Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
File: UHeXmaO44PDx48dJjAWjP4X7u80.mft (raw, json)
Hash identifier: OHXDJA3Tmmln1FVLWE8J9mek5zRmJas5bsUNidWF4Vw=
Subject key identifier: CA:FD:8B:AE:6D:37:12:CB:44:50:90:1D:9E:7C:50:61:B7:33:3F:6A
Authority key identifier: 50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
Certificate issuer: /CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Certificate serial: 019EBE10AAD794D0E862C06E7949C6FA059A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
Manifest number: 1821
Signing time: Fri 12 Jun 2026 23:00:23 +0000
Manifest this update: Fri 12 Jun 2026 23:00:23 +0000
Manifest next update: Sat 13 Jun 2026 23:00:23 +0000
Files and hashes: 1: UHeXmaO44PDx48dJjAWjP4X7u80.crl (hash: dgEr9JbDxrxSpQcE4nlAdwSd7lB74e3Tnf2FZ9Wc3HI=)
2: lOV0FvZ4UI1RmBR3zL2RaV_Elps.roa (hash: OQfXce7br5oDI4HR7IRbJp2FZmT/5i/l+05MQHFeiH4=)
3: xfISNhaNx-QdtidwC9e-_Q1kCgo.asa (hash: mXrj296pB/exm/joNYtGKERBhDpRLhpWbyAKIvLFAPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:10:aa:d7:94:d0:e8:62:c0:6e:79:49:c6:fa:05:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Validity
Not Before: Jun 12 23:00:23 2026 GMT
Not After : Jun 13 23:00:23 2026 GMT
Subject: CN=cafd8bae6d3712cb4450901d9e7c5061b7333f6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5b:49:4c:96:43:3a:e9:d2:7b:30:28:b4:a4:
e3:d9:b0:77:7b:69:b1:6d:5a:87:da:52:77:78:c8:
0d:25:f6:48:b6:56:9a:1d:ac:ee:5a:17:dd:8e:9a:
70:02:7b:2b:71:f8:da:b5:70:2d:00:af:22:e8:f9:
00:45:ec:cb:50:ec:6c:50:a1:d6:1e:0f:e5:f8:66:
68:3f:8a:4f:3a:ed:33:dd:af:78:11:a3:1e:a7:55:
b6:52:0c:09:8d:2c:60:b5:94:4c:9a:cd:1a:4e:8b:
22:6a:2a:38:83:93:f3:52:94:a2:04:4e:a5:af:dd:
9e:57:12:be:e9:c0:8d:34:2e:65:15:39:71:74:9b:
b2:98:95:e9:e0:f5:2f:4f:50:7e:6f:2e:73:e7:49:
df:d3:1d:49:d7:74:7d:bb:ad:a0:f5:2c:d3:f9:1e:
8d:21:63:9e:4a:95:73:3a:fe:2a:7a:ee:49:02:b3:
c6:65:ab:73:f0:ec:eb:14:54:fb:43:9a:0f:61:c8:
2f:21:3b:97:25:31:3b:23:2d:de:ec:b5:f6:70:1e:
45:8f:15:30:fc:bf:ce:34:e5:de:20:2c:bc:53:56:
f6:10:80:7d:a7:e9:d2:8c:7e:3a:bd:10:31:d5:e4:
b3:e7:f5:5e:c8:af:ac:9e:fa:7e:00:59:9f:25:6c:
68:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:FD:8B:AE:6D:37:12:CB:44:50:90:1D:9E:7C:50:61:B7:33:3F:6A
X509v3 Authority Key Identifier:
keyid:50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:03:c1:5f:52:3f:00:c0:75:8d:40:63:8f:cc:ce:f5:3f:62:
25:8f:2c:8b:99:aa:e5:02:58:51:97:fa:5e:b2:6b:1e:f2:b8:
d6:c3:75:18:61:e4:ab:b9:e7:d0:d7:d5:97:46:9c:aa:80:05:
5a:89:e0:d8:42:24:7a:b0:59:24:c7:0f:15:c6:0f:28:27:77:
1a:34:ea:ef:88:b2:87:21:94:45:10:49:ac:69:da:1e:ff:0e:
8e:0f:37:c5:f7:fb:17:d3:f0:be:e1:97:a6:e9:b9:70:1d:7e:
71:62:53:ef:75:f6:ac:51:40:bf:c4:b2:e0:96:78:65:cf:83:
dd:90:bf:98:24:e0:c2:df:13:3d:ed:3d:76:75:a0:db:17:02:
33:66:a8:03:f8:57:c6:d2:f3:a3:db:94:54:83:9a:55:34:ae:
78:f4:96:24:42:5d:c7:69:bc:7a:e1:ab:1f:8b:d8:33:a5:c0:
25:ed:ec:59:07:74:ec:06:41:6f:4e:9f:5c:6f:30:57:70:91:
94:90:d1:f5:9b:5b:fc:89:54:67:7a:f3:60:6d:81:17:6e:c7:
89:a4:f0:43:a4:3b:88:f2:fb:75:8d:f7:b5:30:6f:81:5c:c2:
cd:33:73:38:80:06:37:4e:3a:8b:b3:e0:b1:00:f6:5f:2f:d0:
73:a4:91:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6+EKrXlNDoYsBueUnG+gWaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNzc5Nzk5YTNiOGUwZjBmMWUzYzc0OThjMDVhMzNmODVm
YmJiY2QwHhcNMjYwNjEyMjMwMDIzWhcNMjYwNjEzMjMwMDIzWjAzMTEwLwYDVQQD
EyhjYWZkOGJhZTZkMzcxMmNiNDQ1MDkwMWQ5ZTdjNTA2MWI3MzMzZjZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFtJTJZDOunSezAotKTj2bB3e2mx
bVqH2lJ3eMgNJfZItlaaHazuWhfdjppwAnsrcfjatXAtAK8i6PkARezLUOxsUKHW
Hg/l+GZoP4pPOu0z3a94EaMep1W2UgwJjSxgtZRMms0aTosiaio4g5PzUpSiBE6l
r92eVxK+6cCNNC5lFTlxdJuymJXp4PUvT1B+by5z50nf0x1J13R9u62g9SzT+R6N
IWOeSpVzOv4qeu5JArPGZatz8OzrFFT7Q5oPYcgvITuXJTE7Iy3e7LX2cB5FjxUw
/L/ONOXeICy8U1b2EIB9p+nSjH46vRAx1eSz5/VeyK+snvp+AFmfJWxoGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMr9i65tNxLLRFCQHZ58UGG3Mz9qMB8GA1UdIwQY
MBaAFFB3l5mjuODw8ePHSYwFoz+F+7vNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUhlWG1hTzQ0UER4NDhkSmpBV2pQNFg3dTgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yNDQ5NTgtYWEyZC00NzhjLWIwZmYt
NjllZmFkNmMzYTgwLzEvVUhlWG1hTzQ0UER4NDhkSmpBV2pQNFg3dTgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS8yNDQ5NTgtYWEyZC00NzhjLWIwZmYtNjllZmFkNmMzYTgw
LzEvVUhlWG1hTzQ0UER4NDhkSmpBV2pQNFg3dTgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiAPBX1I/
AMB1jUBjj8zO9T9iJY8si5mq5QJYUZf6XrJrHvK41sN1GGHkq7nn0NfVl0acqoAF
Wong2EIkerBZJMcPFcYPKCd3GjTq74iyhyGURRBJrGnaHv8Ojg83xff7F9PwvuGX
pum5cB1+cWJT73X2rFFAv8Sy4JZ4Zc+D3ZC/mCTgwt8TPe09dnWg2xcCM2aoA/hX
xtLzo9uUVIOaVTSuePSWJEJdx2m8euGrH4vYM6XAJe3sWQd07AZBb06fXG8wV3CR
lJDR9Ztb/IlUZ3rzYG2BF27HiaTwQ6Q7iPL7dY33tTBvgVzCzTNzOIAGN046i7Pg
sQD2Xy/Qc6SRPA==
-----END CERTIFICATE-----
Generated at Sat Jun 13 08:20:08 2026 by rpki-client