Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
File: UHeXmaO44PDx48dJjAWjP4X7u80.mft (raw, json)
Hash identifier: 9f8Yfs2VKMwHPO1r56PBLCGSDNzBz7gT1J0tb6NhNr0=
Subject key identifier: 31:8E:2A:47:02:45:70:05:9C:D2:EF:30:81:E4:5B:9E:47:F6:4F:87
Authority key identifier: 50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
Certificate issuer: /CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Certificate serial: 019D9A751AA3ED94C97634A129E5F2224D2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
Manifest number: 178A
Signing time: Fri 17 Apr 2026 08:00:58 +0000
Manifest this update: Fri 17 Apr 2026 08:00:58 +0000
Manifest next update: Sat 18 Apr 2026 08:00:58 +0000
Files and hashes: 1: UHeXmaO44PDx48dJjAWjP4X7u80.crl (hash: BhUXOXGw0RZ9Rw4HL/U5kex6bNv0BpcB7FCQWWismJY=)
2: lOV0FvZ4UI1RmBR3zL2RaV_Elps.roa (hash: OQfXce7br5oDI4HR7IRbJp2FZmT/5i/l+05MQHFeiH4=)
3: xfISNhaNx-QdtidwC9e-_Q1kCgo.asa (hash: mXrj296pB/exm/joNYtGKERBhDpRLhpWbyAKIvLFAPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:1a:a3:ed:94:c9:76:34:a1:29:e5:f2:22:4d:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Validity
Not Before: Apr 17 08:00:58 2026 GMT
Not After : Apr 18 08:00:58 2026 GMT
Subject: CN=318e2a47024570059cd2ef3081e45b9e47f64f87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c0:76:86:86:02:c1:8f:94:b5:de:ec:73:a4:
dc:20:fb:9f:e5:43:61:67:4c:02:cf:4e:07:e3:e8:
93:9c:88:28:6c:72:c7:ef:dc:69:66:1d:5e:ab:8f:
0a:ef:48:18:6d:8b:6f:7a:93:a5:d4:4e:aa:c6:0e:
2a:38:39:93:90:88:f2:7c:38:27:9a:bc:a6:5c:3f:
91:92:6a:e7:61:ad:7d:f1:c0:fb:0d:98:79:03:e4:
4d:74:57:9c:77:56:82:ca:c8:a8:e6:ad:3b:78:0c:
f1:5a:47:ef:eb:f5:61:5c:21:8b:86:3b:13:5c:a8:
53:0a:ec:33:b7:f4:dd:55:e1:98:73:b0:62:79:9f:
57:19:67:a8:ef:2f:5d:b8:09:39:89:67:46:1d:42:
4d:0a:b5:dc:ec:6c:b4:08:54:c6:0a:b9:cc:00:04:
5d:33:88:99:63:6a:88:b4:e5:04:7e:50:bc:c3:e2:
a2:05:1c:a4:99:83:7d:32:9b:f7:e1:ef:d6:72:e4:
3a:8f:32:c9:ea:b9:74:92:78:bc:c2:ac:96:53:c1:
e5:07:e0:db:67:d1:02:d9:59:49:28:02:95:f4:94:
07:53:5e:f3:ea:26:61:f5:67:16:81:6b:75:18:a6:
72:2f:f7:5c:7c:c6:36:6a:d6:79:e3:e4:1c:54:d7:
b3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:8E:2A:47:02:45:70:05:9C:D2:EF:30:81:E4:5B:9E:47:F6:4F:87
X509v3 Authority Key Identifier:
keyid:50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:c1:ae:1a:f4:37:ec:7a:7d:7a:0e:29:8d:01:b7:c3:a7:0d:
b2:ce:4d:6a:41:f3:18:fe:74:96:69:60:6c:a6:60:a1:36:cc:
8f:e8:f8:e8:81:53:fc:37:8e:1a:4b:f7:75:73:0b:d3:06:65:
63:02:0b:11:c2:02:3c:e7:fb:3f:20:bf:5d:4f:ba:5b:d3:a4:
31:95:56:e1:79:6b:f7:22:fe:22:6a:fa:55:b0:e7:e6:cf:9d:
48:d0:50:1e:30:c3:19:a1:59:20:1d:98:d0:85:75:13:5d:ca:
9d:31:a9:4f:ee:23:6c:23:f5:67:5a:7f:ac:0e:14:43:53:73:
b9:f8:94:db:1f:0f:60:25:26:08:3c:63:b6:7d:fa:6b:a5:b6:
0f:98:f3:af:80:28:76:de:fd:3c:df:10:4f:9c:2d:66:61:d1:
e1:96:38:f5:9e:8c:5a:37:9e:03:3c:f0:ac:47:6d:a8:1f:4f:
34:85:8a:71:60:ca:bb:e1:b9:8e:ee:25:3c:38:d5:66:ef:75:
ff:2a:80:ce:e0:93:f0:44:8f:62:c8:c9:d3:c7:f0:56:f1:f3:
fa:56:7c:c0:31:56:57:d1:4a:77:f5:42:6a:0e:53:ae:5b:0e:
c3:ad:06:f4:07:97:dc:a9:21:18:96:22:ae:ce:f4:7d:2a:55:
c6:1e:64:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:22:08 2026 by rpki-client