Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
File: un1KwTROw43OmXaNeKEU6_fxfYU.mft (raw, json)
Hash identifier: rOMelR5n20kzhDpf7I9CcoTi0KZEp9T0ET7BE9CW9Ls=
Subject key identifier: 31:77:A8:C5:12:90:29:D7:C4:A2:99:A5:60:71:DA:70:37:EE:EF:D7
Authority key identifier: BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
Certificate issuer: /CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Certificate serial: 019CAAC70FDA5B4F30F8D71DD6AE7F9604C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
Manifest number: 0EFF
Signing time: Sun 01 Mar 2026 19:01:38 +0000
Manifest this update: Sun 01 Mar 2026 19:01:38 +0000
Manifest next update: Mon 02 Mar 2026 19:01:38 +0000
Files and hashes: 1: o1To2AOAuoLP-nWNuTs68gOKGAE.roa (hash: IQkZrzowlCF0UtrbBWeIReby2n7O6GCUFgToo++Y5B0=)
2: un1KwTROw43OmXaNeKEU6_fxfYU.crl (hash: Qbp5n1YMd8BBP2KBFJbkrULldxv6NJKmLxaD1pNbazo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c7:0f:da:5b:4f:30:f8:d7:1d:d6:ae:7f:96:04:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Validity
Not Before: Mar 1 19:01:38 2026 GMT
Not After : Mar 2 19:01:38 2026 GMT
Subject: CN=3177a8c5129029d7c4a299a56071da7037eeefd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e8:63:87:d5:12:d8:d7:12:2c:78:c7:20:8d:
17:04:ed:9a:fb:2f:54:7e:b3:dc:94:fd:d0:30:56:
3b:83:2d:3b:ba:cd:8b:d4:c9:fe:ae:d4:14:f4:71:
7d:83:97:86:d4:1f:7f:88:04:a1:40:cd:38:c7:cc:
e3:51:04:83:05:ed:1c:df:0a:b0:6c:af:5a:3d:c4:
95:f6:dd:17:06:43:e3:9b:fd:b8:71:cc:53:a0:8a:
09:13:aa:ca:2c:93:86:b6:79:78:85:58:dc:3e:f2:
5c:c3:1d:6e:7b:8b:f9:a5:fe:ea:2b:b4:40:ea:1c:
b9:48:56:bd:f9:42:2a:3a:ae:f4:a3:41:e7:72:be:
d5:a2:39:bc:7d:68:e5:37:35:1d:1b:76:36:1a:8b:
db:d7:e9:07:79:37:99:09:11:0a:e4:2d:e1:d0:a9:
c6:f9:44:7d:82:33:a5:d4:82:78:4a:bf:b1:e3:f5:
3f:fd:73:ce:ae:f8:84:3c:10:c5:0a:12:23:bf:05:
47:e4:47:f8:6f:af:ce:ec:b7:5a:9e:80:4c:8f:de:
02:a7:a4:93:ea:d7:39:00:f2:87:3b:82:04:2b:10:
92:2e:9a:9a:ff:04:e9:63:ac:a8:1b:5f:d5:0b:ea:
52:e3:cb:8a:e8:56:28:47:ec:ad:69:6c:bc:f8:6f:
46:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:77:A8:C5:12:90:29:D7:C4:A2:99:A5:60:71:DA:70:37:EE:EF:D7
X509v3 Authority Key Identifier:
keyid:BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:f6:e8:81:a9:db:38:0a:37:e7:ab:54:8b:d2:b6:77:25:32:
90:59:37:d7:a2:0b:4e:82:e7:d9:ec:9a:70:0e:23:f6:68:88:
84:4f:92:23:f0:35:b3:4c:62:e6:a1:8c:4b:ac:fc:c9:76:4f:
2e:30:ea:dd:4b:00:64:15:80:d0:b5:66:5e:05:ea:55:97:72:
83:58:94:32:df:20:02:b7:db:af:d2:15:20:cf:da:7b:e5:c3:
4e:33:8b:37:0d:18:a1:de:3e:05:dd:6e:84:62:2d:f8:7a:48:
89:6f:f4:64:9c:83:d4:d9:22:94:cf:42:55:c6:74:67:ad:9a:
a9:ac:26:4b:3c:8f:af:76:62:26:48:ac:8c:4a:bb:2a:17:f7:
a8:aa:5d:dc:c0:bc:52:46:1b:a8:5e:56:29:26:95:3f:5e:4c:
46:53:20:d8:97:0b:8b:f8:26:bc:b6:e0:98:81:76:27:51:30:
46:bb:9e:1a:ce:75:d7:b8:a9:fd:66:fd:75:ec:9a:fc:1d:74:
9f:43:b6:36:e4:b5:e7:3c:c1:d5:87:9b:04:bc:e0:03:73:65:
ea:ce:ef:f2:f0:cc:f7:25:e5:d8:0b:2d:88:b3:f4:0e:de:5e:
b5:7f:20:c1:ff:46:03:f2:56:68:cc:85:5c:c2:e1:e6:37:a7:
04:ba:58:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:50:05 2026 by rpki-client