Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
File: uFnbfywuOzq9i_QV8M4f_zNDKew.mft (raw, json)
Hash identifier: 9m+4iHA7E6SlB5SJ5994qNCWcWUh87v/IhHGL++hC/g=
Subject key identifier: 03:56:CE:20:B5:20:39:E7:C6:D4:8F:42:A1:FD:AF:18:37:07:C7:6B
Authority key identifier: B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
Certificate issuer: /CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Certificate serial: 019CABD93E52C8406E77A0CB2EF1524FB6BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
Manifest number: 0FA2
Signing time: Mon 02 Mar 2026 00:01:06 +0000
Manifest this update: Mon 02 Mar 2026 00:01:06 +0000
Manifest next update: Tue 03 Mar 2026 00:01:06 +0000
Files and hashes: 1: lWdEpowAzHConUoYGbrc4-nSOV4.roa (hash: 9/NPZ8xgxrX7894j4qUQTxzBQ0X/YCJM81igBGzxaPE=)
2: uFnbfywuOzq9i_QV8M4f_zNDKew.crl (hash: zJg46Bhp+lZNDl0E2ciYPjE0ymR6P4CuYlI4hG+erz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:3e:52:c8:40:6e:77:a0:cb:2e:f1:52:4f:b6:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Validity
Not Before: Mar 2 00:01:06 2026 GMT
Not After : Mar 3 00:01:06 2026 GMT
Subject: CN=0356ce20b52039e7c6d48f42a1fdaf183707c76b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c8:0b:71:28:d8:db:00:63:ba:dc:c7:b2:c9:
73:8f:05:bc:c0:40:9f:67:d9:37:25:a5:3e:0e:b5:
b3:24:d2:3b:b3:af:52:50:c5:d1:4a:3e:15:f3:58:
75:88:cf:1d:b9:7a:68:5f:b4:9b:1c:cb:cb:25:d7:
32:1d:a7:3c:c4:7a:d7:74:b3:b3:5a:b3:4c:ac:15:
03:42:b0:2a:c1:a4:24:6a:e8:e3:f5:72:1a:2d:19:
c8:74:b5:16:b9:94:9b:78:7a:1e:ea:43:08:df:a5:
86:b7:c9:fc:47:11:c5:b8:bd:74:0e:4b:87:6b:ba:
f9:d2:61:f5:86:1c:37:aa:8b:32:8e:0b:12:c8:4d:
f8:5f:5b:d1:c8:91:12:d7:c6:62:89:c4:76:52:19:
71:80:3a:f8:d6:9a:cd:6d:e7:02:51:19:7f:1d:75:
29:a8:e2:b4:11:22:7f:e1:40:e2:41:03:e6:a4:0b:
cb:3d:63:08:c5:42:a3:3d:94:e9:ee:b1:78:25:51:
52:84:38:1d:98:e2:1a:3e:fb:d1:0d:92:83:93:40:
2b:71:f5:97:a4:d4:f6:80:a9:91:eb:7f:c5:1d:5c:
30:a9:ef:6a:78:97:58:e1:89:06:dc:96:8e:dd:a5:
3b:93:8f:e7:c0:cc:27:f0:91:47:57:92:d1:2d:94:
0f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:56:CE:20:B5:20:39:E7:C6:D4:8F:42:A1:FD:AF:18:37:07:C7:6B
X509v3 Authority Key Identifier:
keyid:B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:86:65:fb:35:b7:55:2f:05:ab:d0:58:6f:8d:32:35:ea:4b:
23:90:42:a5:91:ee:f8:aa:eb:20:3f:cd:95:ac:8b:24:87:f3:
a5:b5:fe:fa:ac:91:dc:2e:90:cb:b9:37:83:13:bf:20:34:4b:
04:91:48:43:f0:82:64:80:74:64:9a:0e:b2:85:a6:91:b3:22:
11:a1:69:ac:79:e7:59:ae:97:5a:b6:33:ca:eb:0a:de:f6:f7:
b8:07:a0:d0:c5:c9:d1:1c:b9:3e:28:c8:1c:50:37:21:ab:1d:
83:1b:c3:38:4a:81:b4:2c:7b:c7:69:25:8e:37:f3:74:73:3f:
23:ae:7f:26:11:a6:8c:4f:5b:9b:12:df:34:6a:a9:78:82:5d:
ec:f1:0d:f8:47:8b:c7:1e:7f:16:cc:18:2f:06:3c:de:eb:e7:
d6:7f:79:10:37:12:73:da:45:6f:cd:3e:69:34:1f:5e:c8:cd:
8f:0a:f1:25:46:bb:9a:43:f1:b5:28:80:e1:ee:15:72:68:b0:
0c:5d:94:13:37:a6:0a:08:29:77:a0:98:38:3d:3f:1c:b2:2d:
b1:73:c7:35:16:3e:07:21:4a:92:8f:6a:f5:8b:cc:1d:84:93:
1a:7a:cc:b9:1c:dd:83:97:d5:13:7b:c4:da:9a:ba:a7:b0:05:
0e:3f:8f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:55:39 2026 by rpki-client