Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
File: U170D69INDOz4zaY5NHulfPJS-w.mft (raw, json)
Hash identifier: b4rPHlIPcyMuOrv89/pC5MlYmiSHdv36i63cHmrxQCA=
Subject key identifier: E3:32:61:F4:42:E1:5C:EE:98:37:F7:EC:38:EA:45:A4:AE:81:53:D0
Authority key identifier: 53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
Certificate issuer: /CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Certificate serial: 019D37BFF2772589C57AC16B231B7D70C3AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 04:00:19 +0000
Manifest this update: Sun 29 Mar 2026 04:00:19 +0000
Manifest next update: Mon 30 Mar 2026 04:00:19 +0000
Files and hashes: 1: QKjP2N8r4nDoEM9cPJ71JOp2ddU.roa (hash: W/BKNtYHRWaJtO1Nu7XJOX8Q45kPzU4r+lT7o1huThQ=)
2: U170D69INDOz4zaY5NHulfPJS-w.crl (hash: GSNi3z4CZu4M5SF3itSsKZ0b48oQcThzRotlBnTXRkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:bf:f2:77:25:89:c5:7a:c1:6b:23:1b:7d:70:c3:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Validity
Not Before: Mar 29 04:00:19 2026 GMT
Not After : Mar 30 04:00:19 2026 GMT
Subject: CN=e33261f442e15cee9837f7ec38ea45a4ae8153d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5c:bf:a6:b8:24:de:73:54:d0:a5:61:dc:28:
3c:75:32:b4:ab:ad:3e:af:4c:71:8d:90:07:7d:e2:
79:b1:11:43:a5:78:e2:5f:a6:49:1c:cb:08:09:73:
c5:a8:25:e0:3e:a0:a0:83:f0:e6:55:51:00:52:3a:
2d:10:16:9a:4e:02:5c:61:c6:1d:8c:65:b9:63:14:
d8:5c:8c:05:8d:cd:f1:74:9d:aa:c6:fa:38:9d:c6:
21:0d:3c:71:cb:08:8e:98:eb:0b:6c:74:ca:c8:54:
c5:4d:3e:4d:f5:96:36:36:48:57:10:15:9e:36:bf:
f9:7f:22:76:fa:b2:1e:9e:19:1d:85:cf:3a:5c:36:
3d:b8:f8:7b:c9:92:0c:23:8f:98:b8:7a:17:d6:94:
63:60:14:82:ce:88:89:73:77:40:d0:cf:27:97:ba:
55:1d:04:af:87:29:ce:5f:b7:4d:82:88:27:48:ea:
1e:5e:37:29:ea:f9:cc:29:ec:1e:7e:d5:92:ba:82:
c8:3f:9f:35:c7:9a:df:93:3d:0f:db:b4:c1:72:9c:
c4:5e:92:ac:a4:9a:ff:ba:c8:84:84:7f:b2:6c:7f:
20:86:f4:71:42:ac:00:49:82:05:f7:33:93:17:ec:
65:4e:66:b9:3e:2b:32:c6:e6:3c:d8:7c:3b:f7:a8:
ce:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:32:61:F4:42:E1:5C:EE:98:37:F7:EC:38:EA:45:A4:AE:81:53:D0
X509v3 Authority Key Identifier:
keyid:53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:4a:e4:da:9b:0b:91:e3:09:0e:08:24:d2:01:6e:80:5b:22:
f8:1b:93:55:d5:fe:32:45:9b:ea:e3:6c:51:ce:6a:7d:c8:80:
2c:1b:15:1c:eb:5a:12:48:07:f5:0a:41:46:bb:d1:96:cd:bf:
17:e5:5e:fe:15:56:ea:ee:85:94:b0:8c:0b:9e:d5:63:6a:55:
43:cb:18:d9:98:1d:9a:85:aa:5a:2a:78:ca:92:15:98:95:e4:
02:ae:e0:47:47:3e:ee:78:71:4a:21:43:0d:cc:2e:58:3b:0c:
1e:88:5c:c8:f5:46:4d:b1:7d:b9:e9:4f:fc:6e:f1:12:96:aa:
2e:75:8d:88:cf:4d:b7:dc:e1:f5:6b:52:f5:a3:94:a8:f2:df:
5a:76:c5:e0:5a:eb:bf:25:bc:b3:eb:18:bb:7c:95:66:ba:76:
cc:b5:64:3d:0a:ff:2d:7c:3b:9d:f0:71:4f:b3:c2:8b:66:05:
d7:ac:4d:31:d1:8f:6e:3a:64:8f:be:ec:3c:a9:de:11:cd:4d:
86:ea:53:53:23:0f:f3:ad:c4:20:2e:44:7b:87:65:46:ed:5e:
3c:db:aa:df:36:67:d5:be:fc:f6:b5:7d:1f:ae:11:f6:80:0e:
da:d9:fc:f6:eb:e7:05:1d:26:c1:20:f5:d5:d7:d5:9b:37:1b:
b6:92:36:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03v/J3JYnFesFrIxt9cMOtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzNWVmNDBmYWY0ODM0MzNiM2UzMzY5OGU0ZDFlZTk1ZjNj
OTRiZWMwHhcNMjYwMzI5MDQwMDE5WhcNMjYwMzMwMDQwMDE5WjAzMTEwLwYDVQQD
EyhlMzMyNjFmNDQyZTE1Y2VlOTgzN2Y3ZWMzOGVhNDVhNGFlODE1M2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1y/prgk3nNU0KVh3Cg8dTK0q60+
r0xxjZAHfeJ5sRFDpXjiX6ZJHMsICXPFqCXgPqCgg/DmVVEAUjotEBaaTgJcYcYd
jGW5YxTYXIwFjc3xdJ2qxvo4ncYhDTxxywiOmOsLbHTKyFTFTT5N9ZY2NkhXEBWe
Nr/5fyJ2+rIenhkdhc86XDY9uPh7yZIMI4+YuHoX1pRjYBSCzoiJc3dA0M8nl7pV
HQSvhynOX7dNgognSOoeXjcp6vnMKeweftWSuoLIP581x5rfkz0P27TBcpzEXpKs
pJr/usiEhH+ybH8ghvRxQqwASYIF9zOTF+xlTma5PisyxuY82Hw796jOVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOMyYfRC4VzumDf37DjqRaSugVPQMB8GA1UdIwQY
MBaAFFNe9A+vSDQzs+M2mOTR7pXzyUvsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTE3MEQ2OUlORE96NHphWTVOSHVsZlBKUy13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy83N2E5ZjEtZjFmYi00ODVmLTkyM2Yt
N2MzNzg5NDA1YmQ2LzEvVTE3MEQ2OUlORE96NHphWTVOSHVsZlBKUy13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy83N2E5ZjEtZjFmYi00ODVmLTkyM2YtN2MzNzg5NDA1YmQ2
LzEvVTE3MEQ2OUlORE96NHphWTVOSHVsZlBKUy13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1Erk2psL
keMJDggk0gFugFsi+BuTVdX+MkWb6uNsUc5qfciALBsVHOtaEkgH9QpBRrvRls2/
F+Ve/hVW6u6FlLCMC57VY2pVQ8sY2ZgdmoWqWip4ypIVmJXkAq7gR0c+7nhxSiFD
DcwuWDsMHohcyPVGTbF9uelP/G7xEpaqLnWNiM9Nt9zh9WtS9aOUqPLfWnbF4Frr
vyW8s+sYu3yVZrp2zLVkPQr/LXw7nfBxT7PCi2YF16xNMdGPbjpkj77sPKneEc1N
hupTUyMP863EIC5Ee4dlRu1ePNuq3zZn1b789rV9H64R9oAO2tn89uvnBR0mwSD1
1dfVmzcbtpI2ug==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:40 2026 by rpki-client