Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
File: U6i3vKixHSeFDpGMpZlmmIAWKSk.mft (raw, json)
Hash identifier: IHVdx7KLGvJ4LbuPbQ5Dz7b8Ftbw2tYXPkHrKOtGrYk=
Subject key identifier: 24:DB:4B:1A:DA:3E:57:8E:79:B1:44:3C:AC:33:91:79:86:77:8D:4D
Authority key identifier: 53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
Certificate issuer: /CN=53a8b7bca8b11d27850e918ca599669880162929
Certificate serial: 019CABD95D15A37D419DD79C030561E9C94D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
Manifest number: 0457
Signing time: Mon 02 Mar 2026 00:01:14 +0000
Manifest this update: Mon 02 Mar 2026 00:01:14 +0000
Manifest next update: Tue 03 Mar 2026 00:01:14 +0000
Files and hashes: 1: U6i3vKixHSeFDpGMpZlmmIAWKSk.crl (hash: /vbtPCC5P+k9DkLPzggi+5c2Q5R0oF+LLVGsIv6SXd0=)
2: nRT4uPgwT417V9baArl5danbAXs.roa (hash: UtWiWHKN1zx/FcfGBAr5SXtChOSfn+roky2GoxL/E5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:5d:15:a3:7d:41:9d:d7:9c:03:05:61:e9:c9:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a8b7bca8b11d27850e918ca599669880162929
Validity
Not Before: Mar 2 00:01:14 2026 GMT
Not After : Mar 3 00:01:14 2026 GMT
Subject: CN=24db4b1ada3e578e79b1443cac33917986778d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d8:99:c8:14:8b:29:d8:d8:21:39:44:f6:70:
19:c3:98:de:a9:f8:97:ee:7f:24:7c:1e:7c:80:0b:
37:6e:5d:e2:7e:70:03:f0:fa:cf:49:c3:95:ab:95:
a4:b1:ba:a4:64:3e:16:94:07:2e:06:6c:ac:23:ef:
e1:1f:f8:1d:68:b3:ea:d8:84:fc:23:29:6e:01:e6:
19:73:78:f9:54:dd:62:aa:83:57:93:95:58:4e:3e:
43:05:a2:fe:03:e7:b3:c1:47:8b:14:8d:fc:1c:1d:
1c:5c:b7:38:e5:cf:d5:e7:9f:76:47:5f:91:f7:bf:
73:a7:06:c9:c8:9e:b6:2c:1e:86:b9:1f:8c:75:48:
11:c7:b5:5e:75:95:97:dc:8a:ac:ff:e8:6a:ba:3b:
4d:be:ba:e7:24:f2:50:23:ab:f1:da:6b:fd:9d:e7:
05:7e:4c:cc:0b:c4:28:bb:99:47:63:d1:fe:7c:68:
12:31:55:be:26:43:f5:c5:5c:7a:4f:20:91:99:2f:
1a:e0:11:30:83:59:45:1a:bc:6a:68:53:c8:57:52:
da:cb:b3:07:d0:cc:de:32:6b:5e:db:53:30:42:f4:
4c:c3:3e:ad:f3:0d:ae:92:d9:2d:e0:05:3d:e8:d0:
e2:b5:00:79:4f:6a:41:7c:c1:9f:c9:ef:b6:24:bd:
8e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:DB:4B:1A:DA:3E:57:8E:79:B1:44:3C:AC:33:91:79:86:77:8D:4D
X509v3 Authority Key Identifier:
keyid:53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:6a:47:66:dc:94:7d:8c:b1:8e:55:f0:cf:7c:5a:71:08:f8:
b9:2c:24:c1:00:97:0a:18:03:1e:c1:d8:d9:f3:6a:20:38:6e:
56:50:68:6b:a8:4d:90:8e:64:ea:d9:ba:b7:12:8c:7b:be:40:
18:cd:ef:69:ec:cf:12:a2:ac:1a:bc:dd:01:2e:31:a4:d0:35:
fd:ed:90:6f:79:b2:aa:30:61:34:bb:30:dc:88:c3:b4:6a:b2:
b0:e8:1f:14:82:b6:06:c2:1f:be:36:27:5a:85:64:fa:65:3e:
3b:61:34:0d:26:f8:ea:a4:ed:0e:47:e6:50:3a:0a:4d:3b:3e:
67:7a:7b:12:b2:db:67:fd:6b:33:1d:1a:7a:2e:08:34:f9:ae:
30:11:0f:0b:5b:8f:b3:9d:f0:b9:28:ae:c2:05:c7:0a:24:4c:
00:66:03:11:7f:5a:52:67:c3:95:73:c6:58:29:2e:83:bc:34:
a7:54:3f:07:0f:87:95:d0:59:82:9b:cf:e3:0d:1d:03:4e:8e:
45:60:26:22:63:b6:9c:e0:d0:07:88:31:5c:df:98:83:ed:bf:
21:52:5c:6c:67:4a:00:cb:54:64:4d:fd:fd:d3:01:e7:4f:98:
5d:f5:8f:42:af:8f:cf:dc:15:87:8d:42:7b:81:21:5f:fe:44:
c9:1a:4a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:13:34 2026 by rpki-client