Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
File: U8DiB45PPrpfh5UD_dgJw4O7dig.mft (raw, json)
Hash identifier: XlM94UEkMMd7L9/qxgQao/NJY6RLHekUZyk5Pyb1ew8=
Subject key identifier: 5A:96:1B:37:8F:52:E8:3E:D4:BC:40:C9:C1:E7:A2:18:BF:FC:68:E8
Authority key identifier: 53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
Certificate issuer: /CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Certificate serial: 019E57B6F782A865D1A07767BE2F01589899
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
Manifest number: 1321
Signing time: Sun 24 May 2026 02:01:09 +0000
Manifest this update: Sun 24 May 2026 02:01:09 +0000
Manifest next update: Mon 25 May 2026 02:01:09 +0000
Files and hashes: 1: 1-GMVzwMDxSiYZaD7figfVQ0BMo8.roa (hash: 6cucZyQkv8Clqp8Dmj2mB2zHAVxhCmtUwPlqKFCqEpw=)
2: U8DiB45PPrpfh5UD_dgJw4O7dig.crl (hash: dMvGiWs3k9sZnAE0ywBv4s+usYdNYx02iAqXnfWiNUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 May 2026 20:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:57:b6:f7:82:a8:65:d1:a0:77:67:be:2f:01:58:98:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Validity
Not Before: May 24 02:01:09 2026 GMT
Not After : May 25 02:01:09 2026 GMT
Subject: CN=5a961b378f52e83ed4bc40c9c1e7a218bffc68e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c8:3d:2a:3f:58:88:14:b7:a6:31:3f:b1:c1:
a8:e2:27:f4:96:58:fa:ef:be:0e:a5:1f:31:44:75:
b3:a4:b9:5e:65:03:45:1e:6d:fe:ec:89:7c:d8:d3:
3f:dc:6f:7b:5e:07:39:48:44:62:5b:a6:8c:34:42:
99:55:04:d4:c2:8d:3e:22:dd:25:fc:38:0c:6d:8d:
48:2d:72:58:94:16:e6:c8:02:36:45:7a:6e:97:40:
11:d9:69:98:1e:3a:2d:f4:7b:d7:b6:ad:b4:4f:9a:
36:26:d9:e0:1b:b1:1f:b5:07:ae:2a:54:a0:94:c6:
c1:02:ee:4c:92:8e:6c:11:3e:a2:82:b5:4f:26:1b:
7b:84:d1:cc:37:1a:b6:fe:60:3b:d1:d9:5c:85:5b:
ff:df:96:03:db:aa:87:13:9d:4d:bd:ac:46:e7:85:
0c:28:66:e9:f2:13:7e:1a:11:d7:ab:d5:a0:27:12:
b0:90:61:33:0b:09:2c:5a:35:c2:23:87:98:3a:fe:
57:57:86:4b:c2:15:8e:7d:17:74:7c:96:69:6b:ca:
eb:d9:b8:d7:b9:ff:55:d6:a1:87:d6:ca:cd:4e:21:
eb:8e:3a:87:bc:0a:0f:08:3d:70:29:d0:13:8d:90:
e2:52:30:ea:78:ff:b0:f6:fb:ac:e6:1c:46:79:da:
59:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:96:1B:37:8F:52:E8:3E:D4:BC:40:C9:C1:E7:A2:18:BF:FC:68:E8
X509v3 Authority Key Identifier:
keyid:53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:cd:15:e6:2b:80:f0:a5:03:46:a1:7a:23:01:94:96:31:48:
68:93:90:43:41:92:3c:98:d3:5b:27:ad:22:e1:61:93:6a:ea:
06:da:cc:aa:64:25:4f:54:70:bf:29:9f:d5:58:5b:6d:97:9c:
21:d3:a2:60:9f:e9:38:ca:fe:56:7c:ee:e5:69:05:90:c7:17:
f6:84:c0:71:a7:9f:0a:4c:e2:8e:c4:54:c9:6d:cd:3a:a5:78:
dd:3a:ac:ba:09:2f:57:87:fd:bb:d2:00:4d:d6:3b:ec:f4:a2:
ca:e6:6a:9b:53:1c:94:81:a2:62:b8:44:80:7a:49:e4:82:3f:
11:8b:f3:25:cb:a6:ba:a5:e2:5c:52:6e:e6:cc:62:e7:03:21:
e7:11:77:f7:5b:40:84:12:4f:45:62:ab:7d:0a:d6:01:4f:6f:
ed:d2:86:b3:e1:ff:ae:0a:34:b8:20:b5:71:66:3e:d2:19:0f:
ac:9d:60:c7:4f:41:19:6b:bd:0d:41:fd:90:34:a5:a0:32:75:
83:d3:91:97:ed:55:6e:b3:d1:98:1d:e4:ce:41:da:2a:0a:b0:
ad:35:6a:1d:03:04:56:5e:b4:12:d5:55:d5:33:d2:ad:99:f4:
c8:ea:76:78:81:67:7a:20:ce:2b:4d:34:b2:59:a5:84:49:24:
5f:3c:e4:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 24 04:37:21 2026 by rpki-client