Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
File: uFnbfywuOzq9i_QV8M4f_zNDKew.mft (raw, json)
Hash identifier: i7DgongcHbXCorfOhV/g5E2PRu4yNJjb39aCzI2rP2M=
Subject key identifier: 55:2F:DE:A0:02:C1:CD:62:BF:4B:AF:D2:89:E3:0C:89:41:24:38:50
Authority key identifier: B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
Certificate issuer: /CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Certificate serial: 019EC0DBCD93B0C0A3768AD1B097F9E89578
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
Manifest number: 10B6
Signing time: Sat 13 Jun 2026 12:01:30 +0000
Manifest this update: Sat 13 Jun 2026 12:01:30 +0000
Manifest next update: Sun 14 Jun 2026 12:01:30 +0000
Files and hashes: 1: lWdEpowAzHConUoYGbrc4-nSOV4.roa (hash: 9/NPZ8xgxrX7894j4qUQTxzBQ0X/YCJM81igBGzxaPE=)
2: uFnbfywuOzq9i_QV8M4f_zNDKew.crl (hash: IMH+rN83ErlmyrldbZjaWqa1B99VA7ucQa++Ykq8+n0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:cd:93:b0:c0:a3:76:8a:d1:b0:97:f9:e8:95:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Validity
Not Before: Jun 13 12:01:30 2026 GMT
Not After : Jun 14 12:01:30 2026 GMT
Subject: CN=552fdea002c1cd62bf4bafd289e30c8941243850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b9:36:a4:b1:28:c8:79:38:25:f8:13:04:d1:
f6:26:1c:39:1b:4c:f9:c0:02:ac:8c:cf:2b:26:29:
e5:e0:50:89:b7:7b:6d:78:e0:24:86:da:fb:71:fe:
a4:33:f6:f5:e3:29:f2:45:75:ca:f2:88:48:e0:5b:
ce:85:47:55:4b:0e:ad:53:e0:c2:91:b3:a1:32:5d:
77:b3:85:ab:6b:cb:fd:01:e9:bf:3b:d5:0d:80:2d:
ec:5d:49:c8:70:f4:75:e2:82:f0:09:77:d3:39:04:
db:29:37:77:07:d7:c7:8a:50:f0:9e:8d:e2:18:f1:
70:46:13:1f:e6:8f:75:af:69:92:6a:48:ad:9f:d4:
83:10:00:39:ba:1c:aa:94:04:16:40:63:4f:22:2a:
32:99:01:4c:91:e7:46:bf:85:bc:3f:fc:f9:98:93:
4a:48:15:89:95:63:2a:1d:fa:e5:93:aa:d7:2d:ee:
72:e5:18:81:cf:21:24:01:d4:45:98:ba:bb:d1:77:
cd:0e:91:ca:1e:c0:29:33:93:42:8a:d8:5f:2b:da:
90:f7:47:9a:ba:98:44:c9:14:6f:7e:69:a0:8c:c7:
e5:ae:28:a7:22:8c:6e:79:72:4c:3c:9c:6e:a2:ca:
93:5e:f5:dd:b1:72:69:ea:16:fe:9e:65:f9:68:c9:
34:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:2F:DE:A0:02:C1:CD:62:BF:4B:AF:D2:89:E3:0C:89:41:24:38:50
X509v3 Authority Key Identifier:
keyid:B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:eb:8f:5d:7c:aa:f8:98:7f:06:f2:42:7c:41:c6:38:7a:96:
cd:ce:09:b1:39:b0:34:00:d5:8d:22:11:ef:84:8e:ef:e6:8e:
76:6f:81:6b:04:30:25:d9:3b:8a:43:36:f0:57:b6:63:46:25:
9f:1f:c0:56:bb:17:bb:c0:51:07:0d:cc:d5:30:03:dd:e1:05:
4d:64:32:73:c9:92:10:79:19:0c:13:2c:04:4b:fd:74:bd:13:
72:fd:1c:df:0d:ea:23:75:4f:3a:d3:21:af:c4:9d:9c:99:f3:
37:d6:9a:53:b5:e3:a1:b4:f7:b9:02:31:db:1b:a4:63:ca:6d:
e1:ee:27:e2:91:09:83:6a:8c:0a:59:f5:58:fd:24:37:72:9a:
f8:19:9e:9e:be:30:fa:be:7a:6e:b7:41:b7:5d:cd:05:3c:dd:
2a:78:1f:4d:3b:3c:9f:53:38:d0:4a:32:7d:24:7e:b7:a2:00:
e6:6b:c1:c4:20:d4:e9:2e:cf:f3:a4:75:3b:c6:68:36:e9:f0:
e8:2a:a5:96:84:0f:22:f2:8c:e2:46:6c:f1:18:c7:77:e9:bd:
14:c0:dd:0e:6b:d6:19:fe:61:41:3b:fc:f5:40:e9:d8:c2:27:
27:c9:46:d0:23:6d:35:76:e5:95:25:54:67:93:3f:29:be:e3:
a9:cc:3d:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7A282TsMCjdorRsJf56JV4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4NTlkYjdmMmMyZTNiM2FiZDhiZjQxNWYwY2UxZmZmMzM0
MzI5ZWMwHhcNMjYwNjEzMTIwMTMwWhcNMjYwNjE0MTIwMTMwWjAzMTEwLwYDVQQD
Eyg1NTJmZGVhMDAyYzFjZDYyYmY0YmFmZDI4OWUzMGM4OTQxMjQzODUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbk2pLEoyHk4JfgTBNH2Jhw5G0z5
wAKsjM8rJinl4FCJt3tteOAkhtr7cf6kM/b14ynyRXXK8ohI4FvOhUdVSw6tU+DC
kbOhMl13s4Wra8v9Aem/O9UNgC3sXUnIcPR14oLwCXfTOQTbKTd3B9fHilDwno3i
GPFwRhMf5o91r2mSakitn9SDEAA5uhyqlAQWQGNPIioymQFMkedGv4W8P/z5mJNK
SBWJlWMqHfrlk6rXLe5y5RiBzyEkAdRFmLq70XfNDpHKHsApM5NCithfK9qQ90ea
uphEyRRvfmmgjMflriinIoxueXJMPJxuosqTXvXdsXJp6hb+nmX5aMk0WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFUv3qACwc1iv0uv0onjDIlBJDhQMB8GA1UdIwQY
MBaAFLhZ238sLjs6vYv0FfDOH/8zQynsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZWI3YzMtZTM0YS00ZmJjLTkyNzIt
NGMxYzU3YTgxZmZkLzEvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83ZWI3YzMtZTM0YS00ZmJjLTkyNzItNGMxYzU3YTgxZmZk
LzEvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV+uPXXyq
+Jh/BvJCfEHGOHqWzc4JsTmwNADVjSIR74SO7+aOdm+BawQwJdk7ikM28Fe2Y0Yl
nx/AVrsXu8BRBw3M1TAD3eEFTWQyc8mSEHkZDBMsBEv9dL0Tcv0c3w3qI3VPOtMh
r8SdnJnzN9aaU7XjobT3uQIx2xukY8pt4e4n4pEJg2qMCln1WP0kN3Ka+Bmenr4w
+r56brdBt13NBTzdKngfTTs8n1M40EoyfSR+t6IA5mvBxCDU6S7P86R1O8ZoNunw
6CqlloQPIvKM4kZs8RjHd+m9FMDdDmvWGf5hQTv89UDp2MInJ8lG0CNtNXbllSVU
Z5M/Kb7jqcw9Dg==
-----END CERTIFICATE-----
Generated at Sat Jun 13 15:08:31 2026 by rpki-client