Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
File: uMaM2mX2aWLMuWg_FVDRTlYQego.mft (raw, json)
Hash identifier: RFZtW3UN9HbpH+Jwvx9yaU7YdRXNU7Rg/BRGxRiLqO0=
Subject key identifier: CC:ED:C0:DB:00:24:24:D4:06:B7:97:D6:29:14:03:DD:0F:D3:06:22
Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Certificate serial: 019D996236F7B18A0B57CA6575E35C71DCBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
Manifest number: 09D0
Signing time: Fri 17 Apr 2026 03:00:43 +0000
Manifest this update: Fri 17 Apr 2026 03:00:43 +0000
Manifest next update: Sat 18 Apr 2026 03:00:43 +0000
Files and hashes: 1: gH0BmhGdI-4jnerabl4mUmUrBX4.roa (hash: vNs9/H6iuDqV1b/jbRlgh+sdKrOOTZh6C5aRY+PDcq0=)
2: uMaM2mX2aWLMuWg_FVDRTlYQego.crl (hash: bmGUqBeiiiV17ITVhvHIJl2eW7h2jb0OXrR4X6JwB5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:36:f7:b1:8a:0b:57:ca:65:75:e3:5c:71:dc:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Validity
Not Before: Apr 17 03:00:43 2026 GMT
Not After : Apr 18 03:00:43 2026 GMT
Subject: CN=ccedc0db002424d406b797d6291403dd0fd30622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2a:58:1d:f0:44:d0:64:50:ac:8f:fe:2d:c3:
18:fb:6b:c6:d5:1e:3e:7c:26:53:ca:e1:50:28:65:
6c:66:2f:f7:b6:44:87:88:34:26:ab:3d:76:be:cb:
5e:18:4a:31:df:db:69:2e:4a:50:24:ba:d9:6d:3f:
09:22:12:9d:44:6e:93:f3:73:82:d1:a0:78:85:10:
5e:61:8c:7a:96:29:96:58:3c:d1:34:09:00:28:cb:
76:58:28:1c:05:f6:05:03:cb:f7:b8:16:81:68:1e:
43:34:6c:8e:73:80:5a:d6:09:1f:1f:d2:93:0d:d0:
da:d0:89:ac:82:1d:63:50:2e:5f:9e:4a:cb:0b:fd:
4e:e3:39:2b:da:59:e1:f6:66:b2:76:eb:a5:18:db:
68:ab:39:af:1f:24:6c:f7:06:29:bd:e0:16:bb:65:
a8:48:34:d2:42:92:85:39:99:38:b3:bb:f9:75:e6:
d6:5f:5d:0b:30:dc:82:2f:b0:49:8a:0d:7f:1b:23:
28:6d:5b:92:b0:36:3b:0a:92:3a:85:9b:55:fa:0c:
04:02:bb:5c:64:6b:98:bb:df:a9:c4:41:c1:58:ba:
4b:36:4b:9e:3a:7d:7e:bc:95:6e:db:64:ae:52:60:
dd:ee:f3:1f:30:96:73:50:e7:ea:61:18:89:4c:12:
57:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:ED:C0:DB:00:24:24:D4:06:B7:97:D6:29:14:03:DD:0F:D3:06:22
X509v3 Authority Key Identifier:
keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:18:3e:3f:02:77:ba:40:8d:8f:29:34:89:e8:91:0a:a3:19:
c8:a2:45:f5:e2:8c:c6:65:20:87:ea:9c:ee:e1:c9:37:d5:28:
5e:1a:64:07:7d:26:12:f4:0d:08:84:81:6c:98:bd:89:c3:0b:
64:d9:f2:29:b7:d4:2d:10:db:bd:9b:d2:d4:0f:9d:2e:f8:3e:
0b:a6:70:94:1e:81:5b:14:d9:17:81:5d:b2:40:f9:47:e5:c1:
7b:da:65:66:d5:6f:b9:cc:57:aa:d3:ff:86:d1:bb:de:cc:d3:
b0:5a:1a:18:b4:fe:d9:b7:59:55:d4:06:a0:8d:f3:c2:fe:4c:
6c:08:00:05:79:c8:5a:d6:ad:cb:fe:54:b1:ae:76:d8:8f:12:
a8:11:8e:b4:45:2b:f6:67:09:ac:3c:47:97:0a:bf:dc:03:ed:
28:8c:83:bd:4b:c7:d4:14:54:4b:91:7d:94:23:6e:02:f9:45:
60:67:8e:d7:0a:f7:a4:ee:d4:ca:54:55:95:10:7e:8a:bd:8b:
94:2b:72:c6:ba:56:5a:9d:b1:f0:13:d9:74:01:c7:e8:00:ae:
b9:d6:58:a1:6c:41:51:ea:af:e6:51:90:4f:2d:09:86:2c:a8:
85:49:db:df:77:76:66:a1:5b:10:ec:47:dc:88:af:d8:0e:94:
65:dc:73:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:06:58 2026 by rpki-client