Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
File: UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft (raw, json)
Hash identifier: cmnuZi8A6n6pgfYuBrS/0QM5rmlIky6yzxBWZchC7Rc=
Subject key identifier: 8C:BB:75:A4:DD:6B:1C:A9:F0:EB:73:E7:D5:72:BE:0A:5E:03:CB:7C
Authority key identifier: 52:62:D3:F2:7C:C0:5B:E5:92:4B:B7:BD:89:0F:7E:6D:EF:FB:49:7D
Certificate issuer: /CN=5262d3f27cc05be5924bb7bd890f7e6deffb497d
Certificate serial: 019CAC469C6739BB0042CF48B8BEE6964D0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
Manifest number: 17A4
Signing time: Mon 02 Mar 2026 02:00:34 +0000
Manifest this update: Mon 02 Mar 2026 02:00:34 +0000
Manifest next update: Tue 03 Mar 2026 02:00:34 +0000
Files and hashes: 1: UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl (hash: vnywS3goQFwWUYdv2qn2YFli38uFSwt+DNDws2oj9jg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:9c:67:39:bb:00:42:cf:48:b8:be:e6:96:4d:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5262d3f27cc05be5924bb7bd890f7e6deffb497d
Validity
Not Before: Mar 2 02:00:34 2026 GMT
Not After : Mar 3 02:00:34 2026 GMT
Subject: CN=8cbb75a4dd6b1ca9f0eb73e7d572be0a5e03cb7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:77:03:a3:49:ba:13:c5:8d:dd:b3:a0:af:b4:
f1:a2:4e:1d:4a:c4:7e:27:1d:41:78:f6:c2:46:51:
55:64:11:53:27:18:6e:be:68:81:26:be:b3:87:ab:
43:52:07:e9:fc:66:95:ff:9c:22:a8:50:80:b5:f8:
ec:dc:7b:f2:7e:07:08:45:cc:81:59:03:16:da:b9:
2b:24:f3:14:1c:1c:95:0b:35:2c:9a:5e:c7:f3:3d:
93:ab:ce:67:cb:0d:5b:0d:3e:93:5f:1c:18:ed:0d:
4b:c6:79:bb:64:39:c2:3c:6d:ae:be:68:d1:9b:e1:
4e:13:96:fd:17:bc:1e:48:a4:3a:5e:8b:6e:03:64:
be:08:f2:50:f0:61:28:b6:02:b9:17:12:1f:e5:7a:
4e:fc:0c:dd:6c:bb:e6:7c:8f:85:0c:89:4a:45:e9:
1c:ad:83:ba:f0:a3:35:5a:c6:80:cd:ce:76:a3:ee:
a7:1f:54:1a:b2:be:98:12:e4:34:91:4e:9d:65:1a:
da:e9:af:41:9d:27:b7:bb:2b:ab:e5:24:cf:e4:7a:
33:5f:97:8d:5f:16:ca:08:1a:b8:18:ae:d2:8a:62:
b4:ed:4c:b2:23:cf:d4:eb:ba:1e:0c:f3:78:e2:4c:
0b:4d:1f:f8:49:bd:44:af:f7:84:a1:9e:6e:22:04:
65:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:BB:75:A4:DD:6B:1C:A9:F0:EB:73:E7:D5:72:BE:0A:5E:03:CB:7C
X509v3 Authority Key Identifier:
keyid:52:62:D3:F2:7C:C0:5B:E5:92:4B:B7:BD:89:0F:7E:6D:EF:FB:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:1d:17:11:f3:26:69:1e:7c:95:5d:02:52:fc:39:8d:44:b6:
a1:87:a5:1e:e3:59:80:85:7e:f5:b2:77:14:cb:a1:f0:cf:82:
92:71:57:25:c5:b8:34:5b:2b:3b:c1:71:c8:7c:d4:40:19:24:
70:dc:d7:a0:a9:bf:59:48:97:b6:e7:0e:08:40:6f:10:c5:36:
35:6f:00:b7:4d:49:6e:0e:6c:d0:fe:42:4c:0f:f6:28:6d:a4:
33:08:8d:5b:72:75:75:c7:bd:6a:3f:eb:f9:90:fd:16:88:45:
42:fa:37:0c:03:83:0c:de:29:58:75:af:6c:7a:45:a9:c7:05:
34:a5:c5:4c:3b:6a:63:31:a6:10:52:8e:12:cb:57:22:7a:b4:
39:11:17:3b:da:5c:86:33:76:5e:98:d3:b0:6d:da:e9:a2:7c:
ef:bb:5e:22:7e:86:e7:da:4c:61:be:b9:3b:76:60:40:dc:ed:
ae:1a:97:e8:b7:40:66:ce:af:de:32:94:ce:b5:96:6c:db:03:
6f:19:f9:ad:b6:3c:fe:27:78:be:5b:bf:83:84:c7:61:e7:c7:
81:23:c0:53:04:4a:4a:20:3f:bf:f9:f2:37:10:ce:76:ee:d2:
bb:c0:15:f9:4e:66:ed:a6:3f:07:d4:e5:05:f8:43:1b:09:5d:
52:e5:6a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:49:50 2026 by rpki-client