Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
File: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json)
Hash identifier: fdBw5J9cJBR+OnKVbRtVrqBl43kl4oVj+mWxTAaHKxU=
Subject key identifier: 7F:93:05:E9:A9:15:59:85:1D:1A:2B:82:B9:6C:16:08:90:6A:E9:5C
Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
Certificate issuer: /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Certificate serial: 019D390A0A1BE381F5561A8C10577B10E07C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
Manifest number: 15B2
Signing time: Sun 29 Mar 2026 10:00:52 +0000
Manifest this update: Sun 29 Mar 2026 10:00:52 +0000
Manifest next update: Mon 30 Mar 2026 10:00:52 +0000
Files and hashes: 1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: redN1qslfIZDSwi0IfCHz3yvyXLp8WEpsIumri3TaIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:0a:1b:e3:81:f5:56:1a:8c:10:57:7b:10:e0:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Validity
Not Before: Mar 29 10:00:52 2026 GMT
Not After : Mar 30 10:00:52 2026 GMT
Subject: CN=7f9305e9a91559851d1a2b82b96c1608906ae95c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b4:28:1c:c7:95:66:4c:c2:62:75:3b:c0:2d:
af:8e:bb:66:6a:c7:34:6d:aa:bd:50:03:d5:08:23:
16:96:7e:03:5a:00:96:82:15:2d:c8:f3:38:3a:21:
41:8e:db:69:da:32:08:9e:29:ea:c7:1c:8c:ec:ec:
53:6c:74:1e:81:b4:71:ca:95:cc:56:50:c3:fa:d8:
c7:4c:8a:a7:6f:62:1a:8a:6f:94:4d:c2:93:b9:4e:
75:fa:ef:e8:ea:c7:22:cd:8e:5c:04:ce:39:c4:7f:
f4:c7:54:24:5b:c6:4f:dc:e9:e8:e5:1c:ce:40:77:
43:c3:8c:29:45:84:0d:4c:52:53:8f:b9:65:49:dd:
fb:80:5e:15:cf:a4:25:35:37:a0:64:51:07:1d:22:
d2:e9:26:8f:e4:48:7d:03:34:4e:7a:f5:9a:44:c3:
af:14:7d:ca:fc:47:49:e9:03:a3:0d:fd:2c:fc:d5:
4f:68:e4:09:2f:af:87:8f:8e:0d:38:34:89:4e:63:
d0:fb:c8:3e:23:e5:48:52:9f:04:2c:da:d3:2f:98:
f8:98:6d:6a:b5:d6:ee:54:64:37:63:12:45:63:70:
26:01:f3:77:a0:32:6a:e8:a1:db:10:28:c9:76:3c:
d2:12:7a:0b:84:6a:13:f2:cf:72:ee:43:cd:7e:35:
67:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:93:05:E9:A9:15:59:85:1D:1A:2B:82:B9:6C:16:08:90:6A:E9:5C
X509v3 Authority Key Identifier:
keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:19:75:0a:7c:46:1d:3c:82:ba:f4:3f:5c:68:34:43:71:2d:
8f:0a:53:4f:0f:68:ed:5e:d0:d3:50:3e:31:ef:69:44:04:35:
fb:9d:f0:1b:82:a6:4d:79:7e:0a:6c:37:e1:b7:8f:fa:62:3c:
59:ff:43:e5:15:b7:db:0b:4a:05:07:65:8a:a5:66:4a:19:5f:
dd:c2:2f:8a:0f:b1:f3:f3:5f:b6:f7:cb:36:e7:6d:5e:8a:f3:
4f:35:7b:8f:01:ce:bb:c8:36:f0:44:dd:fc:3f:e4:d1:f4:c0:
7a:94:6d:0c:e7:95:03:28:c9:23:3e:16:a5:9e:83:25:23:c3:
55:5d:ef:2e:dc:eb:74:bf:6a:74:d9:f8:d9:27:3f:c4:0d:5e:
21:55:2c:04:1c:4f:ff:cf:ba:a0:8d:d0:45:9b:46:02:cf:b2:
c9:60:d5:23:3f:a5:56:d0:56:b4:35:c0:5a:56:4c:19:92:0d:
48:2d:5b:c0:df:02:7c:eb:20:cc:0a:d5:1e:02:2e:a1:c6:44:
12:d1:70:03:e5:c8:e3:ed:ca:48:85:57:88:9e:2e:17:a1:e6:
3f:e7:eb:f4:be:70:ba:9b:45:45:42:f2:b8:43:f2:a3:f0:68:
6f:94:21:71:16:e7:97:40:70:a2:89:ef:c5:0f:da:3e:d8:8c:
01:ef:a6:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:44 2026 by rpki-client