Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
File: U4Vcjs6b1vjjlAICISzgmwX1-KA.mft (raw, json)
Hash identifier: NbOJu9nuTr516stLwLZCygcNMF51dafwNAnnWo8FSSc=
Subject key identifier: 3E:59:B6:8E:94:8A:2B:59:59:6C:DF:5F:80:B5:60:8F:2F:C6:68:B8
Authority key identifier: 53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
Certificate issuer: /CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Certificate serial: 019CC862D4F3CFAE061233DA67BC3A5CD7EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
Manifest number: 14E8
Signing time: Sat 07 Mar 2026 13:00:46 +0000
Manifest this update: Sat 07 Mar 2026 13:00:46 +0000
Manifest next update: Sun 08 Mar 2026 13:00:46 +0000
Files and hashes: 1: U4Vcjs6b1vjjlAICISzgmwX1-KA.crl (hash: bGoHRHImD5MB9nOQxnEfQjjX7GODetG70RNQELjX89I=)
2: wOCmhg5ukUDjqYrrNe8HL0c6WHY.roa (hash: py0DTzjoQh1bUaOEwoDGjjlil3qVagDVLMDa9WBCMVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 10:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c8:62:d4:f3:cf:ae:06:12:33:da:67:bc:3a:5c:d7:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Validity
Not Before: Mar 7 13:00:46 2026 GMT
Not After : Mar 8 13:00:46 2026 GMT
Subject: CN=3e59b68e948a2b59596cdf5f80b5608f2fc668b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:00:b1:36:39:dd:4c:04:40:70:15:74:97:ed:
57:f1:be:9b:bb:2b:60:12:e1:c6:8f:f6:dd:7f:3d:
ee:8e:4c:30:3c:61:65:25:7a:bd:7b:55:09:0a:6c:
16:7f:ab:02:ea:82:8f:99:f2:ab:66:10:41:8c:cd:
79:a7:55:6c:1e:97:89:05:b9:02:6a:b1:2c:86:9b:
a2:73:0b:e1:4a:71:f9:9e:41:e1:73:89:ce:dd:2b:
88:b2:e7:61:23:22:c7:bf:35:49:96:58:ec:f2:1c:
59:f3:72:c3:2d:73:1a:b0:ec:98:7c:2c:a7:16:15:
ff:f1:47:e3:10:ad:9b:17:b1:3e:8f:f9:74:47:9b:
c0:7a:14:7f:cc:9f:bb:00:88:df:b4:62:18:09:dc:
71:88:3a:e6:86:89:f9:ce:f4:96:5e:3c:20:cb:b5:
cb:55:6b:5a:e1:14:cc:2f:d5:f2:73:49:25:d4:04:
7f:18:af:c1:5b:c2:53:cd:21:52:53:0b:69:54:13:
a0:a5:8f:75:9c:00:82:3b:b0:9b:27:bf:6d:31:c8:
6e:04:81:5c:25:d9:1c:80:37:67:5c:f5:cf:03:fd:
4f:0a:a6:bf:94:a3:9d:21:ae:08:f2:f3:58:fb:e1:
b0:9f:d1:7d:8c:d6:68:b0:b0:bb:df:88:85:fe:3e:
b8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:59:B6:8E:94:8A:2B:59:59:6C:DF:5F:80:B5:60:8F:2F:C6:68:B8
X509v3 Authority Key Identifier:
keyid:53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:1b:41:0c:45:97:87:50:54:d6:50:06:42:30:7f:06:25:78:
89:ae:c1:7d:f5:16:3e:b1:77:ae:82:b8:65:c1:6b:83:ea:5f:
c2:ea:46:ab:f7:8e:a6:79:42:6d:4a:53:4e:9e:87:45:1f:6d:
0a:79:d3:7d:f4:d9:3b:d6:89:ca:1d:85:5e:31:41:80:81:2b:
3c:85:7d:69:3b:06:c4:9a:9b:c1:9f:56:e2:a5:97:61:54:11:
fd:52:02:9c:a1:0d:4d:5e:ac:52:ad:f6:67:6d:1e:eb:f4:2e:
aa:b2:84:e6:b1:99:1a:98:73:3a:f4:0e:36:3e:49:cc:ef:a1:
b0:c5:73:34:36:97:7a:cc:28:be:b6:fd:01:10:f3:b8:7b:75:
f4:e4:ea:82:ec:fd:ad:74:dd:13:35:fc:0f:95:3b:d0:ee:46:
46:6d:ee:0f:35:2d:b9:bd:29:78:e3:c6:5a:c9:b4:db:0a:0d:
2f:52:8c:45:cb:60:3e:0e:67:a9:e4:ec:98:41:89:4c:bc:f3:
87:72:dc:8b:f2:25:43:46:94:c8:29:08:0a:e4:15:25:b3:0d:
32:0b:1b:a5:24:c0:e8:1c:38:04:b5:c0:52:8f:40:23:29:44:
c5:a5:88:48:92:73:f7:12:36:1c:0a:c2:20:d5:c9:f9:f3:2e:
d1:e2:68:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 21:02:39 2026 by rpki-client