Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
File: U4Vcjs6b1vjjlAICISzgmwX1-KA.mft (raw, json)
Hash identifier: bNqumCEqtWmSHn6W154vBax/zZll3C128HUzSaLXlUI=
Subject key identifier: 0E:1D:5E:1E:E0:0F:FC:A8:7F:30:E9:6D:A5:C2:61:8F:43:00:81:51
Authority key identifier: 53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
Certificate issuer: /CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Certificate serial: 019DB20FFB54B2AFF67E19E1514A66C449FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
Manifest number: 1561
Signing time: Tue 21 Apr 2026 22:01:24 +0000
Manifest this update: Tue 21 Apr 2026 22:01:24 +0000
Manifest next update: Wed 22 Apr 2026 22:01:24 +0000
Files and hashes: 1: U4Vcjs6b1vjjlAICISzgmwX1-KA.crl (hash: zfUM6I5ANFdp+5vLNAEN7vjmWcaAoxaNbVd+gAXcrkw=)
2: wOCmhg5ukUDjqYrrNe8HL0c6WHY.roa (hash: py0DTzjoQh1bUaOEwoDGjjlil3qVagDVLMDa9WBCMVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 21:56:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b2:0f:fb:54:b2:af:f6:7e:19:e1:51:4a:66:c4:49:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Validity
Not Before: Apr 21 22:01:24 2026 GMT
Not After : Apr 22 22:01:24 2026 GMT
Subject: CN=0e1d5e1ee00ffca87f30e96da5c2618f43008151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e6:0d:e6:8f:f3:e3:f0:7d:31:4d:c8:c3:46:
f1:ac:91:6c:af:c9:da:57:7d:11:e2:89:0b:db:4f:
9e:6a:67:8d:53:49:69:57:bb:b2:d3:8d:a3:0c:af:
3f:6c:f7:1c:79:8a:8a:c0:a5:17:a8:9d:8b:63:b0:
77:e3:6c:9b:96:8d:b7:3c:62:77:82:ab:12:71:cb:
f9:e6:32:2e:c1:c2:5e:f6:2d:91:3b:48:b3:92:33:
1d:37:f6:b4:01:f4:b2:d8:de:1d:6b:ba:cf:2c:5f:
6b:c9:d3:3b:d7:08:c4:6f:89:43:cb:3e:6d:01:1f:
ff:59:78:bc:ce:23:9e:03:63:0e:5d:ae:4d:5d:9f:
0e:90:76:41:7f:99:bf:17:60:50:72:95:02:76:6f:
42:f4:f4:40:84:ee:e6:77:91:8e:06:6b:03:26:a7:
0f:df:27:cf:87:53:90:3b:c0:a6:05:48:3a:13:05:
bb:dd:21:b3:6d:20:f5:0f:6e:af:3d:36:45:b4:98:
ae:6b:9b:ec:ea:8a:8f:28:d0:61:66:7a:f3:e0:b4:
2c:78:51:a7:9e:e1:68:ca:c8:9c:eb:dd:e8:77:ec:
94:cb:5f:b9:61:51:7a:78:2c:13:64:79:83:19:24:
f6:c7:e3:18:5f:2c:d9:18:d4:97:a6:2a:ea:76:e3:
2f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:1D:5E:1E:E0:0F:FC:A8:7F:30:E9:6D:A5:C2:61:8F:43:00:81:51
X509v3 Authority Key Identifier:
keyid:53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:f2:47:a3:77:04:f4:d5:bc:7f:b5:39:16:61:34:bb:6d:40:
3d:2e:3e:4a:0a:22:e2:7a:9d:66:89:d3:20:f1:9b:59:6e:f7:
18:34:bf:82:15:72:af:9d:1a:f6:57:88:bf:62:df:22:55:4b:
40:92:3b:91:ea:ef:2c:7e:d2:30:be:85:ea:07:71:b6:8d:73:
06:23:8c:d4:f4:e3:55:8b:52:66:e2:21:d6:c4:b5:d0:51:6b:
6e:0c:76:36:3b:42:aa:1f:ec:37:48:c8:0e:7f:a1:4e:23:7e:
10:8d:07:8e:3a:8a:0b:4c:96:e8:e2:15:26:88:e7:2f:97:da:
31:d0:40:1b:c9:00:a0:8e:7c:4e:fb:68:fc:cb:3b:67:0e:2e:
dc:c4:54:dd:1b:66:5e:e2:48:ea:e6:f4:7b:f3:37:e0:b8:88:
40:b3:35:d6:87:ea:af:d0:d6:2b:6b:96:4a:5d:9c:e5:a7:38:
58:9f:f1:84:a3:cb:af:f1:46:7b:7d:18:53:40:a2:e9:d0:f7:
9e:20:13:ba:4e:fc:d8:0d:ac:7c:2c:69:51:17:9b:29:75:0e:
c5:43:b4:d7:09:ec:f1:eb:e5:0b:e5:9f:95:50:2b:29:1b:61:
20:60:85:06:51:a1:5a:1d:68:5b:a7:3b:bd:02:1c:24:fb:1f:
f0:75:e4:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2yD/tUsq/2fhnhUUpmxEn6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzODU1YzhlY2U5YmQ2ZjhlMzk0MDIwMjIxMmNlMDliMDVm
NWY4YTAwHhcNMjYwNDIxMjIwMTI0WhcNMjYwNDIyMjIwMTI0WjAzMTEwLwYDVQQD
EygwZTFkNWUxZWUwMGZmY2E4N2YzMGU5NmRhNWMyNjE4ZjQzMDA4MTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOYN5o/z4/B9MU3Iw0bxrJFsr8na
V30R4okL20+eameNU0lpV7uy042jDK8/bPcceYqKwKUXqJ2LY7B342yblo23PGJ3
gqsSccv55jIuwcJe9i2RO0izkjMdN/a0AfSy2N4da7rPLF9rydM71wjEb4lDyz5t
AR//WXi8ziOeA2MOXa5NXZ8OkHZBf5m/F2BQcpUCdm9C9PRAhO7md5GOBmsDJqcP
3yfPh1OQO8CmBUg6EwW73SGzbSD1D26vPTZFtJiua5vs6oqPKNBhZnrz4LQseFGn
nuFoysic693od+yUy1+5YVF6eCwTZHmDGST2x+MYXyzZGNSXpirqduMv8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA4dXh7gD/yofzDpbaXCYY9DAIFRMB8GA1UdIwQY
MBaAFFOFXI7Om9b445QCAiEs4JsF9figMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTRWY2pzNmIxdmpqbEFJQ0lTemdtd1gxLUtBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi84MzM2YjAtY2JlNC00ZGEyLTg0MWIt
MWNlZmQxZmExMGE2LzEvVTRWY2pzNmIxdmpqbEFJQ0lTemdtd1gxLUtBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi84MzM2YjAtY2JlNC00ZGEyLTg0MWItMWNlZmQxZmExMGE2
LzEvVTRWY2pzNmIxdmpqbEFJQ0lTemdtd1gxLUtBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVvJHo3cE
9NW8f7U5FmE0u21APS4+Sgoi4nqdZonTIPGbWW73GDS/ghVyr50a9leIv2LfIlVL
QJI7kervLH7SML6F6gdxto1zBiOM1PTjVYtSZuIh1sS10FFrbgx2NjtCqh/sN0jI
Dn+hTiN+EI0HjjqKC0yW6OIVJojnL5faMdBAG8kAoI58Tvto/Ms7Zw4u3MRU3Rtm
XuJI6ub0e/M34LiIQLM11ofqr9DWK2uWSl2c5ac4WJ/xhKPLr/FGe30YU0Ci6dD3
niATuk782A2sfCxpURebKXUOxUO01wns8evlC+WflVArKRthIGCFBlGhWh1oW6c7
vQIcJPsf8HXkhg==
-----END CERTIFICATE-----
Generated at Wed Apr 22 05:20:45 2026 by rpki-client