Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
File: uT2pHx9TY0JyxZEQh85my602FKM.mft (raw, json)
Hash identifier: FA0CwEtHkSoOI4l+FBLOolybRPt+ILpjtehfIyby0I4=
Subject key identifier: E4:66:34:78:DC:03:69:7F:E1:4B:BB:EF:D6:CC:41:62:0B:21:4C:42
Authority key identifier: B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
Certificate issuer: /CN=b93da91f1f53634272c5911087ce66cbad3614a3
Certificate serial: 019D9B8751FA789BF6F175512F0DDD4C21F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
Manifest number: 0A61
Signing time: Fri 17 Apr 2026 13:00:29 +0000
Manifest this update: Fri 17 Apr 2026 13:00:29 +0000
Manifest next update: Sat 18 Apr 2026 13:00:29 +0000
Files and hashes: 1: T5RpUZaJxF7WS22xVaYfC5phh5w.roa (hash: 1t4IgY5FT1qa56RFkPSefpzTePRTnBiDJZBSxg9HAjA=)
2: uT2pHx9TY0JyxZEQh85my602FKM.crl (hash: bfBNCF/gu/NNwn6ehUibltpTLvHT8dDWoUiPixPXurM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:51:fa:78:9b:f6:f1:75:51:2f:0d:dd:4c:21:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b93da91f1f53634272c5911087ce66cbad3614a3
Validity
Not Before: Apr 17 13:00:29 2026 GMT
Not After : Apr 18 13:00:29 2026 GMT
Subject: CN=e4663478dc03697fe14bbbefd6cc41620b214c42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:96:d6:09:4d:12:4f:76:0d:26:cf:a0:7a:77:
a5:fe:5a:a3:aa:66:77:07:bf:8f:72:cb:8b:e8:e3:
d1:0d:9b:89:85:b4:a9:6a:2e:5c:80:6a:da:d9:f3:
07:35:e0:e4:68:9d:77:d8:c6:2b:1f:2e:dc:83:5a:
20:ee:a3:64:ba:8f:3e:57:45:cc:26:0d:32:2d:79:
ec:71:bb:b9:92:83:47:3a:48:4e:d8:40:7d:22:f0:
89:52:26:7c:eb:14:cf:91:79:31:cf:1a:e6:b4:3b:
83:0a:63:15:c6:df:ec:06:a4:ef:b2:1f:de:35:bb:
c2:40:f1:68:27:48:c0:01:35:4a:1c:a1:fc:0a:3e:
5c:76:03:5a:13:7f:14:57:bd:cd:a9:aa:0e:45:1d:
a2:93:f9:d1:53:42:88:46:d4:c4:77:b4:8b:0d:12:
c5:06:d8:ef:09:e8:d6:22:98:fa:37:9f:76:ae:18:
1b:a1:e3:90:3c:84:32:79:9d:6b:da:e4:ab:57:3b:
a8:c8:2e:92:fd:3d:fa:ef:6e:fa:90:de:ff:b7:68:
67:c4:f6:07:a3:db:91:3b:22:ae:1b:42:6c:69:8e:
dd:6c:15:0e:3a:2d:b8:d9:ef:ff:7a:d3:5f:27:98:
3f:dd:e8:04:18:72:85:fd:70:ee:32:2f:57:0c:74:
5a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:66:34:78:DC:03:69:7F:E1:4B:BB:EF:D6:CC:41:62:0B:21:4C:42
X509v3 Authority Key Identifier:
keyid:B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:6f:ea:ec:9d:2f:08:ae:db:fb:cb:c8:75:e1:aa:62:db:c5:
99:89:e4:8f:91:c6:e8:3e:05:22:2b:5a:0a:a7:ad:94:8d:65:
29:75:53:5c:32:f0:c4:9c:d7:a3:e1:b3:a1:0b:75:08:a6:bc:
5c:19:fd:05:e4:1c:dc:7b:bd:ea:af:07:03:00:5a:79:dd:13:
ad:eb:64:c0:6a:8f:fd:e2:9b:4a:29:84:66:9a:ee:9e:d3:a9:
29:7b:96:4b:e8:4c:37:30:31:3f:00:f9:95:77:e5:b4:7b:46:
d4:a7:a7:c1:be:d7:9b:af:f5:4f:30:6d:7e:aa:3c:42:50:53:
09:38:b3:e5:7e:46:b7:be:28:04:62:bd:9d:d3:a9:b9:78:fc:
ac:a6:be:3f:a5:2e:43:e4:69:5f:e9:5e:c3:8e:93:0f:65:6f:
39:03:a8:6b:23:04:36:41:2e:15:62:26:16:06:2b:fc:97:20:
7a:0f:6e:08:0e:9d:80:68:d9:f5:c2:3a:06:f2:36:bf:b2:c1:
13:1e:49:a9:66:c1:ee:ed:92:05:8f:9e:8c:11:9c:42:f3:97:
8f:0f:ec:c1:21:e0:b2:c7:52:f6:2a:b3:b0:25:31:ac:cb:f7:
b6:af:c3:27:f2:21:75:fa:5e:fa:f6:ad:32:f7:53:f4:f6:00:
3c:29:63:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:41:28 2026 by rpki-client