Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
File: UHeXmaO44PDx48dJjAWjP4X7u80.mft (raw, json)
Hash identifier: GvvxHBNefLcSnyuTwcB6hVdaDAPGDHygpD7Jt3DDoYo=
Subject key identifier: 3B:FF:03:35:AD:7B:1B:70:FF:70:C5:94:CA:98:8A:54:82:4C:34:56
Authority key identifier: 50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
Certificate issuer: /CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Certificate serial: 019CAC1018CFB0D00A7CAEF89B9018E38C6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
Manifest number: 170D
Signing time: Mon 02 Mar 2026 01:01:01 +0000
Manifest this update: Mon 02 Mar 2026 01:01:01 +0000
Manifest next update: Tue 03 Mar 2026 01:01:01 +0000
Files and hashes: 1: UHeXmaO44PDx48dJjAWjP4X7u80.crl (hash: UgiZRt2qY3bKXA6VlE2AmPZwoGEmpheO1kP2M7cKhrw=)
2: dR9tL359Jq4PTUxldPAbPoPg-fw.roa (hash: PUxcMJ2MZAwjyZvVJuJQ3lwg6WIyZODgR7GlmoRaalc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:18:cf:b0:d0:0a:7c:ae:f8:9b:90:18:e3:8c:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Validity
Not Before: Mar 2 01:01:01 2026 GMT
Not After : Mar 3 01:01:01 2026 GMT
Subject: CN=3bff0335ad7b1b70ff70c594ca988a54824c3456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3d:3a:b0:36:1d:92:9d:1f:08:c9:ae:aa:73:
96:bc:1c:1f:2d:e5:41:43:64:00:bf:24:22:82:35:
92:52:c5:bd:cf:49:a3:56:c5:81:e3:80:56:db:33:
7a:35:c0:06:b2:fc:19:eb:a6:7f:38:8c:9a:d8:f2:
2c:2a:3f:df:63:dd:3f:18:a7:a6:65:c9:70:e2:3e:
c6:96:e8:0d:89:cd:87:f8:70:ca:0b:a7:ce:23:d8:
03:09:0c:a0:12:57:92:d3:99:a0:4e:28:81:5d:c6:
ce:d9:95:69:3d:a8:a9:3b:81:31:4a:70:69:48:0c:
7a:fa:dc:e5:41:4d:a0:1e:2b:00:20:61:6b:84:ca:
f0:e2:7a:f6:6b:47:28:b8:d0:ce:55:0b:4f:38:f6:
c8:3a:a2:ff:4c:28:51:46:79:e5:4b:03:8e:2c:f9:
0d:49:53:06:59:bb:9e:e8:e8:d1:16:65:ff:ef:8f:
3a:10:85:b9:b0:d2:6b:90:79:f0:61:0f:3a:67:6a:
1f:2d:48:fa:9e:f3:7e:fe:f8:a8:0a:07:38:64:47:
85:60:59:13:39:fb:cb:02:23:6a:0a:84:27:a1:61:
10:60:da:ca:46:03:e4:2b:01:bc:61:20:57:f1:ec:
ea:4e:c2:83:65:33:d8:a2:e8:26:ef:b2:a5:40:75:
62:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:FF:03:35:AD:7B:1B:70:FF:70:C5:94:CA:98:8A:54:82:4C:34:56
X509v3 Authority Key Identifier:
keyid:50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:7d:7d:6d:d3:91:27:58:51:c3:f0:9d:91:c0:e1:9b:ec:c4:
83:16:61:34:46:86:df:3e:8d:77:6e:2d:d9:29:05:bb:5f:dd:
03:0c:1b:27:ea:f1:18:eb:11:ca:d1:86:4a:1e:71:09:70:dd:
cf:43:e9:ab:db:d8:55:e5:07:52:9d:f2:31:83:23:da:94:04:
a0:88:6d:93:94:ea:d5:58:1d:db:8b:3f:95:e4:f2:7f:91:eb:
11:08:4d:df:5f:ea:93:d5:58:2d:27:bd:e4:7a:31:6e:86:11:
e8:7a:c5:ce:d5:2b:47:95:95:e6:c0:56:07:66:35:55:8c:18:
df:20:4f:1b:e3:5c:47:d2:80:a3:6a:70:8a:6b:f0:88:57:47:
54:f3:c5:86:29:3d:af:14:11:76:63:37:86:21:b5:d9:94:08:
1c:0f:09:1c:f8:3d:1e:9b:9f:9f:cc:97:e1:af:6d:23:47:ce:
9e:77:c9:8a:99:85:b3:13:cb:29:b6:28:00:5d:19:63:b8:03:
90:73:cd:58:fd:ae:bc:e9:92:35:e6:d8:5d:a0:41:40:56:db:
aa:e5:d1:9f:4c:90:8d:91:c0:9e:7b:96:35:e9:1e:fe:17:ce:
c1:9a:9b:bd:7c:45:32:db:d9:ea:ed:d9:de:c2:73:b5:dc:42:
44:a6:97:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:01:40 2026 by rpki-client