Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
File: uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft (raw, json)
Hash identifier: PWpHHCCLS133Na+9PBFkLqNl+xQO+zWVIdaq5Mju+bc=
Subject key identifier: DD:43:FE:86:6E:D4:A6:E4:E9:83:E4:8B:14:EE:66:46:AA:71:C7:EC
Authority key identifier: B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
Certificate issuer: /CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Certificate serial: 019D9D3FAE547442FC46E4F1F08C1844EA26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
Manifest number: 0CC7
Signing time: Fri 17 Apr 2026 21:01:29 +0000
Manifest this update: Fri 17 Apr 2026 21:01:29 +0000
Manifest next update: Sat 18 Apr 2026 21:01:29 +0000
Files and hashes: 1: 7Wj0v-gbyfcMH9f5KyYYtwU170M.roa (hash: e4PoRusHbxL2M0PvPqUoAtAq+nRKWmfjzmDiSmNLmEk=)
2: 9qWhVqf6C_xieoQAGSbyHE5D5KY.roa (hash: dQhiQTySNdZRBr01avpOVxF4siCZ2CkUjQbcEP9vBIg=)
3: U3zArEs7OwJ9nfBspr_JzD0bg7E.roa (hash: d1G0EYlsTdKcROo0cRKePlxWkAY1LVflpTsLiPdRKeE=)
4: i32O4Awpk6Wzuhz_6gXZHvrJAF4.roa (hash: 0Vd7At1cP4C2ac+N+tPKbasTa+c3bTWjDl/QX9YCn48=)
5: qfYcCK9_SqiE7Et8ensBvaqLTv8.roa (hash: rAW116wOeZdAq5WSeD+xkWwdS7/XO8L+Dd4krEc5ow8=)
6: uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl (hash: TJBDznusiUHo5ddpgaZWpvNpEzyR5mvBIUanRzN9n74=)
7: veXQWAO6077Di4NJWwKJgY2E3ZE.roa (hash: ZthfjSI++lXKFGQ8WTJn+7ND15Hbm4XCrx8XX/sDdBw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:3f:ae:54:74:42:fc:46:e4:f1:f0:8c:18:44:ea:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Validity
Not Before: Apr 17 21:01:29 2026 GMT
Not After : Apr 18 21:01:29 2026 GMT
Subject: CN=dd43fe866ed4a6e4e983e48b14ee6646aa71c7ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1b:f6:39:6d:a4:ce:c1:52:9a:f1:cd:1a:46:
b3:07:25:0b:55:68:ee:97:35:e0:b3:91:be:7a:6d:
9a:9f:41:cf:86:3a:46:0e:1b:a2:2a:53:d4:75:f3:
e2:c2:d8:38:00:d4:bc:1b:ed:87:cb:0d:61:92:00:
b7:2c:ee:03:ad:60:e1:a4:17:af:7e:c4:1e:a5:0f:
f3:fc:a4:67:35:68:08:a7:4f:ef:36:62:fc:b3:aa:
9e:15:e6:17:63:42:fa:21:f0:24:0d:2c:ae:bb:20:
4d:75:bb:47:af:23:23:ba:01:64:45:f0:c9:0b:96:
83:eb:b2:81:f1:ac:d9:50:02:b5:c4:96:bf:06:4b:
02:b8:42:a0:fa:24:c9:ca:8a:aa:ec:2e:1e:a9:ef:
4c:ed:90:1d:fa:d3:8a:e5:09:f3:f9:b6:cc:e2:fd:
a0:03:47:00:a5:83:0b:4e:46:28:a7:53:8c:29:88:
fa:1f:a0:cd:bf:46:71:5a:dd:27:ed:21:ef:e2:41:
3a:af:70:66:4f:48:4f:38:6a:fa:4b:a6:57:b5:80:
17:d6:cf:9f:76:fd:39:f8:28:47:b9:be:b8:27:6b:
9e:8a:50:3d:09:c9:95:53:2d:9c:a8:41:6d:ae:ad:
45:69:52:c2:a7:f6:4f:cb:21:d5:53:72:6e:e4:8c:
36:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:43:FE:86:6E:D4:A6:E4:E9:83:E4:8B:14:EE:66:46:AA:71:C7:EC
X509v3 Authority Key Identifier:
keyid:B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:d5:db:a5:1f:65:b9:c2:19:ed:56:2a:85:70:2e:c3:ab:9f:
08:dd:69:f5:d1:6b:3d:25:93:0a:36:d9:26:94:07:95:d3:fa:
c9:ad:2a:03:45:91:0d:96:a5:87:00:b5:47:d7:0d:ff:51:06:
01:5e:88:49:25:64:7a:9b:fc:64:74:9e:d9:bc:20:14:e8:fc:
f9:12:81:70:f7:95:30:84:df:5f:7a:ac:8b:e7:de:62:d6:ae:
81:dd:c4:83:16:09:de:28:d0:b9:0f:67:e1:cc:59:60:03:f0:
f7:72:94:bf:39:de:23:b7:d3:09:4c:9d:f6:39:60:a1:f9:61:
cf:02:ec:dc:01:ad:dc:64:53:6b:be:ba:bf:39:8b:68:83:5b:
98:81:ab:aa:d7:d4:b5:80:64:26:21:55:ad:34:82:5a:ec:47:
cb:74:7b:a2:7f:40:29:be:92:9f:55:76:ce:d3:8e:3b:10:d9:
fc:43:d5:4e:78:cb:5d:37:61:4b:94:84:5d:ac:c8:8b:70:8a:
37:ff:85:11:af:2f:82:a3:f5:c0:8c:57:1a:68:5f:71:8f:26:
84:a6:b0:49:b2:a0:2a:1b:98:67:99:28:4d:9b:2a:e8:55:e5:
07:0a:ac:aa:a1:75:07:49:56:5b:99:7e:6d:ed:48:60:7a:0e:
69:7d:83:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:42:20 2026 by rpki-client