Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
File: UIqaCKvvdNzFEAT0-uAmbWIDleM.mft (raw, json)
Hash identifier: +RxXersmAFRn44gzRyRsQUSKIdc7ECZ758QPSRLYj0Q=
Subject key identifier: 40:12:34:DB:5A:E8:DC:0F:DA:5B:F7:99:5D:5F:61:40:BB:AA:AC:65
Authority key identifier: 50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
Certificate issuer: /CN=508a9a08abef74dcc51004f4fae0266d620395e3
Certificate serial: 019D97E2675C8EFD6A18D91EE0225F3A582F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
Manifest number: 10B5
Signing time: Thu 16 Apr 2026 20:01:30 +0000
Manifest this update: Thu 16 Apr 2026 20:01:30 +0000
Manifest next update: Fri 17 Apr 2026 20:01:30 +0000
Files and hashes: 1: QAgOOWOSGVL9EA58pEl1eGs2WSI.roa (hash: h4yfJTuGabEHeQ+rxp95srDtrChZHsYML/0NIEoqm54=)
2: UIqaCKvvdNzFEAT0-uAmbWIDleM.crl (hash: 4+VMHHQAel+cQUY8JGCHlR9RM6NF5z5yBQVnT8iKaiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e2:67:5c:8e:fd:6a:18:d9:1e:e0:22:5f:3a:58:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=508a9a08abef74dcc51004f4fae0266d620395e3
Validity
Not Before: Apr 16 20:01:30 2026 GMT
Not After : Apr 17 20:01:30 2026 GMT
Subject: CN=401234db5ae8dc0fda5bf7995d5f6140bbaaac65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8a:f4:62:85:3f:a4:d8:da:f7:1f:50:bf:fe:
a0:de:bf:2b:46:58:26:03:50:0e:70:34:ec:b9:90:
73:b3:66:12:33:b9:da:05:85:ac:ae:36:dd:5b:52:
11:0a:44:4c:9b:bd:28:cf:cd:e6:c3:4c:80:9f:b2:
3a:04:f2:b3:97:8a:94:fe:28:36:9a:5f:73:d9:6d:
41:e1:8a:54:e1:4f:ef:f6:f3:6c:b3:b6:a9:4a:d5:
ed:be:5f:77:49:16:ce:5a:87:73:48:03:6e:64:9d:
60:fe:56:d7:44:03:f0:4f:25:30:43:38:20:3d:7f:
f2:5f:e9:34:f4:f3:46:9e:e8:f8:76:c0:2c:67:4e:
47:26:18:f6:83:ad:eb:58:ad:b2:81:dd:6f:f1:8c:
26:48:19:15:41:79:5c:95:bd:8e:f7:c8:63:64:94:
af:4e:0f:32:0d:7a:bc:f9:e5:b3:cc:73:1c:5b:59:
3c:fb:01:ee:d0:b6:94:6a:07:ff:88:9d:0e:c3:04:
39:5e:4d:d7:9a:99:9b:a9:0f:e5:c0:f7:72:c8:e0:
3a:76:87:06:64:52:68:17:7a:21:83:9c:cf:79:c9:
2e:16:33:16:37:eb:a2:ab:11:b7:3d:cd:08:38:18:
61:de:b1:a5:a2:4a:e1:09:07:77:ad:2a:4a:b8:3b:
7f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:12:34:DB:5A:E8:DC:0F:DA:5B:F7:99:5D:5F:61:40:BB:AA:AC:65
X509v3 Authority Key Identifier:
keyid:50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:9d:17:b6:4a:37:06:81:81:a6:8d:78:79:c0:0e:b6:26:9f:
51:89:a0:b3:90:cc:5c:ed:33:29:5b:b1:6e:3b:9d:8e:35:2f:
60:c4:27:84:25:94:92:6a:8c:c4:13:2a:34:d1:31:68:9b:49:
f3:10:70:2c:8e:7d:01:ca:19:46:9d:d2:f2:60:46:e1:c0:d8:
11:06:2f:2a:8a:4c:c5:d2:03:4d:35:96:65:a7:94:a4:46:2d:
4c:45:99:68:78:77:c8:a0:42:cc:87:6e:a2:63:81:c9:ac:96:
be:20:32:47:f0:eb:21:3a:f5:e4:4f:92:ca:b4:62:03:55:e3:
1a:66:6c:a7:3d:c6:52:55:14:e8:b3:a7:d1:ec:48:e1:f5:79:
db:7b:04:ef:5e:c5:58:2b:30:2a:49:ad:43:b1:b1:a7:dc:8c:
74:0c:f8:79:b9:cb:2b:ac:ad:79:bf:23:57:14:0e:25:3a:84:
10:34:5f:16:cf:be:ad:9a:dd:fd:3a:d7:c4:4e:1d:36:59:bc:
bd:e1:88:76:b9:14:c5:72:ff:6e:c0:ea:ad:86:8a:f2:2f:02:
64:3c:b3:9b:95:e8:16:6d:5d:ee:f9:20:5f:34:30:0e:19:1c:
ab:b7:c7:9e:0a:18:51:57:d0:00:74:6b:68:b4:19:d6:e2:15:
bb:f2:13:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:26:31 2026 by rpki-client