Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
File: UIqaCKvvdNzFEAT0-uAmbWIDleM.mft (raw, json)
Hash identifier: f55yDVbb4fDefDiUCp6RZJKkeOcP12Zho1e5r1/NPp8=
Subject key identifier: 0A:46:EC:EE:02:EB:D7:3D:29:84:C6:7E:EF:5B:BC:BB:56:AD:BB:C9
Authority key identifier: 50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
Certificate issuer: /CN=508a9a08abef74dcc51004f4fae0266d620395e3
Certificate serial: 019CAA58BCDB263E9010D671B27CC58426A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
Manifest number: 103A
Signing time: Sun 01 Mar 2026 17:01:08 +0000
Manifest this update: Sun 01 Mar 2026 17:01:08 +0000
Manifest next update: Mon 02 Mar 2026 17:01:08 +0000
Files and hashes: 1: QAgOOWOSGVL9EA58pEl1eGs2WSI.roa (hash: h4yfJTuGabEHeQ+rxp95srDtrChZHsYML/0NIEoqm54=)
2: UIqaCKvvdNzFEAT0-uAmbWIDleM.crl (hash: ENy/6RBGKL3P6RbSFY3unZ0/5CQ9PPNFuY5fbjk48vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:bc:db:26:3e:90:10:d6:71:b2:7c:c5:84:26:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=508a9a08abef74dcc51004f4fae0266d620395e3
Validity
Not Before: Mar 1 17:01:08 2026 GMT
Not After : Mar 2 17:01:08 2026 GMT
Subject: CN=0a46ecee02ebd73d2984c67eef5bbcbb56adbbc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:28:43:6b:7c:43:c5:7b:7c:04:a5:67:58:b7:
89:44:8f:49:85:26:b3:8b:f5:03:46:61:66:33:79:
5e:29:10:56:2f:f1:bb:9c:c9:b9:5e:49:ed:e1:1b:
e8:76:23:23:81:b8:69:c0:d0:cb:a5:d2:cf:59:9f:
2c:8f:33:24:0d:ec:7f:7f:32:bd:35:bc:e4:e0:c3:
86:17:d2:af:d5:d0:1c:97:d3:ab:05:84:c7:3e:ba:
55:87:3a:93:31:fd:c1:cf:56:16:72:40:78:7b:c1:
74:27:f3:67:0f:b0:53:a1:9e:6c:29:d9:69:9d:2f:
47:71:37:b6:33:84:da:b4:b7:e5:b1:cb:c8:5c:18:
86:49:59:cd:44:37:22:7e:3e:d5:f3:1b:c7:ea:eb:
85:17:13:01:0b:f1:c6:78:82:22:5f:2c:ae:46:96:
f3:13:00:13:ac:de:31:86:e5:92:bb:89:7b:32:b2:
9f:f5:3f:28:e9:b5:11:f1:ea:05:8d:66:ca:50:dc:
55:5b:6a:ce:06:db:46:39:63:08:04:4f:be:e3:bc:
08:98:90:31:42:08:2a:75:3e:6b:1a:e4:73:66:9b:
e2:e6:c3:24:af:6a:27:dc:a4:4f:37:1e:a3:f8:cc:
77:99:bc:82:9e:bf:13:16:93:8c:d8:82:c7:6b:a9:
3b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:46:EC:EE:02:EB:D7:3D:29:84:C6:7E:EF:5B:BC:BB:56:AD:BB:C9
X509v3 Authority Key Identifier:
keyid:50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:f2:88:7b:e9:6f:86:ea:00:24:ac:01:33:01:0b:57:89:8b:
b8:6f:01:7a:77:7b:6c:f6:af:6e:e6:22:a1:b6:d0:db:11:67:
d8:57:ac:13:ef:dd:42:94:e8:b1:e4:4d:28:79:6e:3f:b1:16:
bd:26:7c:4c:43:04:9c:7c:a9:0f:ac:11:ba:90:ea:7d:a3:86:
af:d7:38:32:40:0c:dc:eb:f6:30:09:d7:ba:97:da:a8:6e:4d:
17:41:b0:a3:4f:94:b7:cc:9f:e3:32:07:2f:ca:09:85:d0:53:
ac:c4:43:01:fe:40:15:0b:fc:66:0d:0f:59:4d:8c:b1:75:f7:
14:ef:3a:a4:e0:e3:42:18:c7:24:8b:27:14:b1:ee:7a:0c:cc:
82:42:a6:87:31:7e:f8:b6:ce:8c:81:4f:f7:e4:5b:59:66:f1:
d7:35:bf:54:4d:1a:dd:37:3a:42:12:3e:69:bb:80:c4:51:25:
9c:29:de:09:2b:8a:e6:1d:62:e5:d5:94:81:06:81:8b:4a:e7:
8b:cc:52:7b:a4:db:34:77:08:12:05:80:14:e7:e0:46:02:20:
d8:da:96:17:0e:da:13:a1:2a:e5:ac:6a:0f:a1:92:05:cd:19:
21:e0:15:47:eb:cd:ed:45:ed:2e:ea:f4:71:18:e3:b1:9b:6e:
73:a9:ce:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:33:17 2026 by rpki-client