Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json)
Hash identifier: I7EPNppmqIpoZ23b2aERafhvodvZu+uU++9kitPJnlI=
Subject key identifier: 73:CD:64:C5:42:2A:AC:42:60:8B:02:34:57:06:D2:EA:E9:9D:81:24
Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc
Certificate serial: 019CCA1A74052EA67771E565B36E861EDB5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
Manifest number: 0673
Signing time: Sat 07 Mar 2026 21:00:57 +0000
Manifest this update: Sat 07 Mar 2026 21:00:57 +0000
Manifest next update: Sun 08 Mar 2026 21:00:57 +0000
Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: SZ+qiRwMojPpt1ZEWV14f52/zIUNjnbnch8ZbJYtwmE=)
2: nS12X_FMQVUUwkWnLYmgJW732kk.roa (hash: GXbiX9J7KWPFCiPzKs7zINZFOvfmZgRDxvmBON8Kk10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 20:09:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ca:1a:74:05:2e:a6:77:71:e5:65:b3:6e:86:1e:db:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc
Validity
Not Before: Mar 7 21:00:57 2026 GMT
Not After : Mar 8 21:00:57 2026 GMT
Subject: CN=73cd64c5422aac42608b02345706d2eae99d8124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ed:8f:6b:b1:0a:4b:d9:f5:fb:00:2a:13:ca:
df:0c:2d:70:41:24:e8:8b:ef:5a:56:45:cf:21:0d:
1f:e5:b8:76:77:18:96:f9:88:04:be:a0:1d:cf:e8:
14:4b:7a:f3:e5:84:46:f2:c3:e6:20:e7:32:0a:3c:
7b:3e:c0:df:8b:24:52:f3:08:7b:0d:2c:95:f4:35:
fd:8a:f8:d6:7b:ac:3d:a9:dc:8b:71:60:21:25:d7:
22:02:b2:5b:5e:ee:5b:b4:c3:55:c4:7f:16:82:77:
e6:35:7c:da:3c:a6:66:4b:23:b1:a3:07:21:3d:e4:
33:63:d9:3c:81:fc:e7:ac:18:97:e4:cc:5c:82:f2:
90:71:b2:8a:eb:9f:76:4a:d0:df:58:48:1b:85:ce:
46:e6:c5:c4:8f:18:97:5c:a5:4c:69:43:a9:09:c9:
75:38:c9:b5:38:41:22:4a:47:c3:bb:28:ba:9e:2b:
4d:97:91:fb:7e:6e:56:89:fe:c2:9c:93:75:82:ad:
fb:53:e9:10:bd:a1:16:d3:1b:59:ec:d4:5d:6f:d5:
53:81:9f:92:c1:57:18:ed:41:0e:57:27:ff:da:8d:
ad:17:99:95:a0:7e:e9:5d:dd:ed:96:0f:a4:1f:ea:
74:32:f3:aa:ec:19:23:08:e1:fd:1b:ee:bf:1b:b4:
55:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:CD:64:C5:42:2A:AC:42:60:8B:02:34:57:06:D2:EA:E9:9D:81:24
X509v3 Authority Key Identifier:
keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:66:70:66:18:b7:81:3f:b9:27:f8:35:71:55:2e:af:91:73:
35:a2:f9:c2:ff:5e:20:6f:63:b8:1f:87:3a:09:35:17:af:d1:
10:cb:34:d1:45:77:81:bf:fe:ef:58:19:d0:4b:b8:e8:4f:9a:
5c:b7:79:07:8e:e5:ce:be:30:bd:ed:14:c6:66:c1:d7:0b:c7:
56:51:85:65:67:60:97:e9:dd:81:9c:a8:de:24:59:ea:c6:60:
47:11:b4:d3:5b:28:cb:fa:d3:84:c8:ff:bf:b5:dd:e8:01:a8:
fa:4b:61:74:06:25:3b:b8:95:5a:96:02:1b:3c:24:ca:ff:e6:
00:b4:01:cb:5e:1e:7d:3c:75:9c:0e:5a:e8:dc:79:19:3c:e0:
dc:48:af:8d:89:28:18:3b:b2:7f:e9:94:e2:2c:c0:02:69:07:
73:a6:a6:5c:5e:42:9e:5e:f8:83:7c:03:76:0c:f8:d7:d7:96:
6d:ad:cc:7d:00:8b:8c:4b:b2:3f:fd:d8:ab:52:b9:a8:35:13:
e6:26:ee:81:2d:1f:f1:cc:53:f4:60:e3:8a:d7:72:9f:0f:47:
d4:19:4c:47:1c:5c:da:6d:fe:8c:29:42:b1:20:1c:f4:69:8f:
45:74:5f:db:4f:03:89:ed:b8:5a:9a:dc:9f:1f:1f:ba:0a:c7:
69:8c:d4:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 8 03:17:37 2026 by rpki-client