Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json)
Hash identifier: 6MGhZH3uFcto6HixoppmKpAnSsmK/E++v3BAld87VYs=
Subject key identifier: 82:3A:43:C5:A5:BA:AE:DC:E7:37:8C:DE:17:53:0A:A8:ED:1A:89:0A
Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Certificate serial: 019EB80F17390954B9F2E6A366E427C4BF92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
Manifest number: 1958
Signing time: Thu 11 Jun 2026 19:00:57 +0000
Manifest this update: Thu 11 Jun 2026 19:00:57 +0000
Manifest next update: Fri 12 Jun 2026 19:00:57 +0000
Files and hashes: 1: I14lG_8KuHU0CqYJHc9FqXObhcQ.roa (hash: ZF+DnhO3hjJF0AK61h8lfYEMUXQ/Nib4VTQFMRZ8378=)
2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: o1hPjt+qeG8twQJaKUyKKIT0hcKDlPUX5JugecjScu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 19:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:0f:17:39:09:54:b9:f2:e6:a3:66:e4:27:c4:bf:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Validity
Not Before: Jun 11 19:00:57 2026 GMT
Not After : Jun 12 19:00:57 2026 GMT
Subject: CN=823a43c5a5baaedce7378cde17530aa8ed1a890a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:43:ee:84:5c:a6:5e:74:64:4f:c8:9b:26:61:
f7:7c:e2:0e:e3:9e:95:79:4d:39:0d:e2:99:a1:45:
2a:0e:51:2f:d4:f1:f7:c6:ff:00:7d:9c:71:13:0d:
9a:fe:54:cd:7f:82:5e:75:8b:f9:a2:31:2a:17:56:
a7:7b:31:5a:ec:5e:f9:b5:09:21:35:6c:4c:40:b1:
1d:ec:35:5d:f1:ee:bc:7d:fe:7b:b6:31:8d:f3:3c:
36:88:25:4b:81:48:c5:b0:1a:64:9e:e2:3c:08:ef:
e4:6a:a0:e9:a4:ab:8b:a4:25:55:88:9d:d9:e4:20:
91:7a:1b:94:cb:3b:b0:db:98:22:7f:b2:47:f8:ba:
1e:e3:fc:c8:ed:07:83:c4:ea:3b:c7:a3:6d:db:43:
d8:f1:64:db:42:24:88:7d:e9:c2:d7:f2:3d:98:ba:
c9:6f:2f:de:eb:1d:6e:6f:ec:4b:dc:09:d6:fd:d9:
50:77:ad:e3:9f:44:6b:dd:76:30:c2:0d:2e:32:eb:
f6:8f:f7:6c:75:ad:35:ef:f0:31:84:bc:a4:86:b9:
1d:21:50:78:88:e8:8f:e6:4e:3c:01:47:70:7d:26:
35:dd:7c:73:2d:d5:18:82:73:78:bd:f8:d7:97:a1:
9f:04:ad:a3:c9:43:47:21:50:c4:4c:9b:da:f0:9f:
c4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:3A:43:C5:A5:BA:AE:DC:E7:37:8C:DE:17:53:0A:A8:ED:1A:89:0A
X509v3 Authority Key Identifier:
keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:ec:69:76:30:65:b9:4d:e4:f7:2e:0c:91:a2:24:fb:31:00:
cf:34:8b:fa:e2:d9:82:53:27:23:7e:69:28:97:0d:c0:19:d2:
17:ec:11:06:9a:72:2f:16:1c:66:76:5a:b9:b8:b2:d7:79:29:
82:95:e7:b5:aa:a4:d9:db:fe:db:d9:44:32:f8:81:83:1c:38:
bb:ee:8c:4c:92:12:c1:a1:2b:9b:af:9b:56:54:ae:1a:47:3b:
6b:1f:58:2b:02:40:e0:5c:7f:55:ad:a7:d6:92:fd:6d:70:6d:
6e:c0:7c:2f:b7:57:9e:3b:41:dd:4b:1a:9b:75:b4:6d:01:fb:
62:85:ed:4c:d4:e7:08:95:ae:a5:22:50:b7:26:42:d4:68:07:
64:7a:fe:98:ac:67:6b:fc:e4:a5:0a:cf:71:aa:36:8f:0d:42:
26:0d:f1:54:9e:49:d7:40:1d:7b:56:f9:0f:14:24:f5:bb:d0:
8f:77:d5:56:69:53:95:15:ed:2c:82:3d:20:79:c6:0f:c8:7e:
f6:62:4f:60:0b:2a:34:cd:83:7f:6c:8c:d2:61:6f:4c:41:97:
35:58:61:57:2c:f8:19:5c:50:21:3f:da:b0:67:a5:f2:7d:a3:
bf:45:2e:a7:18:55:57:e0:c0:4c:41:78:d8:f1:ea:ce:3e:da:
5a:d1:4a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:14:03 2026 by rpki-client