Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
File: uFnbfywuOzq9i_QV8M4f_zNDKew.mft (raw, json)
Hash identifier: 3VaDtSneSuWIjjZlHoAyKFOYB4hAt9QRrABPxAlm5fg=
Subject key identifier: D1:0A:80:14:E6:EF:6C:7E:38:34:63:79:63:BD:C1:33:AB:8E:80:BE
Authority key identifier: B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
Certificate issuer: /CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Certificate serial: 019D99629E54E8244E22DF57700B32182FB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
Manifest number: 101D
Signing time: Fri 17 Apr 2026 03:01:10 +0000
Manifest this update: Fri 17 Apr 2026 03:01:10 +0000
Manifest next update: Sat 18 Apr 2026 03:01:10 +0000
Files and hashes: 1: lWdEpowAzHConUoYGbrc4-nSOV4.roa (hash: 9/NPZ8xgxrX7894j4qUQTxzBQ0X/YCJM81igBGzxaPE=)
2: uFnbfywuOzq9i_QV8M4f_zNDKew.crl (hash: TrEfbrdVVFRw4AA9LT5q17lPYSN9XRsPrMj8/y9ekDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:9e:54:e8:24:4e:22:df:57:70:0b:32:18:2f:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Validity
Not Before: Apr 17 03:01:10 2026 GMT
Not After : Apr 18 03:01:10 2026 GMT
Subject: CN=d10a8014e6ef6c7e3834637963bdc133ab8e80be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:68:a2:02:a0:33:82:1f:4a:b7:c8:36:ee:2e:
6e:cf:0f:a8:d0:f2:e2:d7:83:b8:da:55:c6:5a:3d:
af:35:e8:7c:39:f8:53:ae:c6:8c:5d:16:5b:df:8f:
74:e4:28:9e:08:ce:de:ef:7f:c1:fb:7f:c8:3d:2d:
ca:21:b7:02:99:19:f7:92:d7:b9:6f:c9:f5:fb:fd:
66:30:94:4d:eb:b1:0c:42:76:73:34:1f:50:4d:e7:
2f:2e:64:52:5b:7a:4f:9f:66:9d:a4:4f:2b:d9:72:
0d:b5:f6:8f:49:71:94:25:b3:01:4c:48:7d:e6:3d:
1f:6d:f7:b4:d0:ee:4e:14:f6:49:02:a9:16:2a:29:
53:e4:67:a2:11:18:ce:84:2f:08:81:c7:bc:22:14:
21:9d:77:47:e2:5a:dd:a6:8c:61:2d:1a:94:35:3b:
fe:f9:f3:04:7f:51:12:12:2d:3f:a9:7e:65:a7:33:
20:f2:3f:7c:b0:6a:27:4d:ac:3b:6c:61:50:98:14:
a1:98:b5:1a:5d:08:43:d4:26:92:14:51:1f:82:b5:
13:fe:d5:a0:fe:5e:ca:98:fb:87:01:fa:cc:4f:1b:
49:d5:ad:65:3e:57:ff:45:46:1f:52:11:42:f9:48:
d9:c0:f7:6b:cb:73:98:e5:68:6b:4e:4f:d8:c8:c1:
54:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:0A:80:14:E6:EF:6C:7E:38:34:63:79:63:BD:C1:33:AB:8E:80:BE
X509v3 Authority Key Identifier:
keyid:B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:f6:78:a9:29:86:db:8d:4d:63:87:c9:1a:e3:be:d1:8e:f8:
4f:d3:5a:c3:0b:7c:58:e8:49:d5:f3:c2:9e:68:e4:c1:21:c2:
b4:c7:c6:fe:90:65:20:e4:19:9c:fa:a1:92:84:86:f3:ee:ea:
fc:ca:84:7a:62:d8:79:2b:04:b4:73:97:9f:c7:b4:8b:e4:9c:
19:32:03:92:9b:90:18:87:52:69:3b:6b:bd:c3:22:58:c7:95:
e7:87:3b:5b:ae:8e:d6:95:05:15:2b:07:f9:d0:c6:ce:d2:c7:
04:42:39:df:5d:57:21:5c:0d:7e:e5:21:2d:fa:90:5a:54:06:
7e:f3:b7:f8:8c:71:72:01:68:a5:18:c1:5d:ac:f4:16:e8:c7:
00:c0:5b:46:2f:f8:c2:27:ce:89:a2:ff:62:d0:33:80:5e:ff:
04:b8:34:73:b2:da:03:89:cd:3e:2f:75:73:3e:a9:2f:e3:87:
46:b2:4c:24:78:1b:84:7e:65:de:27:4e:b8:6d:8b:b8:15:26:
25:52:66:e1:c3:ed:5e:6b:fe:86:86:14:0c:4f:10:41:38:c0:
16:be:7a:4c:fb:db:20:a6:0c:bf:0a:23:c0:36:de:ab:a8:43:
57:5d:a7:11:92:25:85:e9:a5:9d:fe:63:1a:fb:e4:da:c1:dc:
63:09:55:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:28:50 2026 by rpki-client