Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
File: ufdKR6bRoL9MIW5fq02R-xKd89Y.mft (raw, json)
Hash identifier: eWV7v1m7C2nTZw+mZjslQsK6BZ/9YgnvSkOyM+QrIeA=
Subject key identifier: E2:61:62:CA:61:3F:EE:C7:3A:0E:8E:34:25:CF:2F:3F:FC:BF:2F:DE
Authority key identifier: B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
Certificate issuer: /CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Certificate serial: 019DA3E6133E02C715FBD9BAD7A8D4D18B17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
Manifest number: 0DFD
Signing time: Sun 19 Apr 2026 04:00:57 +0000
Manifest this update: Sun 19 Apr 2026 04:00:57 +0000
Manifest next update: Mon 20 Apr 2026 04:00:57 +0000
Files and hashes: 1: ufdKR6bRoL9MIW5fq02R-xKd89Y.crl (hash: sDcXyHbRYFGh7kAxuC74ARMYGH0MTk/WeZfR8CLEnuk=)
2: xthXgiM7QFg5g-QceY1y5f74Rds.roa (hash: ov8Kweo+Ul8Z/hCjsozR/vUEJ009cmFNJtAjb/mVhe8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e6:13:3e:02:c7:15:fb:d9:ba:d7:a8:d4:d1:8b:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Validity
Not Before: Apr 19 04:00:57 2026 GMT
Not After : Apr 20 04:00:57 2026 GMT
Subject: CN=e26162ca613feec73a0e8e3425cf2f3ffcbf2fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:42:20:63:a4:d1:01:ce:e5:83:d8:ec:5e:c2:
8b:f2:d7:77:72:c7:b4:1d:6f:2b:06:91:89:a8:9f:
09:7c:a0:7c:e5:5e:b7:bd:19:22:c4:56:15:b7:7a:
d8:d6:02:6c:00:0a:41:a8:7d:a1:c0:e0:2f:41:b4:
94:a6:82:2f:f9:03:26:67:e4:1b:a6:53:0a:c9:6a:
8e:1c:e9:65:7a:ed:6e:73:21:a7:40:65:4c:73:d4:
3e:81:74:6a:76:f3:9a:f9:46:85:53:3b:4a:19:1b:
12:e7:72:e3:ba:ad:8a:97:a7:f9:2c:7e:4a:5b:aa:
50:e0:73:a6:fa:40:b6:29:4b:fd:5e:96:7a:15:ff:
cd:b7:3f:83:e7:ad:28:82:29:9e:67:9d:d5:55:e4:
62:1e:e8:23:2d:c9:3d:25:0d:af:bf:a3:13:4b:79:
5f:34:85:ca:46:7d:54:8b:86:95:3e:da:b6:1f:71:
3e:58:b1:ac:7a:49:8d:2d:66:b1:c0:cc:85:8d:00:
e8:9b:11:74:d7:6b:04:ab:13:fa:60:28:4e:66:21:
5e:a1:99:64:45:ec:9c:89:d2:1d:f6:88:32:57:7b:
62:13:d1:ae:f0:14:c4:f1:1b:f7:a9:68:c4:b4:2b:
b0:50:1e:79:59:4f:4b:04:fd:32:2a:49:a0:ce:75:
d6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:61:62:CA:61:3F:EE:C7:3A:0E:8E:34:25:CF:2F:3F:FC:BF:2F:DE
X509v3 Authority Key Identifier:
keyid:B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:75:4e:29:e4:8a:e0:28:8d:54:6d:3a:6c:19:06:04:e9:5a:
6e:60:77:52:33:f6:6a:06:0d:0b:1e:33:5a:cb:1e:5c:d5:aa:
9c:94:6c:02:22:ef:56:4f:ed:61:28:ca:51:25:ad:24:a2:be:
90:87:e0:09:53:82:05:5e:74:bd:0d:ca:66:b9:11:26:8f:8a:
2c:5b:26:23:a4:4a:cd:a6:0f:1f:8f:fa:0d:35:d6:59:16:c7:
ee:88:ba:ac:63:07:b0:fd:9b:a1:cb:df:39:86:b3:06:4d:51:
0e:fb:af:85:25:5e:aa:e6:8b:c6:21:dc:64:5f:82:60:af:36:
5e:ea:fa:f3:07:fe:e5:8a:a8:36:94:32:57:06:d5:50:e1:fd:
50:0b:45:99:46:89:d9:14:da:30:81:28:6c:0e:18:1d:dc:ac:
b2:38:69:81:b2:d2:b8:9a:a6:b6:ac:11:75:d2:73:b2:eb:dd:
ea:99:de:cb:3e:e6:2d:ce:3c:1b:6f:3d:f7:b9:32:ef:68:ee:
07:6a:7c:d2:68:e9:5d:98:44:8b:74:f3:79:b8:0c:76:d0:58:
40:d4:79:e1:d4:8f:dd:2b:02:93:be:2f:01:13:8c:db:4a:dd:
91:2c:0f:2e:56:52:ad:b5:58:37:80:73:19:bd:84:9c:91:cf:
4d:04:c8:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:35:17 2026 by rpki-client