Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
File: uEWIWKHL3onJKQYPQvKw35JNTik.mft (raw, json)
Hash identifier: fGUmx70VbtUeoND6Y0Ey2Khd8IQn93RflTeFvt63fBM=
Subject key identifier: 03:74:D4:29:B8:CE:5A:D9:D6:9A:DC:F8:A1:77:FD:27:27:64:56:9D
Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
Certificate issuer: /CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Certificate serial: 019D99D06A537B3D184C4FFD0166A082D42B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
Manifest number: 0D42
Signing time: Fri 17 Apr 2026 05:01:05 +0000
Manifest this update: Fri 17 Apr 2026 05:01:05 +0000
Manifest next update: Sat 18 Apr 2026 05:01:05 +0000
Files and hashes: 1: HqjPBLQP0k_ZWUi4re8PM7q9yeE.roa (hash: zWvSWnQ+ZhrAVivum98kmHRXOZE35K47bVLXG/JHPOg=)
2: uEWIWKHL3onJKQYPQvKw35JNTik.crl (hash: Mb2lr/xXPyW49qPcwx3eBzNlAFdW3s9KwUGTWIY9TiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:6a:53:7b:3d:18:4c:4f:fd:01:66:a0:82:d4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Validity
Not Before: Apr 17 05:01:05 2026 GMT
Not After : Apr 18 05:01:05 2026 GMT
Subject: CN=0374d429b8ce5ad9d69adcf8a177fd272764569d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c6:95:51:e3:69:01:40:ac:da:63:0f:c5:8c:
ba:09:9d:90:22:ea:09:5b:a4:e3:db:b5:2b:5b:71:
9f:0f:ee:62:3d:8d:d9:08:6e:9a:49:17:c0:d6:68:
81:fd:cf:d8:cb:45:b7:11:84:c8:b7:09:48:83:e7:
88:82:5e:17:03:80:17:82:ae:1f:39:32:87:42:b9:
61:6c:f9:f0:ec:9f:14:77:77:31:97:f0:5b:03:11:
e2:92:dc:7e:58:05:92:08:3e:13:8f:72:24:3e:10:
7d:cd:d7:ee:94:5a:16:90:39:04:59:c5:02:12:c8:
2f:19:cd:29:5d:20:3c:eb:0b:15:66:b6:00:eb:7e:
d0:b4:d3:3c:b7:77:d1:4a:b0:d0:08:89:84:a4:b0:
ba:7e:54:66:5c:ee:70:bf:7c:85:83:e3:73:a2:75:
ac:36:a9:12:4c:eb:6e:2e:ec:cf:fb:05:e6:9b:18:
0a:9a:4a:95:a1:c7:e1:df:ae:56:fb:76:c4:dc:0f:
62:c3:97:ac:ba:85:3c:f5:aa:ab:d5:75:d6:11:b7:
70:65:79:47:f8:d8:72:42:99:da:a3:74:b1:f4:c1:
44:4d:77:5d:53:9f:92:39:ea:19:cf:8b:1d:19:e7:
f6:77:7f:9d:5a:99:3e:32:fa:71:40:a4:b8:4f:fd:
64:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:74:D4:29:B8:CE:5A:D9:D6:9A:DC:F8:A1:77:FD:27:27:64:56:9D
X509v3 Authority Key Identifier:
keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:23:49:8b:6d:b6:61:9b:bc:22:e9:8c:4a:15:73:6d:d8:86:
20:81:b4:f7:af:15:31:6e:b1:0e:0d:d7:3e:97:ee:ff:82:14:
c1:0c:96:89:76:ce:33:90:cc:f8:5b:3a:d9:a0:86:e2:ca:67:
b1:09:80:28:33:c7:01:98:bd:6e:39:1e:27:6c:8e:0f:f2:ac:
ad:fa:33:84:82:11:39:3f:e3:33:f8:ad:7a:0b:eb:88:df:fa:
cf:cd:6f:8a:1c:77:72:ac:1b:3f:3e:00:ef:47:aa:7d:25:b3:
6f:69:63:ea:e7:8a:5f:fb:61:39:48:11:f7:00:36:8b:c3:f3:
9f:62:be:8e:02:8c:57:8b:e0:4e:46:ae:b0:39:31:50:8b:de:
a3:1c:c1:1f:d0:33:22:c4:23:43:1e:17:f0:4a:1a:8e:cf:01:
22:2a:0d:d5:fc:ac:a9:2a:f3:b6:7c:29:09:dd:e7:1d:cd:05:
9f:ae:fa:08:8d:5b:1a:79:3b:4a:d7:d4:94:2a:f8:b5:99:88:
b1:a3:63:37:5d:14:ff:d4:f9:59:8e:7c:00:72:93:6f:2f:8b:
ee:e0:2b:34:39:18:f4:0f:46:96:db:fa:3d:3b:2e:f3:47:42:
b0:b4:bf:2d:70:a8:da:ae:f8:49:5d:db:68:37:85:44:55:31:
da:55:04:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:50:09 2026 by rpki-client