Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: PtMEPIp3GFCrjeOGtZptiEpYlCnflqjwEwIiuULZkek=
Subject key identifier: A7:BA:8A:06:64:B8:E0:0E:96:B9:E3:E3:31:6E:37:D9:A4:C2:5A:BE
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 019CAE35F5166F0C1E3325DA4E962CE79CFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 10E5
Signing time: Mon 02 Mar 2026 11:01:37 +0000
Manifest this update: Mon 02 Mar 2026 11:01:37 +0000
Manifest next update: Tue 03 Mar 2026 11:01:37 +0000
Files and hashes: 1: 6Lv0ELrWKZzM2WUhjrrfSxrLv5I.roa (hash: b+tPMLvT0wTQ8KNZFO7LFZXenP25HBtSk8cAgN48xuk=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: 3YlUvMylI0/t2mqreu2Xc2kuuk4NV/WTfhStF+z6phQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:f5:16:6f:0c:1e:33:25:da:4e:96:2c:e7:9c:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Mar 2 11:01:37 2026 GMT
Not After : Mar 3 11:01:37 2026 GMT
Subject: CN=a7ba8a0664b8e00e96b9e3e3316e37d9a4c25abe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4d:2a:a3:4f:9a:3b:d4:fe:fb:b8:79:41:a8:
58:08:09:de:d6:8f:44:a6:b2:c0:38:b1:e8:ab:88:
4b:b6:14:f2:15:a6:2c:24:de:e3:3d:30:89:2e:bb:
90:73:11:e0:59:6c:89:8b:2e:ac:e1:c7:f2:2b:c4:
54:c1:4d:ac:b4:7d:01:94:b8:59:eb:f7:ec:90:6d:
cd:87:61:3b:95:38:25:58:41:3c:a4:4c:bb:e2:77:
98:06:6b:83:ec:10:3c:1a:e2:85:af:39:83:85:16:
ab:13:3f:fe:b2:48:04:06:60:33:2e:0a:e1:00:b8:
bf:fa:a9:8c:e0:0f:00:95:9d:87:5a:c6:c3:5f:41:
3d:29:b9:ec:88:8a:32:20:88:41:76:b1:0d:75:b5:
26:01:fd:46:21:2f:4b:c1:7a:3b:81:2e:79:f8:bd:
e2:1a:fd:00:a9:0f:86:76:93:19:0a:79:db:67:98:
35:f6:17:f0:4e:31:29:09:ad:63:97:c3:a0:a5:09:
21:07:ef:ff:2c:95:cf:24:00:99:61:d6:bf:37:84:
6a:08:1c:7c:a8:b9:81:8d:5a:84:1e:20:3e:03:ec:
4c:61:27:43:4d:b4:ca:8b:26:84:59:63:4c:99:b5:
10:30:cf:2d:09:40:b9:2d:98:3b:3c:15:8e:b1:ac:
26:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BA:8A:06:64:B8:E0:0E:96:B9:E3:E3:31:6E:37:D9:A4:C2:5A:BE
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:ca:b3:c2:5b:c4:53:71:98:e2:77:ae:3d:83:53:dc:3c:2f:
9f:dd:36:30:cc:d2:cc:9d:1d:5b:0c:a8:31:75:aa:a1:ed:91:
6c:c6:6e:5c:08:a4:27:f7:6a:76:49:b2:4e:18:96:30:26:78:
27:cb:65:ef:4b:b5:c9:1d:da:00:29:62:c9:dc:ab:74:de:83:
04:6c:96:2d:0e:70:cf:cd:85:95:a9:86:e3:11:04:f9:8d:d3:
06:53:ce:54:50:b7:0b:d1:a4:f0:83:b6:ce:49:f2:2e:bc:24:
8e:3b:15:f2:25:a1:70:39:df:a3:9d:21:5d:b4:d1:4c:22:be:
78:1e:44:49:69:2a:b8:ce:fc:ff:62:9d:b6:e4:43:c0:4b:79:
5c:2b:55:28:20:99:0f:87:71:a2:e1:a3:0a:43:1c:bc:c3:6b:
56:cc:b5:6d:5b:b6:81:16:07:55:dd:71:54:36:53:e5:1f:25:
6f:e8:46:9a:13:5b:4d:ee:1b:e6:59:d6:2d:af:ee:bc:18:a3:
93:da:c4:1f:1b:ea:49:8e:e9:32:81:d0:40:69:2d:85:0d:0e:
0d:60:a6:95:27:0f:a6:c4:90:78:c6:08:fa:72:1f:88:b8:e0:
1e:18:6c:5b:f6:44:05:e1:92:00:04:23:de:53:bf:70:e2:fd:
93:8e:75:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:34:13 2026 by rpki-client