Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
File: U6i3vKixHSeFDpGMpZlmmIAWKSk.mft (raw, json)
Hash identifier: 995TENgBUrcxi59Jhk5vh1bMHDDwTeG93yL8rI/DA4E=
Subject key identifier: 70:A3:8C:D0:64:33:98:2B:D1:2E:5D:FC:DA:98:F4:85:A4:9F:07:A2
Authority key identifier: 53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
Certificate issuer: /CN=53a8b7bca8b11d27850e918ca599669880162929
Certificate serial: 019D38D2E97D6E5C61C00DE805E4191F8B52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
Manifest number: 04A0
Signing time: Sun 29 Mar 2026 09:00:39 +0000
Manifest this update: Sun 29 Mar 2026 09:00:39 +0000
Manifest next update: Mon 30 Mar 2026 09:00:39 +0000
Files and hashes: 1: U6i3vKixHSeFDpGMpZlmmIAWKSk.crl (hash: lH9WvjXHwayrVOjHbxCxC7cJPpOPeUXPsUKARTovEJ8=)
2: nRT4uPgwT417V9baArl5danbAXs.roa (hash: UtWiWHKN1zx/FcfGBAr5SXtChOSfn+roky2GoxL/E5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:e9:7d:6e:5c:61:c0:0d:e8:05:e4:19:1f:8b:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a8b7bca8b11d27850e918ca599669880162929
Validity
Not Before: Mar 29 09:00:39 2026 GMT
Not After : Mar 30 09:00:39 2026 GMT
Subject: CN=70a38cd06433982bd12e5dfcda98f485a49f07a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ef:22:1d:88:b1:e0:ec:ad:c4:1a:b5:3c:1e:
98:47:04:f0:ee:b3:bb:69:e4:12:ce:a2:53:87:6c:
9d:ac:41:ef:d3:b0:71:5f:07:13:08:3b:c0:b2:50:
2b:34:5c:88:43:2f:84:49:0e:2c:93:fc:cb:a3:2e:
d5:2a:e2:0f:2e:34:f5:a3:91:bb:69:26:34:ef:30:
32:b0:b2:50:98:b7:ad:2f:0d:41:de:bb:21:cb:6e:
43:4d:cc:6d:0e:9d:80:db:a2:01:06:6c:a8:6f:74:
f3:24:53:23:fc:20:45:c5:ab:ba:7a:db:5e:9f:34:
23:fd:b9:53:8f:20:be:ca:4c:54:50:a2:09:1a:56:
b9:0c:27:db:0c:3e:18:ed:61:72:71:45:be:e9:5e:
7a:ea:05:c0:34:a2:4d:7c:d5:0e:61:87:49:8c:79:
6d:4f:9d:84:35:f8:1b:e3:67:bb:93:9e:7d:b0:80:
b5:e6:71:6b:75:24:03:f7:81:6a:f9:99:04:c4:c4:
40:6e:8a:dc:30:60:4f:60:e2:72:d5:85:42:d1:21:
55:22:df:1c:0d:61:98:d6:42:ba:03:4f:31:76:d5:
05:df:24:9d:c9:28:e8:21:c7:fc:6e:c6:65:86:6d:
1f:7a:6c:9f:ff:a8:33:1f:32:5c:b5:f2:df:1b:49:
ca:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A3:8C:D0:64:33:98:2B:D1:2E:5D:FC:DA:98:F4:85:A4:9F:07:A2
X509v3 Authority Key Identifier:
keyid:53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:30:ce:b8:bd:5f:3e:73:a0:5d:77:7b:ad:f8:d4:5a:6a:94:
3e:e5:28:07:8e:6c:cd:c5:f1:ab:76:aa:f2:b6:52:21:dd:35:
1f:e5:cb:3d:85:7c:ff:41:88:ef:90:e0:2d:8c:8f:e0:96:98:
0a:56:3d:6a:04:53:d7:c7:b5:c9:07:aa:98:f4:09:49:e9:b8:
b8:df:91:93:5c:3f:2f:b4:b9:83:1b:e4:be:3d:43:c6:49:88:
3a:88:f5:fd:ff:34:18:6d:4f:d3:f4:e0:5a:a4:9a:ca:cb:8f:
f2:18:76:4b:75:cb:f3:25:f3:ef:e8:0a:c6:e6:a3:18:ec:a0:
de:17:90:e2:21:47:75:02:40:23:a6:b1:b0:da:57:fa:7d:42:
66:58:81:7d:33:ca:7d:24:64:de:11:9b:09:f2:1c:65:69:35:
fa:bb:87:4e:e8:de:fd:68:e8:e9:36:31:27:81:b8:79:29:68:
c0:85:b9:fa:1e:a9:d7:af:7e:fd:2c:d0:49:47:3a:48:6c:15:
a4:3b:c2:8c:a2:be:df:0e:c5:58:44:53:39:9d:58:4a:14:ff:
76:10:4a:d3:e9:86:46:ad:98:03:7e:fd:d0:a3:b2:59:e9:2f:
c8:ad:a8:c0:72:a2:70:c8:d4:07:e7:7a:6d:9a:fa:e3:b6:ab:
dd:e5:8e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:39:09 2026 by rpki-client