Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
File: U6hLUj3-Mriom5zdMKn4cRAH_bk.mft (raw, json)
Hash identifier: ibyCV4pcIBCimC8T/ptwqXXUmnHZ2wIUc5LUESXHgzo=
Subject key identifier: FD:8C:68:9A:CD:09:A5:12:5F:05:B7:AE:1A:F7:EC:6F:FC:5E:49:E0
Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Certificate serial: 019D38D2A370457484D77D524137FE704E65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
Manifest number: 0F66
Signing time: Sun 29 Mar 2026 09:00:21 +0000
Manifest this update: Sun 29 Mar 2026 09:00:21 +0000
Manifest next update: Mon 30 Mar 2026 09:00:21 +0000
Files and hashes: 1: U6hLUj3-Mriom5zdMKn4cRAH_bk.crl (hash: vDTi+VBY7W9+7dCKyg2WnLESizZSadiNMl2wr4qjbV4=)
2: e7AHTN6GMHGk_8dAcf_gVZnvxVI.roa (hash: IevTKfUQJkqwDYYU6PQJwFiwDh/wjsGFxyO8+JdLEM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:a3:70:45:74:84:d7:7d:52:41:37:fe:70:4e:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Validity
Not Before: Mar 29 09:00:21 2026 GMT
Not After : Mar 30 09:00:21 2026 GMT
Subject: CN=fd8c689acd09a5125f05b7ae1af7ec6ffc5e49e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:54:fd:c5:e3:c2:30:4e:9d:f8:c9:fc:94:62:
5e:1e:ed:66:20:21:b6:a2:f9:35:ed:da:59:95:d6:
6e:a3:05:c6:63:06:a3:b7:2b:bd:a0:69:4f:96:e3:
a5:70:f0:ee:f3:20:43:03:30:3d:ab:7e:4e:b8:bb:
4d:1e:d0:62:99:5e:6c:76:80:28:32:56:af:11:b2:
7a:02:10:83:27:48:3f:9d:34:c5:15:2b:4f:4a:f3:
47:c0:78:ee:38:d5:c1:23:1b:e3:0e:a8:cd:cd:8c:
06:e0:32:84:26:fa:29:47:f4:62:8e:bb:22:37:d4:
0c:f5:4e:ee:bc:01:bd:fe:57:af:8d:9f:54:ea:ae:
fa:89:27:92:56:00:3f:b2:52:77:c7:e1:71:a3:dc:
64:9e:a0:df:4f:60:dd:13:e9:a5:1c:ee:26:8e:ce:
7b:84:81:b4:ce:64:85:c4:83:dc:a1:6a:c2:0e:54:
0c:60:8f:a0:01:72:19:77:28:97:f3:a8:89:37:b7:
77:48:07:9c:44:ec:27:6c:ac:29:64:76:04:48:34:
a3:0b:e4:72:2d:5a:da:36:fd:df:58:4f:58:d8:a1:
4b:41:c4:d0:c3:d1:36:06:df:e1:47:c7:75:7c:db:
38:23:8b:d8:b7:3d:ae:c5:8f:91:9c:33:f4:61:9d:
68:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8C:68:9A:CD:09:A5:12:5F:05:B7:AE:1A:F7:EC:6F:FC:5E:49:E0
X509v3 Authority Key Identifier:
keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:df:53:aa:fa:c7:f2:6b:a1:5a:2a:a7:52:3f:7e:e6:15:93:
3a:a3:4e:e6:ee:7e:10:07:a6:25:93:ac:a0:90:9a:56:bf:ed:
37:79:81:4c:fb:8c:d9:cd:3b:3d:1a:2e:f2:6c:16:91:4a:66:
71:58:4c:23:96:06:f5:d7:ca:0b:7c:f9:fd:36:c0:ff:4e:86:
74:b8:98:34:e7:06:78:99:92:98:4d:09:45:ca:ef:31:87:23:
f2:17:70:29:a9:ce:47:c7:c3:80:3e:cd:d2:5c:94:d4:be:1c:
37:5d:88:77:33:e2:ad:d2:19:12:e1:54:21:8f:52:e3:0d:a9:
c3:46:d6:f8:36:12:b4:06:41:af:7e:7f:74:28:f5:22:e1:fa:
30:ee:0e:78:57:63:b6:11:e4:e0:93:5e:ac:4d:a9:e2:95:a1:
88:2b:86:11:e1:cd:98:ea:e1:8a:ab:08:13:cd:7a:14:67:fc:
53:1d:e8:aa:a9:4c:22:ec:aa:d0:50:e4:54:08:60:d0:be:62:
b8:8e:e5:2a:d8:3c:54:69:38:47:cd:76:e9:4a:94:0e:02:aa:
3d:53:42:05:20:1b:4e:56:e2:1c:72:0a:8c:9a:e7:24:87:00:
4c:8b:07:41:fd:e7:a2:de:10:1d:4a:73:f0:b9:e2:8c:99:19:
3f:bd:7d:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:09 2026 by rpki-client