Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
File: uEWIWKHL3onJKQYPQvKw35JNTik.mft (raw, json)
Hash identifier: /96QznpAfKWGTMSEIzoCMJec3OagFjIFimKdxYNxLV8=
Subject key identifier: 6F:DF:82:72:5C:BA:CD:0D:B9:A7:9F:C0:DE:5E:F4:E3:A7:6B:CC:85
Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
Certificate issuer: /CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Certificate serial: 019CAC46867249A95D3E39DA93FF9E2E1C82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
Manifest number: 0CC7
Signing time: Mon 02 Mar 2026 02:00:28 +0000
Manifest this update: Mon 02 Mar 2026 02:00:28 +0000
Manifest next update: Tue 03 Mar 2026 02:00:28 +0000
Files and hashes: 1: HqjPBLQP0k_ZWUi4re8PM7q9yeE.roa (hash: zWvSWnQ+ZhrAVivum98kmHRXOZE35K47bVLXG/JHPOg=)
2: uEWIWKHL3onJKQYPQvKw35JNTik.crl (hash: ccqpQGocM1Wp9sQcw9FksT3aetHzvihqELMWAYmZH0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:86:72:49:a9:5d:3e:39:da:93:ff:9e:2e:1c:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Validity
Not Before: Mar 2 02:00:28 2026 GMT
Not After : Mar 3 02:00:28 2026 GMT
Subject: CN=6fdf82725cbacd0db9a79fc0de5ef4e3a76bcc85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b8:09:ab:d8:9c:58:c2:db:95:76:db:06:5a:
f9:63:7b:77:78:5b:cd:b9:ea:25:75:d5:1f:9c:d5:
e8:26:07:6b:1f:df:4d:04:bb:74:30:39:53:ad:b0:
11:7a:17:53:63:73:0a:64:4b:7f:1b:69:da:69:80:
c0:28:b6:01:ca:7b:09:80:d1:59:8b:ed:ae:2d:ef:
b4:34:5a:fb:82:4c:e6:39:c7:7d:4f:a4:ba:1d:48:
5a:59:31:5d:af:94:61:14:c9:e1:7b:75:26:b6:a7:
1d:b3:c0:b8:70:8d:de:e8:38:ff:d2:b5:c5:c8:3a:
37:20:44:49:e1:a8:be:55:cd:16:fd:2b:ab:4b:65:
a6:f3:93:b6:78:34:39:93:6a:e4:d5:85:9d:b8:68:
2c:b6:8f:c7:00:6b:d6:6b:54:67:50:3e:e9:e4:86:
36:df:c3:be:da:88:92:a5:98:7e:ee:b8:59:f0:f4:
a2:82:90:30:99:7d:39:2e:f8:45:41:24:d7:f5:ad:
d5:c2:78:32:fb:a7:01:e4:e5:20:b3:cf:1b:f1:d2:
f6:24:3d:c3:f6:80:43:79:e5:11:b8:0b:53:73:a7:
28:fa:39:d0:49:4c:28:3c:aa:d0:dd:00:a6:8c:55:
4d:43:fc:f4:6a:ee:1b:3a:e7:ca:e6:7c:bd:6e:c5:
22:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DF:82:72:5C:BA:CD:0D:B9:A7:9F:C0:DE:5E:F4:E3:A7:6B:CC:85
X509v3 Authority Key Identifier:
keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:fe:80:b1:5b:ea:3d:09:20:58:13:6a:84:62:77:cd:81:f8:
54:2f:3f:81:dc:4c:38:03:58:e8:ff:f6:3b:34:af:2a:b4:9e:
28:81:d3:3f:32:d4:69:43:f2:4e:a0:f8:6d:d9:53:b7:3b:42:
04:34:cf:fc:8a:f7:9e:e7:9f:cb:a9:ce:61:b2:95:81:cb:4d:
e3:d7:68:57:6c:77:4a:4a:20:5d:ae:ad:28:16:a7:38:ad:7b:
be:88:d9:8b:14:e3:e2:a6:77:07:b3:95:ce:ac:73:f8:54:c4:
35:6d:0b:e1:da:82:04:ba:6c:c5:47:67:51:f3:31:f2:de:d0:
db:b1:c3:cf:9d:0e:02:17:e3:83:fe:03:ef:24:b0:39:1c:a6:
9e:e2:91:21:bb:3d:43:71:cd:81:8d:ce:61:2b:74:69:49:99:
ae:d1:9d:b0:ad:0a:4f:ea:fc:48:ce:e0:27:43:e0:69:8b:d7:
0b:38:ab:13:08:0c:fc:3c:4a:42:51:f4:88:e6:3b:e7:84:b6:
3d:a9:a1:d7:88:ca:34:63:29:03:5b:db:eb:a7:4e:00:6b:e8:
9f:17:8f:c1:60:ed:45:85:d7:f8:0f:f1:79:d4:24:ba:50:43:
14:38:5f:62:ab:11:fa:51:e5:e9:ea:72:0f:ca:69:16:d1:f5:
92:75:ee:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:21:50 2026 by rpki-client