Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
File: U8kSoEEbsBdFBwktDKNaka15kFw.mft (raw, json)
Hash identifier: vNgTE5F68WLdMcQXiQVmjG8NCIMfaVqC6NnOaZHxkzA=
Subject key identifier: 06:08:62:CC:4C:DC:0A:AA:AB:66:40:3F:E8:F5:D2:DD:3B:B6:FC:2F
Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c
Certificate serial: 019CE748DE489B66A1DA6EEA9C6B72A11746
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
Manifest number: 186C
Signing time: Fri 13 Mar 2026 13:00:38 +0000
Manifest this update: Fri 13 Mar 2026 13:00:38 +0000
Manifest next update: Sat 14 Mar 2026 13:00:38 +0000
Files and hashes: 1: 92JgNy2UniVvWNA6kvsz4sovFIA.roa (hash: lAqICp0tk9GujbZHx2/6RHqqJpx7oSWIDsAW5NqmUFs=)
2: Jgm412TDqz8eqc-jU7VKAy0ZDsw.roa (hash: z/uYXvq2xIRczyrsXkqCGG5d8yfec3+FGNIntpcNWWU=)
3: U8kSoEEbsBdFBwktDKNaka15kFw.crl (hash: Ze8bSev9Q+OvDN9wj+Uj/p0zAl20XOLHl17HMuUPixk=)
4: ot9zGZ8lqbZQsxEaVPvTfXs9gBQ.roa (hash: Kks4PvcwFRu/9gLcNOW/VSN4jNFuv/TAckUM8Z6fniM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 13:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:48:de:48:9b:66:a1:da:6e:ea:9c:6b:72:a1:17:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c
Validity
Not Before: Mar 13 13:00:38 2026 GMT
Not After : Mar 14 13:00:38 2026 GMT
Subject: CN=060862cc4cdc0aaaab66403fe8f5d2dd3bb6fc2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:11:b8:b4:7b:f0:bd:3a:64:20:5d:e7:79:b1:
95:42:08:01:df:b6:85:b7:17:5b:7f:2a:e6:56:17:
fc:8a:44:a2:49:62:05:53:3f:32:c5:aa:5e:ea:1e:
c4:62:15:21:c2:8a:c6:0f:a5:7d:e9:c1:d6:1c:96:
b3:b5:86:79:69:09:9d:bf:9b:d3:04:78:da:e5:85:
b8:46:d3:55:a5:c9:95:4b:56:fa:d6:d5:7a:8f:22:
95:49:8a:71:51:c8:4f:f1:4c:53:c0:72:eb:28:c1:
c7:cc:96:6a:f4:78:c3:3e:9f:fd:6b:05:6a:d6:d0:
44:6a:85:87:bb:93:1e:a6:02:fe:b8:26:b7:06:81:
31:b2:4f:47:df:a0:a5:96:de:85:d7:4f:df:60:9e:
7f:cc:c6:4d:50:82:76:ec:ea:17:cc:fa:98:af:f4:
ca:9c:83:e3:61:e1:29:0a:e4:9c:49:de:3d:61:82:
0b:e7:8d:1f:70:d9:84:76:20:1e:76:29:16:2c:31:
01:5c:e0:12:d7:b8:3e:5e:20:8d:33:7b:41:53:f3:
84:61:7a:e1:1c:71:c1:80:4a:83:ce:7f:80:f8:4f:
fc:50:96:bb:44:48:fb:ed:82:9f:70:e9:ae:20:44:
c6:ec:73:ca:8e:19:4a:47:30:e8:c6:74:51:97:6d:
c2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:08:62:CC:4C:DC:0A:AA:AB:66:40:3F:E8:F5:D2:DD:3B:B6:FC:2F
X509v3 Authority Key Identifier:
keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:36:69:1a:80:35:5a:14:ac:12:f4:57:5d:a4:f2:e2:e9:89:
79:3d:5e:6d:84:60:21:1e:ce:01:00:ca:02:48:73:bd:e6:57:
d8:02:31:8a:f1:fb:98:63:43:3c:0d:83:66:48:ae:e7:ca:e2:
e2:9f:18:6d:ba:67:c2:4a:62:47:3b:9b:1d:99:00:05:fa:f3:
8d:35:76:45:7f:af:17:23:b0:75:6a:95:d3:c6:86:77:37:4b:
94:07:bd:d5:76:0c:68:05:d9:e4:85:fd:13:7b:89:7e:64:fc:
f6:2c:b7:a3:6c:4d:1d:a0:4b:71:f2:12:2e:16:33:04:70:ef:
d7:30:e4:55:d5:eb:e6:99:89:dc:7c:3f:27:83:17:32:c8:be:
24:93:84:e3:f1:f9:a0:5d:f2:99:6e:6d:ac:d8:ee:18:a6:a2:
d8:1e:b1:66:3c:4b:3b:51:2c:b8:ec:d2:cc:7b:3c:b5:ef:77:
4c:c6:2d:00:58:46:fc:a1:11:bf:01:61:20:9b:62:8f:94:d9:
a2:ae:f4:51:76:8c:10:64:8d:14:bc:a4:ef:50:ae:8f:1b:3f:
dd:f0:d7:9e:26:99:3e:d3:b5:c3:9a:b6:33:5d:6a:5a:a2:dc:
11:51:bf:03:d7:5d:f7:81:f7:ec:bd:a3:79:88:40:cb:54:05:
87:6a:8d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 21:08:49 2026 by rpki-client