Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: hg6OREqw74HY23HEY4h6Wl8nl+mDtTVDq2HmpTb1fVE=
Subject key identifier: 58:40:E3:52:71:24:DB:36:E8:7E:46:D0:7E:10:87:7D:5B:4D:6B:58
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 019F1A1F4D56CE3C0C29DF471F1410D089A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0C14
Signing time: Tue 30 Jun 2026 20:01:26 +0000
Manifest this update: Tue 30 Jun 2026 20:01:26 +0000
Manifest next update: Wed 01 Jul 2026 20:01:26 +0000
Files and hashes: 1: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: +D28DGSD5LXbyK+WzEn2ttb4yMQy6fs0APrS/jGQNjI=)
2: d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa (hash: pNguw2qBCLAYUuPZ0wVkI6YbP099kM2Xh8UMvqT4t9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:1f:4d:56:ce:3c:0c:29:df:47:1f:14:10:d0:89:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Jun 30 20:01:26 2026 GMT
Not After : Jul 1 20:01:26 2026 GMT
Subject: CN=5840e3527124db36e87e46d07e10877d5b4d6b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e9:e3:05:3e:a4:e8:06:a8:e3:91:c6:22:46:
3b:0a:9f:4c:7d:d6:17:3c:03:01:82:62:79:fd:79:
e0:8b:98:a1:84:a1:69:4b:38:6c:63:9d:3e:8c:a2:
67:4a:b7:83:f3:c7:e1:6c:88:89:ea:ab:36:78:99:
c0:98:d8:be:d8:3f:b2:c4:83:13:45:70:f2:6d:25:
38:61:7f:eb:c7:ec:88:0c:47:6f:38:e9:3f:02:1d:
0d:17:c0:b7:e7:5f:8b:73:d6:e8:19:d6:8c:af:bb:
77:78:d9:5a:d1:ad:c7:2f:d7:c5:a3:f6:40:f5:e7:
5a:57:df:26:7a:20:24:7c:85:4d:de:53:9e:66:33:
b4:cd:40:ec:93:99:ad:80:a1:6c:bf:2b:f7:7c:83:
73:86:1b:3d:eb:86:7b:6b:8c:50:44:3c:f7:27:e9:
b1:80:de:dc:6f:4e:4b:13:9d:42:97:97:0e:80:45:
c9:2d:c6:58:e4:91:ee:55:c2:17:a1:3c:e5:6a:8b:
63:48:bd:ad:65:df:5c:09:59:88:02:83:e5:4f:dc:
52:26:ad:3a:a3:48:26:bd:59:34:52:21:28:0e:a3:
be:0d:24:47:b5:1c:eb:43:22:63:50:f8:10:8b:74:
76:ac:bb:e0:f2:5a:80:79:3f:30:a4:6b:8b:7d:67:
87:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:40:E3:52:71:24:DB:36:E8:7E:46:D0:7E:10:87:7D:5B:4D:6B:58
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:86:90:91:7d:61:29:ff:98:bc:d8:0a:0d:fa:b1:9c:d2:69:
af:30:de:20:d6:e9:84:13:56:3d:a6:9b:8b:49:8c:d3:48:89:
97:26:99:1f:36:62:81:72:39:85:2e:61:79:fd:45:f7:29:3c:
4c:fd:0c:70:4d:68:e9:c1:d0:63:97:53:84:86:10:59:5a:15:
30:a9:3a:0d:63:00:9b:f8:c5:98:4d:09:2d:35:1f:0d:1a:c5:
a3:6b:39:9a:cf:b3:34:e4:f5:a8:c4:27:53:b2:72:e3:dd:71:
df:d2:ff:47:84:eb:22:2b:bf:e5:7f:d3:9f:48:a9:37:17:2e:
5c:d1:bd:68:1b:f8:6c:2c:45:34:cd:61:1f:21:80:c9:38:3e:
ef:14:00:5b:2b:57:92:5f:99:67:bb:cd:38:01:7c:16:f9:58:
01:5f:99:40:ff:07:0d:21:bb:1d:88:74:91:bd:f2:5b:25:f7:
76:c2:05:7d:2c:37:51:0e:89:ec:c5:19:fa:f0:b2:2d:b2:84:
c5:16:0d:39:82:6c:35:f7:b1:d8:3a:71:76:66:33:7b:d0:cd:
28:b8:09:c6:31:81:d0:db:9d:4d:7c:8b:0d:2b:dd:90:bd:a4:
74:16:cc:8c:58:3b:b0:c8:3a:3f:2e:b2:aa:cb:b0:7e:16:ae:
c0:ba:6a:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:37:10 2026 by rpki-client