Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
File: 53ltjBnzKhyvvVt49Sds6N-ZXQo.mft (raw, json)
Hash identifier: sTIzqTf2eKAtuLutQCrcUFEflZMIunqWpII3NLnAlqo=
Subject key identifier: 8E:7F:3A:31:8D:58:17:89:F1:7C:BA:95:BE:C2:D1:77:5C:7F:5C:A3
Authority key identifier: E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
Certificate issuer: /CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Certificate serial: 019D3AF8B77C4F44CDAA1D5EB3B2830BB833
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 19:01:11 +0000
Manifest this update: Sun 29 Mar 2026 19:01:11 +0000
Manifest next update: Mon 30 Mar 2026 19:01:11 +0000
Files and hashes: 1: 53ltjBnzKhyvvVt49Sds6N-ZXQo.crl (hash: hS77f9Lmg4q+8AHTO3nVT1onn2LTfMz70sCz+a6Pu6A=)
2: D4ylrio1wtOKejkm6w9gAvQAe9Y.roa (hash: 8e3cUg43lYO4QgRug3qrBfXB7M63c6tSerUcL1Eq+FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:f8:b7:7c:4f:44:cd:aa:1d:5e:b3:b2:83:0b:b8:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Validity
Not Before: Mar 29 19:01:11 2026 GMT
Not After : Mar 30 19:01:11 2026 GMT
Subject: CN=8e7f3a318d581789f17cba95bec2d1775c7f5ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d6:a8:41:df:b2:70:f0:98:0e:30:7a:85:ee:
48:5c:2a:88:6f:fc:74:35:22:d1:eb:0b:76:4b:40:
68:7c:11:72:3f:7c:b6:fe:4a:b9:94:90:1b:91:74:
53:4d:8c:25:d3:14:a7:50:b0:9f:ca:50:a4:9b:54:
b4:8c:0a:20:4b:c9:e0:90:62:9f:d3:67:83:f1:88:
99:00:52:d3:38:8e:a3:f1:1c:15:6e:16:29:93:9b:
19:80:f0:b9:92:70:eb:10:17:84:71:5b:1f:b0:1e:
05:2f:0b:b9:fc:4f:ba:62:ee:03:ab:85:63:30:b8:
b0:6c:cb:0f:b1:3a:3e:f5:10:73:1a:99:41:b9:0a:
7c:0b:3a:68:41:90:12:4a:21:77:78:ea:ac:a5:84:
4a:e1:2e:02:10:ef:63:9e:1b:84:01:63:75:ac:bf:
e8:98:13:70:96:0f:cd:12:dd:0f:7d:97:49:71:1c:
b7:fb:f9:91:51:26:f7:d1:e5:65:58:9e:a4:d7:c9:
d0:51:da:f5:57:01:b9:7b:5b:2b:c3:95:c7:e2:dd:
63:af:a2:b9:a4:b6:2d:28:a6:c8:c9:20:b6:a4:bb:
fd:d3:3e:40:21:e0:28:30:5d:e7:27:10:60:5e:45:
33:11:5f:ae:de:f8:3a:7f:4d:57:7e:98:fd:ea:12:
f4:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:7F:3A:31:8D:58:17:89:F1:7C:BA:95:BE:C2:D1:77:5C:7F:5C:A3
X509v3 Authority Key Identifier:
keyid:E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:ab:90:67:89:98:e0:e4:25:dc:6e:21:a6:b1:76:3f:aa:2e:
68:16:bd:7f:25:ac:17:16:67:b2:ff:66:84:21:8b:b3:d2:9a:
e4:d6:1f:34:63:a9:51:fb:2a:4f:52:1d:74:33:ee:91:dc:18:
9e:fe:03:4f:fe:dd:23:6d:bb:4a:ea:fd:ac:58:ae:a7:20:54:
05:ee:67:cd:c1:76:ed:bf:7a:1e:60:94:05:f4:eb:24:e7:db:
75:89:dd:3b:6d:96:2e:8f:69:dd:55:08:6d:f0:38:88:eb:a8:
55:54:9f:4b:57:b2:fa:c8:c2:d5:a3:05:5d:bf:b2:58:cc:89:
2b:f3:ef:69:16:8f:31:e6:ac:7c:ff:a8:bb:1c:ec:19:e1:28:
90:96:e5:0a:ad:d3:e6:8e:de:d8:a6:9e:68:77:c1:df:47:e6:
24:d0:7d:92:64:ce:a9:6f:04:c2:1e:1d:ac:b6:5a:b8:2e:d5:
87:0c:ba:16:2c:64:ff:80:ac:b1:c0:38:e2:21:2c:5a:bb:10:
d9:b4:87:cf:d0:f1:83:ab:37:37:ba:de:fc:f7:42:74:04:7a:
da:cb:f8:39:27:51:38:fa:a6:20:57:3a:46:d1:d0:43:70:3f:
7a:5c:89:ae:0e:be:ae:c5:5a:89:2d:19:20:e7:72:a2:c4:4a:
1c:ac:ef:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:10:44 2026 by rpki-client