Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: 1JN7grNKSsimpEd+hffuoG1Ai46tBhXYsnuXiruK65w=
Subject key identifier: 6B:B3:1F:AA:C0:3B:CF:5C:BC:0A:08:FF:AE:62:A9:9E:BA:2F:61:E7
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 019E307262284A09FECB68A7C2759FC9034A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0B9B
Signing time: Sat 16 May 2026 11:01:03 +0000
Manifest this update: Sat 16 May 2026 11:01:03 +0000
Manifest next update: Sun 17 May 2026 11:01:03 +0000
Files and hashes: 1: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: sted5Vw04PWYGINeNFzHWSYkhjvbQiOHIc5eEzZbhh0=)
2: d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa (hash: pNguw2qBCLAYUuPZ0wVkI6YbP099kM2Xh8UMvqT4t9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:62:28:4a:09:fe:cb:68:a7:c2:75:9f:c9:03:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: May 16 11:01:03 2026 GMT
Not After : May 17 11:01:03 2026 GMT
Subject: CN=6bb31faac03bcf5cbc0a08ffae62a99eba2f61e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:40:53:d6:a7:86:b9:50:9b:8b:90:71:e0:fd:
fb:29:84:0f:9d:1c:94:54:86:91:16:ac:8b:69:ca:
19:37:dc:46:d9:27:8c:c2:25:01:a4:76:61:bd:38:
9d:82:12:f3:76:60:89:2b:28:26:9f:4a:9f:77:0a:
25:dc:18:64:98:40:23:c0:3a:be:17:78:e4:80:74:
56:5d:df:34:ed:0c:68:55:d0:91:cd:b0:a2:0b:ea:
8e:06:28:50:17:3c:1f:16:de:bf:fb:4d:ac:02:a7:
c6:6e:f2:39:54:f2:0c:f2:a9:e8:c5:0f:76:ec:5a:
53:20:3f:d3:0f:5c:bc:24:fd:39:6f:70:c8:7c:ed:
51:50:12:41:26:80:b4:3c:c6:a6:50:e6:b4:65:40:
08:77:95:ec:28:e1:0b:04:d7:37:37:b4:42:b2:fd:
27:96:a9:34:00:3d:66:ef:98:fb:ec:e7:4a:fb:3b:
33:f4:40:2a:4d:7e:f7:cd:77:0f:99:2f:2e:9f:ef:
60:e2:6b:ce:82:64:2e:d4:4d:72:df:af:b7:de:d1:
6f:30:47:6f:b1:b2:69:cd:d3:52:86:72:4b:05:fd:
e5:88:ea:6c:1d:b0:7a:cf:60:f5:c7:c9:e7:d5:a7:
b9:f2:1a:83:64:83:34:25:eb:be:7a:2b:a1:d4:98:
d7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B3:1F:AA:C0:3B:CF:5C:BC:0A:08:FF:AE:62:A9:9E:BA:2F:61:E7
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:7a:fc:fa:8f:70:07:b9:ff:f3:66:76:fc:c3:34:7c:ca:5b:
b4:fa:f2:b0:cb:f8:88:32:36:98:c2:a0:8c:cc:51:69:51:d4:
3c:ef:f6:eb:fd:58:4f:15:6d:11:d8:97:68:28:66:40:8d:af:
d1:78:39:e3:5e:a9:ee:ec:ac:7e:02:96:a9:66:fb:c5:0b:12:
f8:57:de:39:0f:ac:88:a3:ae:73:09:6d:3b:f2:0e:44:58:ec:
e2:fc:03:3c:97:2b:e8:67:e8:9a:f4:b4:26:eb:cb:73:89:1f:
1b:7e:33:b7:22:97:88:61:73:a2:3e:19:8a:02:f7:ec:1c:dc:
8a:50:25:a1:40:60:fb:8c:10:b2:50:c0:9c:c0:a6:1a:98:5d:
71:11:96:b6:f0:61:5e:f7:25:a1:f5:5b:b7:fc:d2:bd:e1:e2:
c0:98:3f:67:19:7c:56:2a:39:56:b6:14:51:56:e5:ef:73:17:
af:2e:79:03:7b:23:f5:3c:9f:fa:02:7c:75:47:73:1f:2e:9d:
d7:5f:14:66:39:52:37:17:fb:10:8e:95:48:30:6e:08:ad:85:
80:4f:0c:46:8d:4c:a3:b4:5a:ec:a3:9c:a1:2c:88:0d:3e:2d:
62:21:5d:1f:6c:82:58:25:4c:c7:69:12:34:d2:0e:93:64:52:
75:fd:a1:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:21:20 2026 by rpki-client