Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json)
Hash identifier: fz1zJw1cy+JP04+q5bcgF2M1gSGXhf37FpcN9AZo4zM=
Subject key identifier: 2B:F9:A3:C7:EE:11:E5:B7:B3:35:79:D9:2A:13:05:FA:1C:2F:2E:62
Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc
Certificate serial: 019DB3C6DE6D44F0A4B019E0CB7D84EBA9B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
Manifest number: 06EC
Signing time: Wed 22 Apr 2026 06:00:47 +0000
Manifest this update: Wed 22 Apr 2026 06:00:47 +0000
Manifest next update: Thu 23 Apr 2026 06:00:47 +0000
Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: 1f1xTZA81aEZBesWvA1kHLwz/vAjxtPuaam9dGMqWHw=)
2: nS12X_FMQVUUwkWnLYmgJW732kk.roa (hash: GXbiX9J7KWPFCiPzKs7zINZFOvfmZgRDxvmBON8Kk10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b3:c6:de:6d:44:f0:a4:b0:19:e0:cb:7d:84:eb:a9:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc
Validity
Not Before: Apr 22 06:00:47 2026 GMT
Not After : Apr 23 06:00:47 2026 GMT
Subject: CN=2bf9a3c7ee11e5b7b33579d92a1305fa1c2f2e62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:91:9f:58:40:7a:8c:df:7d:40:db:ac:d0:20:
9b:7e:1c:18:11:80:0a:de:ba:53:f0:d6:c2:8c:b5:
de:74:f1:cf:6e:2a:f0:68:d8:0f:2f:ff:df:10:55:
f6:b1:a0:28:51:a2:ec:b0:a7:77:23:ad:df:27:41:
96:bc:a0:a7:c7:2a:06:d3:11:72:9d:6d:dc:78:f0:
1b:9b:9a:63:b1:3b:ae:3d:b9:20:08:a3:42:73:ca:
be:7c:bf:fb:f7:ef:9d:cc:3e:fe:8d:0a:b8:7d:d8:
ce:38:03:b2:71:f5:64:44:41:7f:97:41:46:be:1f:
5b:3f:63:b1:de:ad:f2:82:d3:e2:1b:7f:07:b6:b6:
f7:a7:2e:75:f7:00:9a:e2:4c:70:84:45:95:9a:56:
09:09:c0:df:d6:f3:78:b0:ad:9c:28:0c:8a:a3:35:
01:88:e1:21:18:73:53:39:32:49:e1:bb:1e:c6:6b:
59:00:72:10:a7:3f:9e:a9:a6:ba:78:71:2f:6a:0b:
50:4f:64:cd:cd:09:04:31:62:cd:b2:0d:32:87:95:
f3:11:eb:14:b8:1e:7c:f3:0c:02:29:2a:55:ff:29:
4e:bf:16:2c:2d:e9:89:52:f3:b6:ae:b9:e8:ec:90:
91:24:8a:8b:f2:8b:4c:71:a7:11:e5:6a:af:96:7c:
51:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F9:A3:C7:EE:11:E5:B7:B3:35:79:D9:2A:13:05:FA:1C:2F:2E:62
X509v3 Authority Key Identifier:
keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:a7:6a:e3:90:64:44:5f:02:b7:ab:28:4b:68:6d:66:00:c6:
d6:8c:81:da:c7:e4:51:ee:0b:e1:c2:9b:5c:29:0c:28:4c:23:
34:33:76:0b:00:27:27:69:df:9b:c6:78:af:65:4c:c9:41:63:
00:d3:25:b2:4a:e9:98:72:87:e8:ab:18:c9:44:7b:de:e0:f9:
6d:b5:06:79:25:8d:b8:51:43:c2:f7:50:8f:31:27:d2:f5:04:
99:9d:4c:b1:30:03:ae:d4:ad:fd:92:97:cf:0d:a7:11:ae:9c:
84:ca:8f:d6:34:21:da:40:85:9f:b5:fe:95:b3:cf:ad:9d:51:
f5:53:ea:1e:2c:a0:c9:34:67:c2:04:16:2b:67:de:33:d3:f7:
52:30:a4:37:fa:af:ac:23:b4:14:f3:ce:8e:fc:53:1c:6c:9c:
a2:4b:2a:0d:a8:ee:b9:b3:30:df:44:ac:77:06:18:7e:00:89:
84:78:8f:b0:1b:a5:7e:85:ca:84:d6:d4:be:67:5a:4d:88:28:
8c:6a:da:22:a3:0b:b1:ef:9c:99:78:98:bd:20:ba:82:25:6e:
37:c1:2c:c7:99:d4:0d:d0:14:d2:d5:41:76:3c:fc:21:fb:a7:
e0:4f:f1:1b:57:89:f3:47:7b:30:6f:9c:72:94:62:06:03:45:
39:d2:96:1b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2zxt5tRPCksBngy32E66mzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NzM5ZjA4NDQyZTIyNDQ2NjIxYjg5YTU3NjM5YjM1NDJi
YTM0ZGMwHhcNMjYwNDIyMDYwMDQ3WhcNMjYwNDIzMDYwMDQ3WjAzMTEwLwYDVQQD
EygyYmY5YTNjN2VlMTFlNWI3YjMzNTc5ZDkyYTEzMDVmYTFjMmYyZTYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2pGfWEB6jN99QNus0CCbfhwYEYAK
3rpT8NbCjLXedPHPbirwaNgPL//fEFX2saAoUaLssKd3I63fJ0GWvKCnxyoG0xFy
nW3cePAbm5pjsTuuPbkgCKNCc8q+fL/79++dzD7+jQq4fdjOOAOycfVkREF/l0FG
vh9bP2Ox3q3ygtPiG38Htrb3py519wCa4kxwhEWVmlYJCcDf1vN4sK2cKAyKozUB
iOEhGHNTOTJJ4bsexmtZAHIQpz+eqaa6eHEvagtQT2TNzQkEMWLNsg0yh5XzEesU
uB588wwCKSpV/ylOvxYsLemJUvO2rrno7JCRJIqL8otMcacR5WqvlnxR1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCv5o8fuEeW3szV52SoTBfocLy5iMB8GA1UdIwQY
MBaAFOdznwhELiJEZiG4mldjmzVCujTcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTNPZkNFUXVJa1JtSWJpYVYyT2JOVUs2Tk53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9lMjBkNTktNDQ1NC00ZWM4LTk2Nzct
NWYyYmYyMmUxODlkLzEvNTNPZkNFUXVJa1JtSWJpYVYyT2JOVUs2Tk53Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9lMjBkNTktNDQ1NC00ZWM4LTk2NzctNWYyYmYyMmUxODlk
LzEvNTNPZkNFUXVJa1JtSWJpYVYyT2JOVUs2Tk53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhKdq45Bk
RF8Ct6soS2htZgDG1oyB2sfkUe4L4cKbXCkMKEwjNDN2CwAnJ2nfm8Z4r2VMyUFj
ANMlskrpmHKH6KsYyUR73uD5bbUGeSWNuFFDwvdQjzEn0vUEmZ1MsTADrtSt/ZKX
zw2nEa6chMqP1jQh2kCFn7X+lbPPrZ1R9VPqHiygyTRnwgQWK2feM9P3UjCkN/qv
rCO0FPPOjvxTHGycoksqDajuubMw30SsdwYYfgCJhHiPsBulfoXKhNbUvmdaTYgo
jGraIqMLse+cmXiYvSC6giVuN8Esx5nUDdAU0tVBdjz8Ifun4E/xG1eJ80d7MG+c
cpRiBgNFOdKWGw==
-----END CERTIFICATE-----
Generated at Wed Apr 22 09:13:15 2026 by rpki-client