Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
File: uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft (raw, json)
Hash identifier: QX42UVz4jdLTCtSdQ46fQv03aUrWKVv1fcgDoUVJSfU=
Subject key identifier: FD:DD:F0:FB:BF:C3:0A:04:F9:27:85:AD:4C:26:A5:09:2F:36:3E:38
Authority key identifier: B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
Certificate issuer: /CN=b90907cee4fac50f3753622ad21a989ae7741c47
Certificate serial: 019CABD92F3959243721D83C4F23A5CC9585
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
Manifest number: 1548
Signing time: Mon 02 Mar 2026 00:01:03 +0000
Manifest this update: Mon 02 Mar 2026 00:01:03 +0000
Manifest next update: Tue 03 Mar 2026 00:01:03 +0000
Files and hashes: 1: uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl (hash: XzEUXEEkoMSOGhB6TgxPjpEbE/K3v9WCUg5MRbCoxQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:2f:39:59:24:37:21:d8:3c:4f:23:a5:cc:95:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90907cee4fac50f3753622ad21a989ae7741c47
Validity
Not Before: Mar 2 00:01:03 2026 GMT
Not After : Mar 3 00:01:03 2026 GMT
Subject: CN=fdddf0fbbfc30a04f92785ad4c26a5092f363e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:09:b9:2d:8c:59:cc:dc:ad:9e:59:f1:74:8a:
0d:fd:38:95:f3:85:5b:f2:00:cf:37:0f:e2:b6:21:
b6:3a:d3:23:0f:83:2f:bd:27:72:36:27:22:03:2d:
13:56:9e:c7:f2:ed:6e:07:bc:b0:f8:e2:cb:75:c5:
de:af:27:6c:01:2b:1b:a0:ea:93:a2:01:48:35:29:
e0:1e:45:47:6c:e9:55:2d:2c:5e:3f:4f:16:aa:ae:
b8:83:28:f0:d2:84:c1:fc:6d:c5:12:22:a6:df:3f:
ad:8b:b9:a3:42:cd:25:f0:32:40:da:e4:cd:7a:fd:
3d:47:4d:f6:f7:78:28:90:90:07:7d:6e:7f:83:61:
fb:4f:a7:d8:0c:48:a4:df:f9:e2:91:43:43:74:2c:
0c:9f:10:98:8a:ca:64:06:a6:a9:6b:7f:d8:de:c0:
11:29:e6:2d:7e:9d:c7:9d:5f:22:d1:25:9f:f8:fb:
ce:1f:43:a1:fb:5f:09:52:16:04:2d:f8:c6:0f:12:
a6:8d:27:c0:36:0c:d6:fb:19:de:3e:7a:f1:be:52:
69:de:a1:0c:5c:12:54:79:fb:8a:ef:a2:0c:e5:04:
62:fc:b7:02:2f:de:06:e0:c4:8d:06:58:c7:7b:03:
94:96:bb:7d:d4:44:0b:d1:37:2d:05:69:f3:52:7a:
85:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:DD:F0:FB:BF:C3:0A:04:F9:27:85:AD:4C:26:A5:09:2F:36:3E:38
X509v3 Authority Key Identifier:
keyid:B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:3e:a3:ae:da:68:b8:a9:3f:4e:bc:f0:b7:d8:b9:4d:a9:38:
76:21:a8:32:39:97:07:90:d3:12:68:1f:f5:02:b5:f0:2a:34:
3a:9e:c3:1e:0c:b2:55:58:21:e9:5c:72:34:65:ac:48:ee:86:
20:e9:d4:ac:09:46:00:11:ed:fe:b8:1d:53:9b:b1:0c:ba:ab:
a7:a4:2b:eb:a2:53:ac:9d:28:3f:b4:ec:a6:c2:ff:dd:b1:55:
49:15:11:ab:e0:f6:30:a5:38:a5:9a:8a:b9:86:d8:bd:6a:65:
1e:18:05:73:57:40:91:e7:55:54:6a:fb:f6:74:d0:64:c8:c4:
c7:50:71:55:a8:4d:64:9a:03:26:b2:53:ae:71:85:6f:19:b0:
e8:ff:f4:32:88:1d:86:90:2c:a8:85:87:6d:cc:be:12:00:1f:
e3:f1:a7:77:13:1c:6f:60:fc:64:ac:b4:4c:d8:b7:29:7b:63:
92:ed:58:dd:21:5a:32:b3:6b:5c:8b:0c:58:d4:e9:f7:7a:fc:
ff:24:83:60:0c:6f:6c:38:f8:c6:80:2d:cc:a2:26:3a:23:09:
47:05:c6:b4:b2:54:72:dc:8c:0c:30:e7:32:52:fb:6f:4b:88:
ed:d2:7b:bc:ee:8b:be:f7:d7:93:cf:80:79:c9:0d:61:36:74:
d7:5d:26:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:39:41 2026 by rpki-client