Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
File: uH9ej-619ec7CXtmZX7tjbl0pA4.mft (raw, json)
Hash identifier: VcGSz1mnKR0x6otXZ+2nNlgfN6Wq0UAYQGy4nHAfmxk=
Subject key identifier: F1:B4:10:02:15:BD:A9:2B:5D:BC:DF:34:57:F9:F2:D8:60:C6:B1:6D
Authority key identifier: B8:7F:5E:8F:EE:B5:F5:E7:3B:09:7B:66:65:7E:ED:8D:B9:74:A4:0E
Certificate issuer: /CN=b87f5e8feeb5f5e73b097b66657eed8db974a40e
Certificate serial: 019CAB6B5E7165D4201D8E8E4DC144E3E67E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
Manifest number: 1023
Signing time: Sun 01 Mar 2026 22:01:06 +0000
Manifest this update: Sun 01 Mar 2026 22:01:06 +0000
Manifest next update: Mon 02 Mar 2026 22:01:06 +0000
Files and hashes: 1: uH9ej-619ec7CXtmZX7tjbl0pA4.crl (hash: 18wzkEbwBCtcZo0wmL/uVZOHgS11v7jW6qnC99aE9zM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:5e:71:65:d4:20:1d:8e:8e:4d:c1:44:e3:e6:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87f5e8feeb5f5e73b097b66657eed8db974a40e
Validity
Not Before: Mar 1 22:01:06 2026 GMT
Not After : Mar 2 22:01:06 2026 GMT
Subject: CN=f1b4100215bda92b5dbcdf3457f9f2d860c6b16d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5c:a6:39:fd:cc:a0:c2:a3:e8:13:ff:e1:21:
7c:2f:36:0e:2f:42:75:0e:23:eb:44:db:1a:c7:4e:
a5:05:c4:80:b5:da:87:c2:6d:b1:02:7e:81:e8:80:
6d:0c:cd:73:0f:11:5a:2f:93:df:6a:2a:75:a1:12:
3d:05:21:40:58:4e:fa:7f:4e:f3:32:5c:c3:9a:e7:
1c:62:21:84:d4:8e:d0:57:26:2d:f1:a0:59:ff:ad:
6c:bd:eb:2f:ee:6d:5e:5d:12:f8:e0:13:3b:51:0e:
bc:71:27:a4:22:93:48:ea:02:ef:24:04:ba:83:07:
5b:8a:67:6b:5d:b8:c3:f5:f6:5d:22:65:b5:12:26:
8e:d4:6f:3f:d8:ef:27:db:ec:a3:32:4e:25:de:70:
14:16:1b:84:6f:a4:5a:8b:c4:87:5a:27:1a:60:fd:
60:5c:af:f7:18:9e:6c:22:53:b5:f7:a9:c4:26:a5:
6d:8b:2c:37:cc:fb:f5:a6:e9:44:55:17:e7:1b:23:
8b:49:5d:7d:ed:21:cc:17:65:aa:7b:1c:85:d7:02:
a7:e1:65:b5:01:77:85:0c:70:2d:ce:2b:c9:52:3d:
7f:95:45:c0:35:cc:e8:81:1e:c8:32:2b:c0:ac:0d:
5f:e3:0a:9a:62:2e:e3:e7:17:2a:b4:9a:2e:92:1d:
34:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B4:10:02:15:BD:A9:2B:5D:BC:DF:34:57:F9:F2:D8:60:C6:B1:6D
X509v3 Authority Key Identifier:
keyid:B8:7F:5E:8F:EE:B5:F5:E7:3B:09:7B:66:65:7E:ED:8D:B9:74:A4:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:89:b4:73:16:2d:f8:c7:0d:3e:5c:3d:8b:89:88:9d:de:da:
de:f2:ff:4d:77:ee:a9:8d:14:15:9d:53:e0:e1:2f:84:a9:0d:
a9:3c:66:a7:86:45:c6:af:90:42:dd:43:24:22:a9:38:0f:09:
46:cd:09:63:9c:d0:4e:b0:d0:2d:2d:db:55:5f:bc:ac:03:b0:
07:46:6f:4f:6a:0a:a0:6d:c1:66:73:48:14:7a:cd:e3:98:94:
27:6b:59:9d:8b:fd:98:02:e3:8d:da:a2:b3:fe:2e:74:2b:45:
e3:cf:50:59:68:d1:c4:85:4a:02:30:ff:b3:8e:5b:0c:b8:9b:
ae:39:17:68:10:1a:11:60:24:15:f9:43:4c:9c:dd:4d:2c:dd:
41:09:52:38:ad:d4:7b:32:78:53:fc:0e:8a:2b:9a:4a:39:fd:
4a:ab:df:7b:eb:b5:0b:18:31:ad:31:45:4c:9c:dc:1e:f3:4b:
0f:ce:72:1f:56:63:65:d6:8f:07:a0:7c:93:0b:35:77:0e:d7:
b7:6c:a4:77:7c:dd:31:32:83:1d:bc:d6:6f:73:00:26:22:d0:
38:7d:7a:3e:c8:f7:fd:69:94:53:54:7e:78:a3:78:e2:b8:4c:
84:e7:25:fb:b5:5d:d0:a6:42:0c:db:9f:9b:2b:88:04:9b:f0:
8c:06:14:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:57:43 2026 by rpki-client