Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json)
Hash identifier: p/UVproD4yofo7CrXm3kyy0phnI0GusvR3ysVzZfAXw=
Subject key identifier: 9B:78:3D:C9:45:B1:61:86:07:ED:D7:EE:41:BE:F5:99:74:A9:3C:F3
Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Certificate serial: 019CAB341424A168C1825786E2FDA913D722
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
Manifest number: 0E77
Signing time: Sun 01 Mar 2026 21:00:42 +0000
Manifest this update: Sun 01 Mar 2026 21:00:42 +0000
Manifest next update: Mon 02 Mar 2026 21:00:42 +0000
Files and hashes: 1: sQXNrRfabqEAqxGuf8P5f2NecXw.roa (hash: 2PpXo8MephsPJxKEGzhYMR57A346BOGMuHA13iu9pZo=)
2: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: 66M/JwzcsjGrIfRDgmTNnd8nBXV0efmnvo4aAtIl66A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:14:24:a1:68:c1:82:57:86:e2:fd:a9:13:d7:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Validity
Not Before: Mar 1 21:00:42 2026 GMT
Not After : Mar 2 21:00:42 2026 GMT
Subject: CN=9b783dc945b1618607edd7ee41bef59974a93cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:11:f9:6a:91:94:19:2b:2b:36:28:27:96:1f:
72:a6:92:0e:ab:6b:46:5a:04:80:a3:89:f4:cc:08:
ff:fd:68:74:3e:8a:04:19:bf:ee:f2:9b:1f:f0:21:
0d:8e:e8:92:6f:fe:94:94:4e:55:a4:ef:72:7b:51:
c3:65:30:a9:d9:96:c8:47:ff:a2:30:8c:a2:af:af:
9e:d9:40:e4:9f:ff:bf:83:e9:92:01:c9:21:91:a1:
55:55:7d:db:35:ca:f7:aa:c4:d5:47:77:43:7b:d7:
ee:d7:05:d9:83:f6:11:2a:a8:62:3b:68:45:6b:5c:
c9:8f:4f:97:13:20:f7:d9:45:08:27:f7:41:cb:ea:
e4:85:f9:4a:e2:44:89:f0:73:fd:80:cb:5e:c5:80:
04:d9:2e:8c:3e:94:74:f2:6e:91:18:e9:70:cb:89:
c1:a5:28:c2:10:fe:f5:3f:2b:27:99:c8:e9:bf:db:
af:56:db:9c:8e:dc:45:bd:ab:f8:67:00:e0:c0:f3:
f9:64:48:7e:78:10:8f:c8:ac:85:d3:f6:b1:e7:68:
22:a8:f8:4d:47:f3:5c:a2:46:8b:d3:7d:c7:e4:06:
55:65:35:42:0d:ea:a8:93:a2:91:70:71:a1:46:f1:
fb:a4:46:0c:9f:94:10:0d:70:7c:ce:c9:4f:f9:63:
ea:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:78:3D:C9:45:B1:61:86:07:ED:D7:EE:41:BE:F5:99:74:A9:3C:F3
X509v3 Authority Key Identifier:
keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:a2:77:82:b9:fd:b4:b0:f2:f9:6a:d5:c3:da:cb:ab:25:5b:
3e:fb:4f:a5:87:ef:ef:b5:e5:ad:0c:fb:ea:36:22:43:51:12:
1a:4a:59:f0:b4:43:74:a1:c1:8e:99:fa:c8:56:96:20:0f:b2:
11:5d:d2:05:d9:7f:48:3f:28:99:d3:a3:9c:f2:1a:ac:1b:95:
67:25:04:5d:72:17:e8:eb:d8:ce:4d:ca:2e:e0:25:b7:7e:2b:
23:82:de:71:f0:a0:1d:44:a3:fd:ad:dd:61:3a:f5:be:f3:be:
10:7e:2b:f7:64:08:16:60:7d:f8:91:b9:63:dd:b1:41:49:5c:
a2:db:c6:63:f4:fa:74:c3:a1:d4:c3:3a:f8:81:6f:08:48:db:
0b:c3:1a:9c:89:f2:fa:d5:f1:5b:08:7d:93:8d:70:51:18:2f:
8f:3f:77:22:76:6d:c2:45:42:03:ba:6a:c2:fe:b2:ef:44:b2:
dc:6b:37:4e:86:88:0e:5a:d8:00:35:6c:81:cb:52:6a:66:56:
4c:d1:5b:92:f0:d4:8a:88:2c:54:1b:ba:4c:38:e0:47:c6:b0:
7b:9c:29:92:cc:46:42:92:24:e2:d9:bc:c1:e7:87:71:b7:3c:
5b:94:5a:10:43:88:df:76:6d:68:4f:94:ff:f9:05:30:be:93:
1f:21:4b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:35:41 2026 by rpki-client