Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
File: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft (raw, json)
Hash identifier: Ik4TgPm++boJeTcV5fsJKGnIM5hkdt4SWxRTsCMJCtg=
Subject key identifier: 86:1F:BA:EC:D5:19:6B:DD:8B:32:65:74:D0:EB:8C:FA:F6:2A:62:CD
Authority key identifier: 53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12
Certificate issuer: /CN=53bf98d53522aa957081fdec28b172084394f112
Certificate serial: 019CF8AAC739BC283D767B680F2792576B5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
Manifest number: 1084
Signing time: Mon 16 Mar 2026 22:01:07 +0000
Manifest this update: Mon 16 Mar 2026 22:01:07 +0000
Manifest next update: Tue 17 Mar 2026 22:01:07 +0000
Files and hashes: 1: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl (hash: KxBAyFUZ3hi1EdZe+o3UKzwpAkF658uC/oJ2QUJsUGM=)
2: mK9jBg2iFuywF6JUAww3mxKLxCU.roa (hash: lk8hbAdLVuILHrw42c6HMnMUPa/ZOyLXrol4InQSdq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Mar 2026 22:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f8:aa:c7:39:bc:28:3d:76:7b:68:0f:27:92:57:6b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bf98d53522aa957081fdec28b172084394f112
Validity
Not Before: Mar 16 22:01:07 2026 GMT
Not After : Mar 17 22:01:07 2026 GMT
Subject: CN=861fbaecd5196bdd8b326574d0eb8cfaf62a62cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8f:d9:b7:75:e8:b7:f1:34:15:b1:77:49:fd:
bc:d4:19:d8:44:77:4f:09:fe:d8:0d:f5:e1:a2:97:
70:e2:55:e0:a9:77:ac:eb:ab:14:56:95:0c:4e:d2:
b0:a1:86:65:7e:54:04:22:72:15:1c:ae:6c:24:f1:
dd:43:1e:89:89:45:d5:01:d6:ba:b5:61:55:2a:18:
46:cc:fc:88:37:7a:c2:40:22:bb:fb:88:ec:59:16:
9b:a8:aa:20:ed:88:e6:dd:20:63:f7:45:b2:a1:02:
a8:c1:0b:2a:24:1f:77:99:62:77:2f:e2:18:bf:a1:
65:d2:50:d6:8e:d7:b4:ff:a8:2f:19:06:64:b7:fd:
86:18:11:79:be:8a:8c:b1:8d:2f:6c:3a:73:8b:cc:
7c:1b:60:4d:22:f7:f8:cb:a5:8f:9a:d1:f6:49:54:
6b:0a:26:c2:5e:b7:3e:6c:32:5f:d4:4c:c5:b6:d4:
72:cb:62:48:c4:ec:d0:db:28:4c:8d:b0:7e:79:8d:
02:7e:71:c8:f4:3e:f5:81:a9:a9:d9:86:8b:40:39:
c4:0c:7c:7d:c2:f0:12:6e:6e:7a:0f:49:4c:9c:14:
6c:06:45:d6:e2:73:51:ba:7e:4e:e0:ed:2f:c2:27:
78:6d:90:3b:36:d5:f9:b5:3f:9b:b7:cc:84:99:08:
0a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:1F:BA:EC:D5:19:6B:DD:8B:32:65:74:D0:EB:8C:FA:F6:2A:62:CD
X509v3 Authority Key Identifier:
keyid:53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:29:bc:7d:54:92:86:8c:b4:58:2e:d4:59:a1:da:7e:2a:40:
5f:29:15:8b:d2:31:60:10:ac:d8:6f:36:97:51:55:87:46:a2:
bf:55:4e:d7:f1:18:b1:63:14:b2:e7:e3:af:18:af:20:17:5a:
22:42:9c:a5:cf:6c:7c:e6:fc:0b:ff:73:1c:2e:88:c3:28:c2:
b2:bb:bc:2e:b1:76:ac:ab:f9:d8:78:7f:d0:5e:90:89:8e:69:
a1:18:fb:a1:20:86:cd:53:a3:ad:3b:f0:64:86:c5:60:63:ec:
c9:f1:2d:17:c3:5b:0f:19:7b:8d:21:ff:cc:28:4a:47:76:bb:
f5:92:7b:a6:ea:61:f6:9e:30:89:54:35:45:77:f6:f6:7b:fe:
ab:72:cf:72:84:78:74:da:b1:c1:3c:f7:99:4f:8f:2e:6b:a0:
5c:7f:f7:7d:b1:12:12:88:6e:1b:a9:cd:3c:24:71:06:a9:4c:
78:e7:34:f6:89:85:bd:6a:ee:23:25:b6:4a:dc:14:91:62:5a:
a1:14:02:8a:bf:3c:3a:e6:4a:f5:46:7f:69:17:94:f6:10:f1:
21:f6:37:6f:29:a8:08:8e:9a:90:5d:d3:0c:ff:43:6c:52:62:
86:b6:87:b2:5a:34:60:cf:4d:5c:b0:b4:61:e2:d4:50:43:a5:
5d:cd:ea:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZz4qsc5vCg9dntoDyeSV2tbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYmY5OGQ1MzUyMmFhOTU3MDgxZmRlYzI4YjE3MjA4NDM5
NGYxMTIwHhcNMjYwMzE2MjIwMTA3WhcNMjYwMzE3MjIwMTA3WjAzMTEwLwYDVQQD
Eyg4NjFmYmFlY2Q1MTk2YmRkOGIzMjY1NzRkMGViOGNmYWY2MmE2MmNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAko/Zt3Xot/E0FbF3Sf281BnYRHdP
Cf7YDfXhopdw4lXgqXes66sUVpUMTtKwoYZlflQEInIVHK5sJPHdQx6JiUXVAda6
tWFVKhhGzPyIN3rCQCK7+4jsWRabqKog7Yjm3SBj90WyoQKowQsqJB93mWJ3L+IY
v6Fl0lDWjte0/6gvGQZkt/2GGBF5voqMsY0vbDpzi8x8G2BNIvf4y6WPmtH2SVRr
CibCXrc+bDJf1EzFttRyy2JIxOzQ2yhMjbB+eY0CfnHI9D71gamp2YaLQDnEDHx9
wvASbm56D0lMnBRsBkXW4nNRun5O4O0vwid4bZA7NtX5tT+bt8yEmQgKWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIYfuuzVGWvdizJldNDrjPr2KmLNMB8GA1UdIwQY
MBaAFFO/mNU1IqqVcIH97CixcghDlPESMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8wNjNiMWItN2JkZS00OGNjLWIxYWMt
ZmFkNzA3ZDljNGY2LzEvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi8wNjNiMWItN2JkZS00OGNjLWIxYWMtZmFkNzA3ZDljNGY2
LzEvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkCm8fVSS
hoy0WC7UWaHafipAXykVi9IxYBCs2G82l1FVh0aiv1VO1/EYsWMUsufjrxivIBda
IkKcpc9sfOb8C/9zHC6IwyjCsru8LrF2rKv52Hh/0F6QiY5poRj7oSCGzVOjrTvw
ZIbFYGPsyfEtF8NbDxl7jSH/zChKR3a79ZJ7puph9p4wiVQ1RXf29nv+q3LPcoR4
dNqxwTz3mU+PLmugXH/3fbESEohuG6nNPCRxBqlMeOc09omFvWruIyW2StwUkWJa
oRQCir88OuZK9UZ/aReU9hDxIfY3bymoCI6akF3TDP9DbFJihraHslo0YM9NXLC0
YeLUUEOlXc3qnA==
-----END CERTIFICATE-----
Generated at Tue Mar 17 05:37:29 2026 by rpki-client