Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: dytKhOhypWnuYuy5fTQTNBRZ6nFyOazDBsgrMVyJDN0=
Subject key identifier: 73:55:B4:EB:82:57:CC:1C:D5:EB:9B:CB:51:4B:D1:92:E1:1F:45:A7
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 019D3940E3B52E6000C1EB3AE5D46F5C4ED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0B1B
Signing time: Sun 29 Mar 2026 11:00:47 +0000
Manifest this update: Sun 29 Mar 2026 11:00:47 +0000
Manifest next update: Mon 30 Mar 2026 11:00:47 +0000
Files and hashes: 1: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: 9gEugC9jAsq8m7DwevGvj7c2siMvIU6ZIMkHAiKXc0I=)
2: d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa (hash: pNguw2qBCLAYUuPZ0wVkI6YbP099kM2Xh8UMvqT4t9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:e3:b5:2e:60:00:c1:eb:3a:e5:d4:6f:5c:4e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Mar 29 11:00:47 2026 GMT
Not After : Mar 30 11:00:47 2026 GMT
Subject: CN=7355b4eb8257cc1cd5eb9bcb514bd192e11f45a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:48:aa:a0:87:fd:ac:f6:ed:21:98:31:37:62:
6d:31:8c:3d:7b:82:88:4c:ca:c7:fa:05:21:11:48:
0b:19:73:c4:1b:f3:da:1b:de:37:f4:76:a6:f3:b0:
7f:1f:e7:c6:9e:8e:a5:c5:3a:37:e0:c5:f5:01:0c:
c7:35:cc:6d:fb:a5:86:bc:01:cc:12:73:9a:8d:9e:
1b:35:d2:1b:8e:d9:82:c0:37:ac:2c:26:3e:f2:db:
c9:97:22:2e:3f:90:6f:6f:de:36:51:38:75:92:47:
8f:15:a0:0f:58:ac:d0:15:7e:3d:47:17:26:fd:03:
34:c5:e2:da:da:28:a9:79:e9:4b:3e:d9:4b:c4:cb:
0c:c0:27:93:94:38:19:9d:e1:ff:b3:0d:3f:ad:f6:
95:22:e0:b1:64:44:fb:5d:42:5d:6f:e6:21:b8:04:
25:8f:15:a7:a7:f5:d5:7c:79:d0:1f:f4:84:1e:78:
e2:71:40:fe:cc:2c:c4:b4:fd:1f:89:4c:7c:6c:3f:
3c:30:40:7f:46:f2:92:4b:16:5e:65:4e:d5:af:c0:
d1:d6:7e:2c:3b:6b:27:08:1c:54:ab:c4:53:fe:84:
1d:ca:5f:38:b3:1e:66:c6:51:96:8b:a6:b8:f5:e3:
2c:1b:35:9e:ce:4e:6e:fd:4b:bb:fb:08:9a:b5:01:
7e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:55:B4:EB:82:57:CC:1C:D5:EB:9B:CB:51:4B:D1:92:E1:1F:45:A7
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:06:d1:58:aa:f5:d3:e3:9a:74:92:86:62:6b:50:5d:1d:08:
e1:0b:4d:0c:17:70:4d:58:a6:4e:e6:7e:51:8f:7c:ec:2e:9f:
32:ad:6d:51:86:5b:1f:ee:54:20:42:c7:09:b1:e9:65:26:28:
6e:62:1f:d2:4e:f0:8e:d9:f7:77:d7:e5:a5:6d:4d:c3:59:85:
1d:37:ab:06:08:02:ea:ec:3e:c4:b8:d2:90:0d:19:56:52:6f:
da:bf:cf:88:85:85:3d:2a:c4:f3:3f:bb:b7:2b:02:ae:cc:18:
fe:70:97:10:7d:72:d4:87:14:47:c0:29:b2:0d:b1:71:af:12:
a2:da:d6:8e:a4:cf:71:8c:40:10:69:14:da:7e:7d:49:25:92:
2c:24:5b:73:58:e5:4d:cd:5d:a5:ae:d4:fb:8a:38:a8:8b:87:
63:2a:6e:f4:72:f3:f7:82:6f:d3:7f:49:a8:7b:4a:de:9f:38:
b3:e5:03:8b:03:04:8c:cc:a2:52:5a:8a:36:5c:70:e8:0d:83:
6a:0b:ac:1c:7f:a4:5f:13:4f:f9:d9:83:9e:2a:21:1a:21:5a:
8a:20:ad:1b:bd:7d:24:a7:09:d3:dc:2a:cb:f1:96:78:ab:c0:
b5:3a:7e:14:c8:c2:44:22:cc:0f:3f:ca:db:0b:19:3a:a1:59:
46:f3:d0:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QOO1LmAAwes65dRvXE7TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzZTNhZWRkOTFiZTgyNDUxMzQyZGNkMWM5ODI4MzQ1ZGI2
NjFhNWYwHhcNMjYwMzI5MTEwMDQ3WhcNMjYwMzMwMTEwMDQ3WjAzMTEwLwYDVQQD
Eyg3MzU1YjRlYjgyNTdjYzFjZDVlYjliY2I1MTRiZDE5MmUxMWY0NWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUiqoIf9rPbtIZgxN2JtMYw9e4KI
TMrH+gUhEUgLGXPEG/PaG9439Ham87B/H+fGno6lxTo34MX1AQzHNcxt+6WGvAHM
EnOajZ4bNdIbjtmCwDesLCY+8tvJlyIuP5Bvb942UTh1kkePFaAPWKzQFX49Rxcm
/QM0xeLa2iipeelLPtlLxMsMwCeTlDgZneH/sw0/rfaVIuCxZET7XUJdb+YhuAQl
jxWnp/XVfHnQH/SEHnjicUD+zCzEtP0fiUx8bD88MEB/RvKSSxZeZU7Vr8DR1n4s
O2snCBxUq8RT/oQdyl84sx5mxlGWi6a49eMsGzWezk5u/Uu7+wiatQF+/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHNVtOuCV8wc1euby1FL0ZLhH0WnMB8GA1UdIwQY
MBaAFFPjrt2RvoJFE0Lc0cmCg0XbZhpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQt
YTdkOTQ1YWYxNGU1LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQtYTdkOTQ1YWYxNGU1
LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbwbRWKr1
0+OadJKGYmtQXR0I4QtNDBdwTVimTuZ+UY987C6fMq1tUYZbH+5UIELHCbHpZSYo
bmIf0k7wjtn3d9flpW1Nw1mFHTerBggC6uw+xLjSkA0ZVlJv2r/PiIWFPSrE8z+7
tysCrswY/nCXEH1y1IcUR8Apsg2xca8SotrWjqTPcYxAEGkU2n59SSWSLCRbc1jl
Tc1dpa7U+4o4qIuHYypu9HLz94Jv039JqHtK3p84s+UDiwMEjMyiUlqKNlxw6A2D
agusHH+kXxNP+dmDniohGiFaiiCtG719JKcJ09wqy/GWeKvAtTp+FMjCRCLMDz/K
2wsZOqFZRvPQeA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:47:33 2026 by rpki-client