Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: 6bQLdkfGfpt7OTUdKQnZCqqeW1Vg4I3TKVDA2NQF/oc=
Subject key identifier: 04:26:CE:54:38:8E:A5:A9:4E:70:28:5C:E4:5D:3B:22:81:D6:48:D9
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 019D9BBE5E2907E8787574C05FFDCFBD323B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 1160
Signing time: Fri 17 Apr 2026 14:00:37 +0000
Manifest this update: Fri 17 Apr 2026 14:00:37 +0000
Manifest next update: Sat 18 Apr 2026 14:00:37 +0000
Files and hashes: 1: 6Lv0ELrWKZzM2WUhjrrfSxrLv5I.roa (hash: b+tPMLvT0wTQ8KNZFO7LFZXenP25HBtSk8cAgN48xuk=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: Qbv0LMWg25TUrL+l3H43NkO3Eqe5jGf7NsyFk4nDdNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:5e:29:07:e8:78:75:74:c0:5f:fd:cf:bd:32:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Apr 17 14:00:37 2026 GMT
Not After : Apr 18 14:00:37 2026 GMT
Subject: CN=0426ce54388ea5a94e70285ce45d3b2281d648d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:78:e6:bb:b5:f7:5b:05:78:17:e7:97:7d:f7:
87:6d:bb:08:2e:42:bb:61:bf:84:e5:d2:d2:0c:3d:
3f:18:87:11:c4:ae:de:27:fc:3e:01:72:fe:de:2c:
5a:79:24:6e:6b:fa:57:c2:27:fe:86:56:99:da:88:
4f:f0:7b:b5:e9:5a:23:b2:b3:60:18:9b:dd:68:c4:
3a:52:b8:70:da:c2:81:37:f5:f8:28:8a:8f:ce:51:
26:c2:6e:d9:f5:35:55:69:95:ab:9e:dd:b1:ae:8a:
e7:e2:86:5a:aa:d9:ac:e2:3c:e1:1e:67:b4:4c:db:
06:5e:85:51:cb:4d:cb:0f:43:b7:e8:b8:0f:97:dc:
9f:a9:b7:98:58:79:a2:7e:e3:2b:de:1c:f2:3f:1b:
46:85:95:c3:24:f9:51:f5:a1:63:94:81:c3:c6:3b:
0e:7a:56:18:0d:c1:ff:d6:73:ff:5b:1c:df:3d:de:
b0:da:eb:50:6d:72:4b:d0:28:6e:09:54:8d:5d:22:
ea:d3:c9:d7:09:54:65:bc:63:46:d8:02:38:df:07:
39:1c:5a:98:dc:7a:6a:9d:8d:17:91:55:aa:7f:d6:
41:47:12:a0:ff:3a:f9:fc:91:50:0e:e1:63:3a:99:
67:77:f6:27:83:40:46:eb:e9:72:2c:74:5f:af:1d:
c6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:26:CE:54:38:8E:A5:A9:4E:70:28:5C:E4:5D:3B:22:81:D6:48:D9
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:9d:b9:05:ec:4b:39:eb:71:f5:f7:11:8c:0d:36:d7:b5:be:
17:bf:5e:08:0c:ae:15:9c:02:97:62:ec:c2:91:66:59:da:26:
e8:cd:6d:c1:82:f8:3f:2a:83:2a:8f:5d:69:58:62:65:36:be:
a9:0d:31:9d:4e:d4:9b:3c:bb:22:c0:f0:2a:a7:78:49:27:5b:
af:50:42:53:2d:ef:b3:b0:e4:95:8f:94:f6:e2:62:cf:73:4f:
5e:f1:6e:19:38:61:5b:63:de:a8:55:0f:4c:f7:2a:33:e6:64:
80:0b:15:a5:9d:96:9c:61:12:2c:20:59:ca:6d:36:2f:77:66:
0c:95:59:ec:02:bf:e6:47:25:05:a7:90:44:a2:6d:26:2d:31:
80:5b:d4:f2:33:5c:6a:d2:d8:d2:e6:51:74:b6:02:80:61:2e:
15:22:e6:d6:b9:af:12:43:6a:a2:c8:83:f1:d8:5b:02:60:e6:
88:97:be:9a:56:96:d1:97:d4:7e:51:f2:dc:e1:e1:cb:90:9a:
20:53:b1:04:fe:1a:32:93:29:6e:90:88:98:93:f1:e7:1b:f7:
5e:6e:dc:c0:3e:13:31:62:a9:0c:44:8a:b6:04:f5:f9:5a:bd:
d0:70:a5:a3:e7:f9:a4:52:7b:bd:02:98:b7:02:95:ca:9a:19:
ed:cc:e7:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:51:14 2026 by rpki-client