Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier: leEojxlpiVm7oSqr3ECjynGdz2mv2I4e5sFV3tZ/KOw=
Subject key identifier: 99:E7:FC:76:B4:A2:B9:02:ED:D5:CB:E1:1D:39:63:F6:66:6E:49:79
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 019D9B5104B85AA8D293A565BFCD2FDDF48F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number: 08A2
Signing time: Fri 17 Apr 2026 12:01:11 +0000
Manifest this update: Fri 17 Apr 2026 12:01:11 +0000
Manifest next update: Sat 18 Apr 2026 12:01:11 +0000
Files and hashes: 1: UfxnZEwkQdyHN4gibAtk_ce1zeI.roa (hash: Bl9GgITeZ3znWiaIE2fwC3TQwsJfWdhy5zENaMdMELI=)
2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: DskgX+WIo6jE84oHYy0Drv71wJrYdDUkwKbZ5sWZPKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:51:04:b8:5a:a8:d2:93:a5:65:bf:cd:2f:dd:f4:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: Apr 17 12:01:11 2026 GMT
Not After : Apr 18 12:01:11 2026 GMT
Subject: CN=99e7fc76b4a2b902edd5cbe11d3963f6666e4979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c7:a3:79:0f:aa:ba:48:f0:8c:e4:9b:eb:5a:
27:b1:c2:36:67:4b:37:47:dc:a3:16:08:cd:8f:af:
12:96:e6:2c:17:e7:09:76:fe:0e:17:f4:f8:7f:e4:
c5:ff:a6:62:33:82:da:c8:90:f4:38:a6:c0:ce:64:
04:f6:8c:ac:b3:3a:5b:f2:af:0d:81:f3:fc:9f:e1:
ed:81:8b:10:ac:6b:6b:3d:2c:e3:8c:da:a2:8c:f5:
67:92:4f:1c:0b:ec:0a:d5:e4:62:3b:fb:7e:25:58:
cc:12:f1:3e:79:76:d3:e8:6d:0b:e0:41:b0:e4:0a:
af:64:7e:e3:55:58:df:a7:a2:5e:68:92:02:8b:72:
63:e3:7a:cb:8e:e7:90:98:cf:f5:7d:0b:d7:6b:d6:
fb:f0:27:81:31:43:b0:78:74:ba:93:48:77:de:43:
c6:4f:41:04:33:9a:7c:83:1c:e8:3e:46:a2:25:89:
49:f2:2c:57:2e:82:eb:6c:02:96:a6:c4:92:e7:32:
79:b8:f3:f9:a0:60:93:a9:44:9e:df:8a:ec:7f:5b:
38:b3:93:27:7f:ef:10:17:36:78:20:23:f4:39:a2:
9f:ad:d5:d6:2d:76:96:39:8a:26:b1:1b:b6:ea:4d:
86:cb:00:34:cb:ee:b6:7e:51:da:6c:19:1e:7f:d3:
98:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E7:FC:76:B4:A2:B9:02:ED:D5:CB:E1:1D:39:63:F6:66:6E:49:79
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:19:f0:5b:c9:3c:e7:cb:8d:c5:58:bc:aa:ff:9a:bb:63:5d:
61:1a:07:86:ef:90:28:f8:b6:35:c7:dd:c8:1a:ac:93:6e:26:
6a:ab:49:dc:cc:57:76:5a:aa:a6:af:06:d2:ec:67:78:00:36:
39:9b:d4:f3:59:35:97:07:84:6a:1f:2b:fc:f1:2a:66:e1:80:
5f:1c:e4:e2:33:b7:c4:b2:2e:e0:fc:ef:6c:29:56:e1:ee:af:
6b:23:7e:1b:f2:52:4e:85:d7:16:df:a6:16:6f:3a:f4:53:e7:
34:29:f1:76:17:47:54:07:e6:bc:9d:70:77:36:34:84:48:ba:
c2:bf:ba:4c:29:0a:6d:1e:a5:e9:7a:36:a2:fd:d1:6e:14:80:
5f:fb:fe:63:2f:4d:4d:95:28:9e:64:90:7a:76:43:6f:bb:1f:
68:76:09:e3:d8:e6:af:87:e4:cf:53:b4:1a:36:d3:48:08:31:
2b:ac:bc:09:c6:b8:b2:6b:84:53:02:dd:8f:4f:8b:27:4b:25:
01:3e:05:d4:15:a8:6b:e2:22:ab:e5:fc:b4:22:3f:93:e8:58:
39:4e:81:2d:48:2e:9b:86:7a:bc:24:d9:5b:05:9b:c1:4d:d9:
27:f5:59:7f:2b:fc:c9:a6:2f:77:61:e4:df:36:05:ff:d6:72:
c9:eb:13:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:45:26 2026 by rpki-client