Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json)
Hash identifier: PBQ/DpRIIFWTO9k/8p2SOHTNwb+8me4KqVaevKD8zpE=
Subject key identifier: 09:A1:49:55:DC:03:02:8C:14:5B:81:48:A7:79:B8:C5:FA:1D:D0:5C
Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Certificate serial: 019DA453DA559F40439A7D48238EE204F527
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
Manifest number: 0EF8
Signing time: Sun 19 Apr 2026 06:00:51 +0000
Manifest this update: Sun 19 Apr 2026 06:00:51 +0000
Manifest next update: Mon 20 Apr 2026 06:00:51 +0000
Files and hashes: 1: sQXNrRfabqEAqxGuf8P5f2NecXw.roa (hash: 2PpXo8MephsPJxKEGzhYMR57A346BOGMuHA13iu9pZo=)
2: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: dtAL0HQ6j/8Sau2AwxbEgb01PGCln0HDEUk/kGTI/pM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:53:da:55:9f:40:43:9a:7d:48:23:8e:e2:04:f5:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Validity
Not Before: Apr 19 06:00:51 2026 GMT
Not After : Apr 20 06:00:51 2026 GMT
Subject: CN=09a14955dc03028c145b8148a779b8c5fa1dd05c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e9:47:a7:4c:7f:d3:87:20:1f:ad:ed:38:46:
ae:bc:0d:a2:19:64:d4:07:e3:d9:35:f3:85:1d:34:
8d:5e:52:ba:6c:15:e0:cd:5e:61:91:0f:29:3f:46:
55:57:f6:bd:91:8c:cb:ad:b1:e2:eb:84:d5:0f:e0:
9c:73:d6:73:da:1a:a8:2e:8e:e1:31:b1:80:d3:70:
f3:98:c3:2e:53:b2:be:9d:bb:a0:e9:c2:11:ca:a3:
64:49:9d:77:08:1e:6d:a8:f5:a9:e0:0a:d4:ca:c3:
e4:8c:b9:f9:30:a2:a2:41:cb:4c:9a:ce:9e:b9:6c:
23:9d:d7:3a:48:dc:24:aa:83:61:99:a8:e5:cb:87:
d8:ba:b9:97:fd:0c:6d:c7:2a:56:aa:18:c0:76:ff:
3c:e4:a7:a1:30:8e:0a:a7:39:ea:40:f0:03:97:ee:
62:ad:38:ee:e8:01:2b:67:f5:10:79:2b:fd:2e:9d:
74:ca:df:3a:df:eb:29:ca:57:8a:37:3e:e9:ad:21:
65:b6:ac:d9:19:ba:69:3d:e1:14:96:06:78:f8:53:
d5:56:d9:2d:87:0d:ef:17:98:00:04:df:6f:0d:06:
3b:44:f2:76:fd:85:8c:98:da:f9:c2:e3:b3:79:91:
55:b2:c9:bf:38:3f:3b:3b:d8:f7:6f:16:81:4a:7f:
85:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A1:49:55:DC:03:02:8C:14:5B:81:48:A7:79:B8:C5:FA:1D:D0:5C
X509v3 Authority Key Identifier:
keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:34:25:70:4d:9c:5e:fa:5b:d6:cb:7f:ef:30:ef:f8:e8:59:
32:8c:da:31:e3:41:69:50:db:b7:ec:4a:56:44:37:54:43:b8:
0a:cc:f1:53:93:2e:99:bd:51:80:7c:dd:ef:fe:1f:7f:c2:63:
0a:c0:1c:0a:34:cf:45:00:4f:ff:d6:f4:b5:c0:7e:6a:cd:a6:
a9:f8:26:62:e0:63:4c:d6:3f:e5:36:f3:61:1d:da:86:16:b5:
77:b9:84:86:c8:50:33:2f:85:72:0e:46:44:4e:cf:96:5b:bb:
46:5b:d3:c1:4b:e5:75:49:94:f7:b7:df:a6:9b:a4:3e:e5:42:
d8:e6:ae:cf:db:ea:99:da:a5:b1:05:67:82:97:ea:d0:ec:5a:
15:df:80:e4:10:50:c9:18:78:b7:9d:d4:cc:7e:91:35:37:0d:
6f:cf:94:bb:43:6a:22:0d:1e:ee:01:8c:96:ad:e1:2f:11:60:
96:e8:f8:82:59:1f:0a:9b:50:fc:29:56:05:54:6a:1f:2c:ad:
76:33:82:19:70:ec:e9:80:8c:48:84:09:56:96:be:7e:8b:a8:
bf:75:2a:bc:c2:ee:be:89:67:28:36:18:28:a8:7d:65:86:84:
56:26:3e:22:13:8f:0d:c7:14:75:72:b1:1a:f3:cc:cf:75:05:
e2:71:a3:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:04:12 2026 by rpki-client