Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
File: U3h815RuENiGRqx53lfMbsWeQTI.mft (raw, json)
Hash identifier: DTm5XtN90Lv9GNqUIWhOrhcen42RBGBkFmEReUtT+Dk=
Subject key identifier: 49:09:F0:13:26:22:2A:69:80:4A:E1:9C:70:F2:5D:62:81:9B:E9:1A
Authority key identifier: 53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
Certificate issuer: /CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Certificate serial: 019D38D32327856A2A9AEB469472ACCCDBEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
Manifest number: 153E
Signing time: Sun 29 Mar 2026 09:00:54 +0000
Manifest this update: Sun 29 Mar 2026 09:00:54 +0000
Manifest next update: Mon 30 Mar 2026 09:00:54 +0000
Files and hashes: 1: BTQqaN3zxchRx-EpD2H2MNJ-ft4.roa (hash: XV4ayQSd0b2rkVnEHjcvBGIgn52FBAArQFJOmYQB3pA=)
2: QtW4Z9V0VWOm_3B5SrSvvQ3anTE.roa (hash: DHlUdVZGbEoHW4Ps1BkaOOFImnLamhxBGEFyeIi9s+Q=)
3: U3h815RuENiGRqx53lfMbsWeQTI.crl (hash: XFcsGKda0oOExLO3uLiqU5dlZazxvzyiZyD48iEsxXQ=)
4: xAgD6SynRwV_Yye8rFHO4JCRRio.roa (hash: l2HE8jagwao4Kb86kIkCwZOHjaiAFH+AljSJnuRLiF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:23:27:85:6a:2a:9a:eb:46:94:72:ac:cc:db:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Validity
Not Before: Mar 29 09:00:54 2026 GMT
Not After : Mar 30 09:00:54 2026 GMT
Subject: CN=4909f01326222a69804ae19c70f25d62819be91a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0d:67:9e:d5:57:af:82:fd:30:27:21:9f:03:
9d:15:b1:ae:df:04:2d:a1:76:52:25:24:76:c5:e0:
fb:e8:5b:82:a9:01:b1:3f:55:f0:21:db:b6:22:dc:
bd:ad:57:dc:24:35:ff:0a:79:bc:55:ee:40:77:59:
0d:c7:01:f5:3c:b8:5e:14:d0:d5:a3:2c:db:3e:7e:
38:ba:d3:89:b6:10:ea:8b:56:76:16:d8:05:46:af:
82:c2:65:4c:4e:3d:71:f3:c1:f3:73:a8:51:4d:f9:
e5:9d:e8:70:f8:e9:be:6f:fa:5c:c8:2b:f9:08:4a:
22:c5:b0:46:ef:73:cd:46:5b:d1:1b:04:69:43:c3:
a0:c8:97:1a:63:a1:c4:05:90:1e:65:32:2d:43:56:
71:77:3d:95:5e:22:3e:02:ff:56:af:9d:5e:65:6d:
05:54:8e:05:88:1f:9b:29:6f:87:a3:34:42:e1:ee:
aa:ec:0b:01:fa:0f:75:75:2e:f4:b6:94:ed:23:bd:
33:3f:72:88:92:20:62:a8:f8:28:cc:b6:9f:ad:ad:
1b:ce:4c:f3:ed:ed:32:54:3a:13:87:c5:31:42:4a:
c7:5e:45:fe:a4:c3:0f:23:49:a6:57:43:f5:a8:83:
b3:1f:ca:60:1f:11:54:c9:b7:b1:e7:1b:13:41:62:
11:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:09:F0:13:26:22:2A:69:80:4A:E1:9C:70:F2:5D:62:81:9B:E9:1A
X509v3 Authority Key Identifier:
keyid:53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:64:09:da:ef:c1:5b:e7:6a:4d:b2:fc:6e:d0:a6:a7:68:86:
ba:86:49:55:87:8e:09:59:c3:3f:c4:e2:ab:7e:c4:1b:87:fd:
dc:ba:96:d7:1a:6b:4a:5a:9a:22:63:05:05:48:6b:8a:ab:a0:
57:57:ab:33:45:b6:6b:e4:7d:c4:1d:c4:39:08:4a:51:78:34:
f3:87:92:db:03:1f:97:3d:76:85:e2:ec:ba:29:bb:25:e9:73:
a4:5d:3e:8a:2a:57:5b:9d:83:c4:f5:57:b0:11:94:98:49:98:
d3:52:d1:2b:6c:77:1e:32:57:2a:2b:56:1f:1a:c2:3a:f5:d4:
f9:f0:58:61:4d:23:e1:5b:a3:8f:55:e6:88:51:63:36:2e:c5:
13:83:b9:8a:2e:1e:5f:99:51:10:41:46:16:24:62:bd:3c:ef:
f1:16:b3:34:f5:ff:67:86:60:8e:76:21:09:c6:31:a0:4a:fb:
32:d0:a3:ce:83:7b:a4:5d:de:d9:70:a0:24:7f:00:66:31:78:
6e:ea:65:b9:3d:9a:13:42:20:24:f7:c0:8a:83:c3:be:47:c5:
e6:95:aa:23:cd:d4:97:0b:76:d8:c7:97:1e:d9:0b:3f:56:a3:
2f:c9:62:b7:04:f3:62:74:39:db:64:7e:0f:9c:71:3d:68:c9:
60:6c:c6:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:44:48 2026 by rpki-client