Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
File: U3h815RuENiGRqx53lfMbsWeQTI.mft (raw, json)
Hash identifier: fQE9gd88TjVJKlckBKxTDQ6yz1v1X9t1HK/oAokCY6M=
Subject key identifier: C3:2F:D1:29:17:CB:54:63:BF:3D:8A:5F:45:1B:D6:EB:08:9E:BC:67
Authority key identifier: 53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
Certificate issuer: /CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Certificate serial: 019E4EEB292281288D17EBFB5DB5E3F31604
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
Manifest number: 15CE
Signing time: Fri 22 May 2026 09:01:34 +0000
Manifest this update: Fri 22 May 2026 09:01:34 +0000
Manifest next update: Sat 23 May 2026 09:01:34 +0000
Files and hashes: 1: BTQqaN3zxchRx-EpD2H2MNJ-ft4.roa (hash: XV4ayQSd0b2rkVnEHjcvBGIgn52FBAArQFJOmYQB3pA=)
2: QtW4Z9V0VWOm_3B5SrSvvQ3anTE.roa (hash: DHlUdVZGbEoHW4Ps1BkaOOFImnLamhxBGEFyeIi9s+Q=)
3: U3h815RuENiGRqx53lfMbsWeQTI.crl (hash: tR7r4T8BB0o10Cs62j6Ugf+PaJA9IqyqT/tHHeY1tus=)
4: xAgD6SynRwV_Yye8rFHO4JCRRio.roa (hash: l2HE8jagwao4Kb86kIkCwZOHjaiAFH+AljSJnuRLiF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4e:eb:29:22:81:28:8d:17:eb:fb:5d:b5:e3:f3:16:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Validity
Not Before: May 22 09:01:34 2026 GMT
Not After : May 23 09:01:34 2026 GMT
Subject: CN=c32fd12917cb5463bf3d8a5f451bd6eb089ebc67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d8:31:c9:c3:5f:b5:99:4f:8f:3f:6f:dd:13:
ac:66:e0:8a:ab:3a:1b:25:7a:0e:2e:23:dd:23:b8:
53:b3:8b:19:5d:a0:75:53:74:a2:c3:a2:29:2d:11:
88:39:20:60:c5:5a:13:8b:84:8d:d3:bc:56:dc:12:
97:d6:11:41:cb:30:d6:37:c8:00:75:1d:dd:9e:2d:
af:cf:45:04:8a:a0:d9:eb:ce:4e:6a:6c:cc:18:9c:
4f:8f:bd:07:64:40:89:64:c8:23:40:6b:32:47:c6:
86:fd:65:ef:e0:d9:d6:9c:af:52:50:23:cb:af:0b:
ca:84:fc:52:0c:54:5a:e1:be:16:52:bc:e4:ba:d5:
36:b3:56:47:fc:65:2c:87:2b:a9:c9:be:8a:2a:22:
0c:00:29:88:4d:94:7a:5d:c8:04:e9:4f:04:1c:20:
73:66:c5:ca:e8:79:ca:89:c7:69:fb:6e:c3:62:fd:
91:35:09:ca:6b:8e:cb:94:d6:b2:cc:17:3f:c7:2c:
73:dd:82:df:da:30:f0:5d:09:7a:14:eb:ca:f3:7b:
c5:98:13:78:9c:5e:25:d4:d8:84:7c:58:6c:a8:bb:
e1:9a:fa:33:4c:13:b8:f4:66:dd:21:ec:93:51:4f:
d1:a9:f9:c8:9d:ab:ab:63:e7:6f:49:8b:30:82:d7:
af:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:2F:D1:29:17:CB:54:63:BF:3D:8A:5F:45:1B:D6:EB:08:9E:BC:67
X509v3 Authority Key Identifier:
keyid:53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:b0:40:72:b7:0b:2c:f0:56:95:3d:50:e4:ce:8c:89:d3:39:
d6:5c:77:5e:f3:0c:76:a7:1c:4e:ba:7f:1e:f2:55:65:1f:f2:
67:89:96:9a:72:e0:b8:42:97:b7:f4:99:c1:9b:00:a0:14:51:
12:b8:61:00:41:dd:a6:9d:5c:db:77:ab:5a:b8:b0:a9:6b:4c:
f6:00:6c:45:33:93:0f:6e:d2:38:f6:a5:42:8b:d6:b6:09:b0:
6d:93:2c:e7:52:00:43:f5:98:9f:1d:cb:32:e8:0c:8b:2a:b6:
54:1d:2a:02:50:bb:b5:d6:23:54:3a:06:f0:c1:49:ba:b7:35:
57:13:91:10:63:8d:71:b0:2d:64:30:06:ea:66:c3:84:9c:4a:
f0:f1:85:5e:b9:58:ef:e4:66:ab:06:4b:6b:32:4f:76:05:b6:
a5:87:e5:97:ae:5a:13:7d:e5:5f:33:54:0b:a7:38:87:a5:cc:
ed:79:54:85:23:c8:80:7c:2b:26:e8:e7:69:51:76:6b:09:83:
f5:29:70:1b:6d:04:ff:b2:9f:8c:c7:40:78:04:58:a5:b4:9e:
8e:45:0b:8d:fa:8a:9a:21:f5:f9:7e:dd:09:1d:5e:50:b8:2e:
b7:57:65:27:09:69:55:5d:70:61:be:bd:30:4c:f4:00:fd:f9:
d9:54:37:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 22 15:08:13 2026 by rpki-client