Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
File: U4Vcjs6b1vjjlAICISzgmwX1-KA.mft (raw, json)
Hash identifier: 1SOzIjSKht33bK9wJy0siUxJdq8WYIr7Sw/sYAYXDHM=
Subject key identifier: CA:DC:F7:79:BB:3C:6F:13:16:7E:49:6B:EF:A1:7A:12:14:FC:02:66
Authority key identifier: 53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
Certificate issuer: /CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Certificate serial: 019E9BBB952A24867D4AF4343FD63B1EE21F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
Manifest number: 15DA
Signing time: Sat 06 Jun 2026 07:00:22 +0000
Manifest this update: Sat 06 Jun 2026 07:00:22 +0000
Manifest next update: Sun 07 Jun 2026 07:00:22 +0000
Files and hashes: 1: U4Vcjs6b1vjjlAICISzgmwX1-KA.crl (hash: RhA7Czg5eWo2UzQuzuWumieCy1k6iiLRz56FEa6TRg4=)
2: wOCmhg5ukUDjqYrrNe8HL0c6WHY.roa (hash: py0DTzjoQh1bUaOEwoDGjjlil3qVagDVLMDa9WBCMVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:bb:95:2a:24:86:7d:4a:f4:34:3f:d6:3b:1e:e2:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Validity
Not Before: Jun 6 07:00:22 2026 GMT
Not After : Jun 7 07:00:22 2026 GMT
Subject: CN=cadcf779bb3c6f13167e496befa17a1214fc0266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:85:32:24:6b:94:ff:b4:96:b0:2c:c2:b2:6a:
c0:e7:fc:6a:f7:e0:e3:41:ce:56:dd:a0:3c:c1:81:
99:ab:2b:77:99:7c:9c:29:df:35:09:6c:78:e9:59:
f4:44:d2:f9:56:d6:28:76:90:80:6a:b4:dd:49:b2:
c6:9f:d2:cc:ff:d2:06:c5:fd:ad:d1:4f:c3:c3:4b:
ba:b8:0e:e6:b7:4c:68:b4:2b:b9:ee:2d:c0:b1:1c:
15:f5:cf:76:8d:8d:2d:d5:e9:94:82:62:60:00:9a:
40:3b:c4:ce:19:76:2a:f3:70:89:f5:66:9c:21:46:
de:2b:c8:56:54:9a:2e:16:a4:93:93:a1:fc:bb:23:
26:dd:c3:70:74:47:08:59:63:3f:2c:0f:22:85:38:
8f:da:93:8a:f1:a0:f9:c0:38:da:c9:ab:ad:ea:09:
63:93:a8:b2:b1:ba:88:c0:8c:97:85:7c:b7:c0:be:
cb:6c:db:c6:44:b9:42:94:cf:21:2c:80:f8:c8:64:
4b:ee:d0:fc:24:3f:85:62:2f:d1:0b:5f:dc:97:b5:
bc:b3:23:d2:a0:53:16:c0:70:b1:4e:b9:be:0e:5d:
c9:02:8f:21:1b:0c:40:92:4b:4b:40:1f:d0:0d:e7:
a3:da:28:44:33:9f:cd:97:cc:86:40:08:3a:35:77:
cd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:DC:F7:79:BB:3C:6F:13:16:7E:49:6B:EF:A1:7A:12:14:FC:02:66
X509v3 Authority Key Identifier:
keyid:53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:f0:0f:f0:2d:ee:2e:f3:01:b4:6c:66:c3:43:04:23:3e:25:
37:8f:a8:76:e8:44:5a:70:fa:e3:db:56:9d:aa:26:cc:22:b2:
02:e4:44:50:14:44:40:6e:28:f9:aa:9c:8e:1e:81:ae:f7:37:
7d:3e:2a:21:18:01:d4:76:89:46:57:79:ff:aa:19:03:24:e8:
34:a0:2b:52:7d:c8:ee:e7:22:f3:82:18:10:08:41:27:09:29:
19:cd:ab:c4:f4:33:52:8f:d3:58:28:a0:4a:21:7d:e0:c8:8f:
7a:d6:b1:59:93:39:9d:ae:75:cf:0f:55:1c:39:ce:45:ef:d9:
39:d8:b7:45:78:b2:26:00:fd:4f:57:65:74:79:b2:a6:d5:76:
78:f3:1f:0e:c6:61:6f:c7:47:91:34:86:4a:a5:b9:c4:44:cc:
28:e5:56:b5:10:2f:3e:76:bd:07:04:ac:67:a4:08:56:42:52:
fd:5f:d5:a9:6e:b1:7f:f0:e0:b6:e5:d7:4a:f4:57:66:35:1a:
13:86:72:0b:9c:38:29:98:71:c1:09:2d:7f:f4:bd:f5:d0:a9:
1d:78:7d:5f:3b:72:31:ab:6e:90:99:a2:be:65:12:75:bf:32:
61:14:e7:7a:98:78:57:b3:f1:2c:6d:bb:5e:4c:a8:b3:15:45:
ae:d4:18:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:20:51 2026 by rpki-client