Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
File: U6i3vKixHSeFDpGMpZlmmIAWKSk.mft (raw, json)
Hash identifier: gsgFIIwJQ4vppyvyQ2No5bhaRKNfmMKTQYUbaW7keJs=
Subject key identifier: 21:F5:AA:05:A5:5E:F7:C3:87:8D:C6:99:47:3B:FC:B9:90:BC:78:7D
Authority key identifier: 53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
Certificate issuer: /CN=53a8b7bca8b11d27850e918ca599669880162929
Certificate serial: 019DA4F859915EE5D2978344D090E4DD666C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
Manifest number: 04D8
Signing time: Sun 19 Apr 2026 09:00:32 +0000
Manifest this update: Sun 19 Apr 2026 09:00:32 +0000
Manifest next update: Mon 20 Apr 2026 09:00:32 +0000
Files and hashes: 1: U6i3vKixHSeFDpGMpZlmmIAWKSk.crl (hash: uwSR5SS7plndiXoDkIsMx/b+Ia7GQMFJpkci9I+IM84=)
2: nRT4uPgwT417V9baArl5danbAXs.roa (hash: UtWiWHKN1zx/FcfGBAr5SXtChOSfn+roky2GoxL/E5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f8:59:91:5e:e5:d2:97:83:44:d0:90:e4:dd:66:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a8b7bca8b11d27850e918ca599669880162929
Validity
Not Before: Apr 19 09:00:32 2026 GMT
Not After : Apr 20 09:00:32 2026 GMT
Subject: CN=21f5aa05a55ef7c3878dc699473bfcb990bc787d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:72:f0:a1:fc:32:68:5f:89:6b:9a:e9:a0:77:
aa:fe:e9:25:8d:a4:d7:50:05:bb:a3:d2:8a:75:64:
78:96:a0:46:c1:de:98:80:99:88:45:62:bd:3c:83:
ec:8f:a6:18:40:51:a3:2e:d8:aa:c3:90:1c:ae:38:
61:d2:8d:8d:b1:38:46:77:c5:1a:42:bc:62:59:68:
8e:13:5f:91:e4:f2:4e:cf:12:d5:01:65:af:8a:cc:
19:07:cd:e7:4a:d0:b1:5c:77:7f:fa:e0:44:80:36:
a5:4d:13:26:86:41:85:70:94:64:55:9a:aa:ec:c5:
31:81:4f:cf:32:fc:16:03:d4:9d:43:c6:f4:c9:9d:
ae:67:7d:ea:e0:61:54:5a:6b:4d:bc:01:79:65:55:
e5:9c:72:01:8c:2c:f0:d7:0e:33:dc:be:80:d0:ad:
48:6e:cf:4c:f9:8a:6b:50:bf:b6:1c:02:8a:27:8b:
0f:24:ec:cd:aa:3c:e4:eb:e2:62:f3:d0:d5:16:57:
36:4e:bd:cb:1c:b0:9b:5d:3c:f7:67:82:b3:10:92:
bf:bc:6d:65:7d:ac:5b:8c:50:73:24:89:fc:be:e9:
a5:fc:02:29:d2:55:cf:c9:7e:11:9c:26:9d:58:7b:
7b:78:fb:92:5d:c7:49:e3:1b:3d:67:65:45:46:4f:
6d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F5:AA:05:A5:5E:F7:C3:87:8D:C6:99:47:3B:FC:B9:90:BC:78:7D
X509v3 Authority Key Identifier:
keyid:53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:c3:28:61:b9:4b:e3:b9:ff:be:12:13:42:5d:47:54:b1:fb:
71:99:4f:10:10:56:4f:74:9e:6a:95:18:3c:61:9c:9f:49:78:
d2:e0:a4:1d:15:75:f5:45:c5:a4:87:d0:01:5d:d8:c3:a0:99:
a0:7d:32:fc:77:26:75:e3:c5:9b:80:18:b8:5e:bd:f1:75:0b:
1d:0b:3b:f3:31:30:f6:4c:14:ca:dd:8f:d0:a3:14:4c:d8:2d:
f7:39:f5:c3:9e:8f:f0:dd:53:ae:e0:92:21:41:04:bf:3c:37:
46:aa:45:10:19:e9:b8:f8:c2:c6:17:26:84:12:e7:e2:14:a9:
26:dd:1c:0d:f5:b4:b7:5d:94:ad:cb:4f:c0:a2:e9:21:48:55:
5f:44:d2:8a:4d:bc:47:aa:e9:4a:24:05:d4:6b:ae:1b:96:fb:
b3:c4:11:09:be:4e:24:b5:b8:6b:6c:93:29:27:15:cb:2b:8d:
0c:c5:87:7e:7a:de:7f:12:97:74:b8:f9:7f:a0:45:5d:66:54:
fd:3c:cd:a1:85:8c:42:0e:8b:ed:ad:ad:9a:02:d4:63:c0:a0:
3e:4f:2f:eb:a9:49:9a:57:03:e7:85:1e:4b:f8:a8:8b:13:6b:
08:8d:b7:48:5f:b5:d8:14:b9:28:7d:58:16:42:4f:71:f4:8e:
ef:d6:2e:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2k+FmRXuXSl4NE0JDk3WZsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYThiN2JjYThiMTFkMjc4NTBlOTE4Y2E1OTk2Njk4ODAx
NjI5MjkwHhcNMjYwNDE5MDkwMDMyWhcNMjYwNDIwMDkwMDMyWjAzMTEwLwYDVQQD
EygyMWY1YWEwNWE1NWVmN2MzODc4ZGM2OTk0NzNiZmNiOTkwYmM3ODdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3LwofwyaF+Ja5rpoHeq/ukljaTX
UAW7o9KKdWR4lqBGwd6YgJmIRWK9PIPsj6YYQFGjLtiqw5Acrjhh0o2NsThGd8Ua
QrxiWWiOE1+R5PJOzxLVAWWviswZB83nStCxXHd/+uBEgDalTRMmhkGFcJRkVZqq
7MUxgU/PMvwWA9SdQ8b0yZ2uZ33q4GFUWmtNvAF5ZVXlnHIBjCzw1w4z3L6A0K1I
bs9M+YprUL+2HAKKJ4sPJOzNqjzk6+Ji89DVFlc2Tr3LHLCbXTz3Z4KzEJK/vG1l
faxbjFBzJIn8vuml/AIp0lXPyX4RnCadWHt7ePuSXcdJ4xs9Z2VFRk9tkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCH1qgWlXvfDh43GmUc7/LmQvHh9MB8GA1UdIwQY
MBaAFFOot7yosR0nhQ6RjKWZZpiAFikpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTZpM3ZLaXhIU2VGRHBHTXBabG1tSUFXS1NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81MDZkYjktMTJhYS00NjNjLWE3ZWEt
ZDNjZGQ1YzMzOTJjLzEvVTZpM3ZLaXhIU2VGRHBHTXBabG1tSUFXS1NrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81MDZkYjktMTJhYS00NjNjLWE3ZWEtZDNjZGQ1YzMzOTJj
LzEvVTZpM3ZLaXhIU2VGRHBHTXBabG1tSUFXS1NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkMMoYblL
47n/vhITQl1HVLH7cZlPEBBWT3SeapUYPGGcn0l40uCkHRV19UXFpIfQAV3Yw6CZ
oH0y/HcmdePFm4AYuF698XULHQs78zEw9kwUyt2P0KMUTNgt9zn1w56P8N1TruCS
IUEEvzw3RqpFEBnpuPjCxhcmhBLn4hSpJt0cDfW0t12UrctPwKLpIUhVX0TSik28
R6rpSiQF1GuuG5b7s8QRCb5OJLW4a2yTKScVyyuNDMWHfnrefxKXdLj5f6BFXWZU
/TzNoYWMQg6L7a2tmgLUY8CgPk8v66lJmlcD54UeS/ioixNrCI23SF+12BS5KH1Y
FkJPcfSO79YueA==
-----END CERTIFICATE-----
Generated at Sun Apr 19 11:35:15 2026 by rpki-client