Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier: MM6xykoXO1a2BZQ7fIycGhKIphtEuVn2KYpLs8VXqD0=
Subject key identifier: 8D:77:22:6F:E5:03:4B:71:E3:F3:75:1F:59:3B:46:2F:E1:FB:6F:62
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 019CABD8E052F9DCE8EDFB0DEA16631B966B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number: 0826
Signing time: Mon 02 Mar 2026 00:00:42 +0000
Manifest this update: Mon 02 Mar 2026 00:00:42 +0000
Manifest next update: Tue 03 Mar 2026 00:00:42 +0000
Files and hashes: 1: UfxnZEwkQdyHN4gibAtk_ce1zeI.roa (hash: Bl9GgITeZ3znWiaIE2fwC3TQwsJfWdhy5zENaMdMELI=)
2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: 4KzerW2uF9Gvs2kV6chxm3O0UU9Efxmwhmv5K7Z9TWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d8:e0:52:f9:dc:e8:ed:fb:0d:ea:16:63:1b:96:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: Mar 2 00:00:42 2026 GMT
Not After : Mar 3 00:00:42 2026 GMT
Subject: CN=8d77226fe5034b71e3f3751f593b462fe1fb6f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:28:d8:68:a7:1a:80:2f:0d:8f:ae:98:35:da:
ca:2b:3b:e1:43:ed:a8:5c:b5:67:2b:d2:ca:73:18:
4d:3e:31:4b:7f:00:82:c8:de:b0:a9:4e:d8:84:e5:
79:e5:16:82:65:a5:78:d1:30:96:f7:fb:28:07:ba:
33:69:01:fa:d1:f1:31:f8:16:1a:51:f9:0b:56:e6:
6f:8d:4d:54:38:39:71:a4:5b:cb:c2:48:0e:5b:8a:
9f:fc:e3:64:2a:e0:9e:80:eb:e2:e5:76:bf:bb:37:
f7:69:34:fe:88:b7:9e:46:1b:a6:4d:c0:f5:71:3b:
fa:ff:18:84:d4:5d:47:5e:55:ad:bd:05:40:fd:fb:
c3:ad:3c:86:1f:dc:02:44:5d:f5:49:44:73:39:2f:
28:2b:2f:79:08:23:a5:d8:de:75:68:70:af:04:e2:
5e:c6:dc:c6:ce:4b:f7:73:77:5d:90:51:dc:be:f5:
2c:a4:cf:99:9e:7f:32:ae:ef:b1:72:37:68:91:5c:
52:ef:1a:f4:a3:b1:c8:10:3d:58:e2:91:21:06:4a:
94:59:e0:4b:50:ce:73:9f:da:ed:9d:40:dd:8a:40:
17:42:3b:b7:3f:15:c9:50:fb:43:08:5f:86:b4:38:
b7:4a:a3:d2:0e:c8:cd:ed:72:1f:37:b4:cb:38:f4:
9e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:77:22:6F:E5:03:4B:71:E3:F3:75:1F:59:3B:46:2F:E1:FB:6F:62
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:2d:01:66:63:f6:35:5d:a1:61:a9:9f:a5:f7:ec:f1:10:b5:
ec:af:92:26:bc:68:3b:9d:1d:b3:31:75:9a:3b:07:c2:90:dd:
06:a3:64:98:15:43:8b:45:f5:65:56:53:b8:e8:19:0d:dd:7b:
df:d0:84:25:0c:56:f6:68:75:38:e1:1c:1a:42:17:05:39:dd:
34:f9:08:8d:5b:95:5b:5d:93:36:e9:88:95:3d:0f:30:c7:39:
f8:a0:8d:a1:91:1b:02:95:ee:07:9d:d7:ef:04:d2:96:c6:09:
ca:69:31:92:d4:e1:55:02:5f:17:c1:be:c7:21:59:e7:f0:7c:
ff:86:40:1d:17:9f:fb:c5:f7:07:38:2a:3c:b4:84:0f:ad:f5:
08:c6:d1:40:9d:80:0e:1c:c1:67:f1:c3:32:8e:bd:43:5b:3e:
eb:fb:ad:6d:7c:39:d3:b7:6c:2a:70:82:49:27:7f:46:d6:a8:
1d:3a:5e:73:1c:ba:c7:a9:ba:5f:23:c5:c7:a3:bf:6d:81:88:
3c:4d:90:f1:21:e4:e9:0b:a2:b5:52:23:a5:cf:6d:7c:06:48:
a1:cb:45:84:35:c2:e3:cc:df:73:54:03:85:ef:59:6d:97:39:
57:58:2c:70:58:4f:1f:52:44:a9:f3:12:17:a9:46:df:3f:7d:
5b:32:0c:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:52:31 2026 by rpki-client