d:a8:9f:86:17:76:17:5c:ca:25:87:1b:ea:
c9:ef:55:03:d3:78:5d:55:b2:2b:b7:26:77:01:3c:
5f:b5:34:a5:e7:a7:fe:20:5e:50:80:80:be:04:27:
bd:15:28:a7:db:ca:8a:4b:bf:a6:cd:19:3b:e9:eb:
03:f9:31:2e:6c:f5:68:ca:65:94:9f:9b:b7:ac:7c:
1f:46:e3:48:3c:ba:34:30:05:bb:55:fb:11:30:aa:
af:8b:46:bb:1d:93:19:f0:69:0b:38:a9:e5:90:9d:
06:92:54:4f:93:9b:56:5c:5e:58:20:40:19:3e:69:
c5:64:5e:11:0a:15:2d:dd:44:f2:e9:cc:73:0b:45:
b1:e1:b4:85:72:b0:50:79:9d:fb:05:1e:f7:0b:6b:
b3:33:7e:2c:8e:ca:43:79:36:6a:43:78:6a:aa:9e:
39:b8:ab:0b:ec:3e:cb:85:33:0a:a0:7f:08:b7:29:
1f:60:d2:62:a1:51:3c:31:37:7f:a8:3f:c0:19:6c:
77:59:d9:6e:34:6f:47:4a:4f:b8:b2:8b:18:3a:ef:
85:fe:3c:83:e9:d4:27:57:0f:30:38:44:70:3b:63:
55:c9:95:1b:f4:18:cc:36:30:7e:c3:a2:05:48:c9:
c7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:46:CA:5C:34:82:61:89:4F:5D:A8:D9:8E:B7:3F:CF:8F:FF:37:E9
X509v3 Authority Key Identifier:
keyid:B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:68:8d:74:1b:75:f7:02:06:5f:70:fc:92:d9:c8:59:d9:2b:
d1:ad:03:f9:a4:85:6c:2f:06:2b:24:83:1c:98:71:d5:f6:1c:
6f:d9:20:bb:3f:e1:3e:ae:2e:05:25:d7:01:bd:0f:c9:82:32:
b9:69:a0:8f:b6:a5:da:0a:da:cf:45:0c:a8:78:44:37:ed:c2:
09:21:02:8e:04:b9:35:8c:da:08:b8:57:f4:5d:6c:c5:86:b1:
af:e8:c3:f2:6e:14:42:ea:86:71:56:c9:47:c6:28:bb:bb:fc:
03:e6:3a:41:4a:a8:d7:92:cb:8e:56:fe:9a:f9:60:15:74:a8:
bf:a5:b1:6b:92:ec:da:60:43:68:6d:25:57:0f:f3:7c:c2:64:
26:e1:ed:0c:02:93:f0:b7:03:43:66:6f:7f:e6:3f:2a:dc:d4:
57:f4:ae:19:ba:4a:bb:b4:d3:6a:f6:80:3a:4d:d0:77:c1:e0:
23:18:01:c7:e0:03:94:d7:5a:a4:b7:dc:3e:d6:51:5a:26:90:
f0:4f:54:c8:cd:ba:c7:d2:8d:d0:ab:13:83:73:e8:24:a6:26:
2d:3d:30:b6:30:4c:03:44:e0:f6:00:ea:f4:b9:ae:b9:4b:3d:
ea:04:74:8f:75:42:2e:85:4e:e6:ed:3e:96:5e:75:29:08:18:
17:3b:b4:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:22 2026 by rpki-client