Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
File: uMaM2mX2aWLMuWg_FVDRTlYQego.mft (raw, json)
Hash identifier: WVfEKRsQwFJn4/1IB/th5oaJX8AGb7u8bsK/CPyUGCA=
Subject key identifier: 90:B9:CE:7E:DE:F3:D1:A7:10:98:08:C1:92:AC:3D:B2:D6:60:40:CB
Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Certificate serial: 019CABD990D1A3072860A28B4C87BA2D12C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
Manifest number: 0955
Signing time: Mon 02 Mar 2026 00:01:28 +0000
Manifest this update: Mon 02 Mar 2026 00:01:28 +0000
Manifest next update: Tue 03 Mar 2026 00:01:28 +0000
Files and hashes: 1: gH0BmhGdI-4jnerabl4mUmUrBX4.roa (hash: vNs9/H6iuDqV1b/jbRlgh+sdKrOOTZh6C5aRY+PDcq0=)
2: uMaM2mX2aWLMuWg_FVDRTlYQego.crl (hash: ezg3yY5U5YpSa+nQq7KNl9k3qzm52aeI//Mk9fVg95M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:90:d1:a3:07:28:60:a2:8b:4c:87:ba:2d:12:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Validity
Not Before: Mar 2 00:01:28 2026 GMT
Not After : Mar 3 00:01:28 2026 GMT
Subject: CN=90b9ce7edef3d1a7109808c192ac3db2d66040cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2d:ee:f6:fe:f7:eb:50:f8:75:13:d7:aa:e9:
44:2f:17:2e:5a:61:d3:00:c7:6e:7c:bb:a5:58:0d:
f5:cd:34:b7:80:0a:07:d0:d4:17:98:93:3a:1b:64:
cf:b7:1f:4e:02:2d:18:63:cb:71:0f:71:61:60:2b:
29:f7:fa:ea:d0:10:17:1b:a4:23:ed:14:18:e5:c9:
c8:23:2a:be:f7:69:40:f1:6e:6c:04:0e:43:c0:69:
cd:af:a8:fb:e9:e9:bd:dd:71:d0:cc:bc:22:f3:5d:
da:06:39:2d:8e:09:27:14:21:98:d2:14:ee:ba:20:
c8:37:a8:d9:d2:ee:5f:8a:c6:ef:af:38:c9:ef:3e:
48:84:b7:1c:37:b6:6e:70:4b:e2:1d:f4:07:fd:f1:
e4:99:3d:8e:a5:d3:8b:d7:c4:92:16:53:0c:8d:5e:
a1:76:27:9f:f5:c0:d2:64:88:0c:11:ac:5e:06:0b:
f1:68:42:b5:3c:57:6f:31:7b:9c:a6:fd:6f:c9:2b:
a5:ec:3d:c2:0d:9e:90:aa:c2:6c:bc:f8:07:ed:db:
0f:7e:ef:d5:f8:49:44:5f:04:76:84:bf:c6:a7:64:
07:67:c7:76:c8:aa:cd:98:ff:6a:98:b3:a2:c2:d9:
87:90:85:da:d7:02:79:0f:94:50:f3:1d:53:0c:f1:
ea:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B9:CE:7E:DE:F3:D1:A7:10:98:08:C1:92:AC:3D:B2:D6:60:40:CB
X509v3 Authority Key Identifier:
keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:a3:c9:43:14:dc:ff:c2:47:fb:01:53:f5:7b:3d:1c:f8:7b:
bd:16:49:64:e9:33:c7:cf:96:70:36:13:d2:e3:2d:b9:59:36:
d7:3c:ab:81:ed:d5:e7:81:48:ff:95:bc:ce:c4:42:8a:4e:0c:
d1:15:79:71:2f:03:a7:7b:59:56:f2:c5:f9:2c:96:c2:1a:0c:
b0:a7:cc:3b:6e:e5:a2:9d:06:a2:50:3e:ed:1b:4b:5e:cd:d9:
55:14:f6:81:ee:70:44:17:db:d9:d2:0b:40:20:1f:de:f0:11:
8f:7c:73:39:2f:ca:c1:b0:6f:a2:93:88:a8:b8:83:a6:84:86:
cc:b7:dc:67:b5:b6:2f:9a:82:10:17:1b:b7:cf:fe:53:09:6d:
bf:9d:24:d8:36:38:be:3d:c2:1f:f0:96:0b:0f:ba:3f:01:0b:
22:6f:46:fd:f8:18:48:81:81:93:4a:74:02:eb:d8:df:7a:5a:
5b:12:09:ec:f9:aa:9a:f4:d2:de:26:37:55:ef:23:03:5d:22:
b6:31:d8:20:8e:d1:10:7a:11:1e:37:50:43:99:9f:cf:41:82:
43:44:4f:81:78:31:fc:cd:af:14:e8:ae:c9:09:1a:a4:26:35:
1d:bc:b4:4f:48:a0:91:4b:ea:b1:c4:46:89:1d:2e:cf:a6:9d:
91:0b:bf:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:13:56 2026 by rpki-client