Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
File: U7EFBlwNkTm1_-3DLJAM9ktDEus.mft (raw, json)
Hash identifier: pLYiyzcPp2UYy6O10smgZt+ftUP6VfMDSnjYN06CmiE=
Subject key identifier: 7E:7C:06:A3:00:F3:15:25:1A:1D:A2:BC:01:DE:7D:BF:69:3E:65:9F
Authority key identifier: 53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
Certificate issuer: /CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Certificate serial: 019D37893781EA54B4E1EDCAC84D5188A5EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 03:00:32 +0000
Manifest this update: Sun 29 Mar 2026 03:00:32 +0000
Manifest next update: Mon 30 Mar 2026 03:00:32 +0000
Files and hashes: 1: U7EFBlwNkTm1_-3DLJAM9ktDEus.crl (hash: qx+ZVKh8GQ8i+Qb7dJ3XQLxKjhsPlE5plfyePg7BcAA=)
2: aVXhAizmDepCVOoLPu585d5UOlQ.roa (hash: YB+GHVOhQos2qu1NUzfo9daXC5WuIe75DyabTVAx7KA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:37:81:ea:54:b4:e1:ed:ca:c8:4d:51:88:a5:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Validity
Not Before: Mar 29 03:00:32 2026 GMT
Not After : Mar 30 03:00:32 2026 GMT
Subject: CN=7e7c06a300f315251a1da2bc01de7dbf693e659f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cc:47:c2:32:9a:65:6c:e4:d0:e6:aa:21:2b:
d0:a7:05:0b:89:b5:e5:e1:72:21:2c:c8:8a:1f:73:
c2:b6:73:1c:80:ee:be:1c:05:b6:01:9e:10:89:40:
1f:fe:70:11:18:bc:80:15:9f:c2:0b:50:8c:51:5c:
ea:41:e4:6a:f5:25:3d:30:78:ba:eb:48:bc:38:71:
79:72:27:49:df:e2:25:89:89:dc:20:53:ab:ad:15:
b6:f0:7c:9a:a4:f0:4b:13:47:34:30:76:91:79:c8:
dc:49:15:9e:1f:72:24:da:15:23:51:9b:95:41:fe:
cf:9a:c5:1a:94:a1:15:13:1d:88:61:1a:bd:d4:04:
72:72:57:0c:f7:00:ec:1a:2d:87:53:77:d1:a2:d9:
14:58:b5:45:d3:cb:de:70:63:c6:87:6d:23:22:ed:
4a:10:1e:e7:e7:28:38:1c:9f:fe:c1:ee:7e:b0:8d:
3e:b5:6b:56:94:13:2b:08:b1:fe:03:7a:99:0b:e6:
f8:82:ab:6e:18:a0:cc:f8:44:20:7b:29:c5:aa:6e:
08:27:40:a9:1b:f1:bf:96:5e:14:9c:75:47:b0:8c:
99:a1:3e:11:cd:9e:a0:ec:52:82:0e:3a:bb:8f:78:
d4:47:a2:35:cb:8c:02:de:d8:3b:ba:8b:b2:18:be:
14:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:7C:06:A3:00:F3:15:25:1A:1D:A2:BC:01:DE:7D:BF:69:3E:65:9F
X509v3 Authority Key Identifier:
keyid:53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:f0:3f:63:96:12:b8:3f:b8:17:83:f8:f9:e6:c3:25:bf:03:
25:ec:07:c5:57:06:d2:09:60:9a:53:7e:c8:68:d6:66:b8:60:
40:8f:40:28:86:91:62:85:fa:5a:0c:95:f1:fb:83:51:8e:55:
e3:93:8f:7e:b8:dc:81:33:68:eb:47:26:cc:09:cc:8a:fe:6a:
f5:ae:a0:5f:77:d8:9f:83:15:da:d6:7b:74:e3:6d:28:02:39:
aa:0f:85:8a:84:e0:24:9b:9d:d8:52:e8:3d:c2:eb:5d:eb:25:
72:af:3c:95:8e:e4:a8:b9:40:da:04:4b:55:57:4d:84:ce:11:
cf:20:00:41:4d:5d:ce:e3:b0:b5:bd:4b:57:37:c4:b4:58:2d:
47:2b:f7:9f:46:9f:0b:46:fe:0d:ab:f2:c6:49:dc:50:dd:0d:
58:3e:ff:9e:61:28:5a:8d:da:7b:6c:c7:f0:d7:65:e9:1a:7e:
98:99:52:80:31:a1:95:60:b5:0b:bc:a3:86:81:8c:03:b6:5e:
5d:b7:6a:7d:7f:12:9d:74:dd:5b:75:bb:c5:37:40:44:bf:e9:
2e:79:97:7b:59:86:e4:65:4d:1d:3f:a0:e0:e1:28:8c:b8:6a:
94:bb:83:93:d3:36:27:98:bd:58:73:4d:54:d3:dc:23:7f:26:
54:76:e4:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:38 2026 by rpki-client