Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
File: UztG46ndW36oqL_aL247rRVQkRM.mft (raw, json)
Hash identifier: DYRvGCcvaGEy81eOGvu8VpK8SmxlZx4ZU+VSbJgsL4Y=
Subject key identifier: E8:8E:DB:06:2F:E4:F5:9F:C2:0D:DD:41:3C:7B:E1:68:B7:78:6F:2D
Authority key identifier: 53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
Certificate issuer: /CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Certificate serial: 019D98F48626FF4A194DB14149D6A8AB7542
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 01:00:55 +0000
Manifest this update: Fri 17 Apr 2026 01:00:55 +0000
Manifest next update: Sat 18 Apr 2026 01:00:55 +0000
Files and hashes: 1: Kioc6B7Fyfli6FCiujhE8Qm79C0.roa (hash: QvwIZ61NmPvndcfj0ICAM5kw0hGVe6xU34dEpUs0Jmk=)
2: UztG46ndW36oqL_aL247rRVQkRM.crl (hash: xCxCaPxEzQ5sREVRSUBtP2YS8XzbxbDQrV8DNWy85c4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:86:26:ff:4a:19:4d:b1:41:49:d6:a8:ab:75:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Validity
Not Before: Apr 17 01:00:55 2026 GMT
Not After : Apr 18 01:00:55 2026 GMT
Subject: CN=e88edb062fe4f59fc20ddd413c7be168b7786f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b3:35:79:09:58:15:ea:8a:1a:d1:c4:e8:8f:
87:ff:0e:1e:82:f7:f4:bb:ff:3f:be:71:93:81:e1:
4a:2b:5e:ef:32:cc:ee:8c:e7:df:c7:9c:4d:7a:65:
82:fa:80:d9:5c:f7:ef:f6:52:a7:f4:34:7a:26:1d:
31:4a:e9:3c:ac:e8:08:b4:a5:22:12:a8:9c:fc:48:
84:bc:e3:82:ee:cd:ee:7c:7f:79:49:93:c1:3f:0e:
8a:61:1f:d7:4c:7c:f3:a4:3a:76:b6:2c:d8:3a:b1:
26:cd:1f:e3:91:75:d6:0b:94:a4:09:d3:19:9b:c3:
96:10:5f:0b:38:59:aa:a8:60:fa:b7:b2:fe:55:3c:
fd:88:36:bb:00:26:3f:0f:8b:6f:f2:46:a8:d7:c6:
d8:77:8c:be:40:53:dd:d7:99:70:3d:8a:82:cc:7b:
e8:0e:07:6a:69:41:22:60:24:9e:23:69:ee:cc:37:
86:25:d7:fe:07:46:c7:ca:2e:aa:19:57:4d:c0:2d:
7f:4f:77:81:0a:04:da:28:2f:51:c0:e8:27:aa:8a:
c9:38:60:e4:01:87:17:5b:35:9f:4b:03:a6:4a:fb:
9b:33:db:09:0e:65:02:8e:c8:f6:2f:19:e8:cf:7e:
da:1d:b2:2e:86:41:26:f3:91:85:e2:bd:f1:84:2a:
c5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:8E:DB:06:2F:E4:F5:9F:C2:0D:DD:41:3C:7B:E1:68:B7:78:6F:2D
X509v3 Authority Key Identifier:
keyid:53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:56:58:4c:97:7d:dc:36:3b:6a:db:e3:a0:70:3a:1a:6d:da:
cd:0d:c7:c3:81:3b:47:da:11:f1:de:c6:78:b8:78:8a:9e:7f:
25:9d:bc:45:1f:a6:15:1f:ad:71:4b:7b:a0:de:5a:c0:3f:91:
88:4a:8a:0d:cf:4e:87:37:20:ef:90:6b:e3:29:d6:38:fd:68:
0d:8f:d4:61:77:cd:e9:4f:da:f7:c0:8b:2f:5d:0f:c2:bf:31:
62:0a:b2:55:a4:e4:02:3d:d0:39:32:d9:e5:c8:f4:63:fb:47:
8b:7f:c0:ac:34:a8:b2:e6:fb:d9:0a:ed:98:a1:4e:7a:de:65:
12:f4:61:85:9e:bb:44:28:14:5b:d1:df:a9:73:b5:ce:1e:26:
12:8b:5f:31:ee:3f:20:db:f7:b1:a8:81:82:59:e5:64:2e:a7:
48:6d:a7:1d:68:5a:66:dc:88:b9:a6:88:2a:99:f1:9f:39:23:
22:0a:e0:64:5d:c8:75:63:ba:9f:eb:2d:76:db:43:bf:07:32:
78:47:78:ae:0e:10:6f:4f:c2:9f:4d:1d:7c:b0:a1:90:53:8f:
a2:9f:3a:84:51:bc:11:6f:3e:31:e3:6b:e5:de:61:79:a8:bb:
92:5b:d8:97:58:51:00:78:70:33:c6:fc:52:8e:3a:a0:b2:56:
bc:e7:ad:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:48:23 2026 by rpki-client