Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: RfAsqUgCwsNvcInoSG5tZNFozrM49Yfv3ONpz++OTew=
Subject key identifier: 97:56:CF:72:34:FC:47:FC:D1:5C:6C:94:22:F0:9A:28:AD:BE:39:16
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 019CAC46A9E667D6104EFD87E169717C7ADC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0AD2
Signing time: Mon 02 Mar 2026 02:00:38 +0000
Manifest this update: Mon 02 Mar 2026 02:00:38 +0000
Manifest next update: Tue 03 Mar 2026 02:00:38 +0000
Files and hashes: 1: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: 80Hboo1b5SsbrCA0NTPMBFMnUmPHrKkCiu0n+1oa0JE=)
2: d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa (hash: pNguw2qBCLAYUuPZ0wVkI6YbP099kM2Xh8UMvqT4t9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:a9:e6:67:d6:10:4e:fd:87:e1:69:71:7c:7a:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Mar 2 02:00:38 2026 GMT
Not After : Mar 3 02:00:38 2026 GMT
Subject: CN=9756cf7234fc47fcd15c6c9422f09a28adbe3916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:74:6c:61:4b:31:6e:9d:12:bb:fb:53:b3:0e:
80:16:a9:47:45:f1:a3:f9:cf:48:32:a3:26:8d:5a:
a0:cd:fd:65:8c:c2:78:38:3a:f6:b4:09:a8:e1:48:
68:3e:59:91:73:97:46:7d:9a:ec:42:0f:e8:93:21:
9f:26:48:88:33:7b:dd:76:b6:f3:dc:15:1c:48:19:
6b:36:ce:18:33:f3:c9:59:e1:9f:ee:46:b7:9f:a0:
f8:f9:d3:ea:47:b8:b3:11:b0:5f:f6:5e:e6:06:e7:
cd:c1:fb:3b:2b:c1:94:6c:b6:03:13:e6:40:f5:64:
5c:33:42:8e:26:9d:58:a4:a5:8b:17:eb:a7:69:21:
b9:a5:f6:bd:43:3f:c6:49:20:af:2d:34:ed:f7:21:
be:84:e3:5c:5e:c5:18:84:07:fc:15:cf:c7:ef:a4:
a2:12:b4:8b:84:91:ad:8f:04:a8:d7:17:24:86:da:
f8:16:5d:42:78:55:09:17:1f:a2:54:72:2d:9c:41:
fc:c8:4c:bc:81:e4:f4:de:07:ac:56:8d:ea:d4:ec:
a3:b4:bd:f4:4f:4a:19:01:38:d1:af:ec:80:da:34:
63:2b:ae:b2:27:2c:81:ba:f5:bf:64:d3:35:d2:b3:
08:76:e5:e6:f4:ed:f3:da:cb:3a:e3:6b:bf:f4:e7:
73:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:56:CF:72:34:FC:47:FC:D1:5C:6C:94:22:F0:9A:28:AD:BE:39:16
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:78:cf:31:90:c4:09:da:b2:74:1b:7d:e5:3c:e7:ef:ef:9a:
2f:85:d6:82:c8:1c:3e:cf:b6:0c:8d:8b:05:dc:3c:d7:17:14:
22:8d:fc:3b:82:e4:39:c5:df:89:9d:9a:f2:e1:93:57:1f:f0:
03:2a:56:ec:98:4d:f1:99:eb:ac:21:e3:9a:a1:74:11:79:e1:
64:09:d8:0a:9b:4d:42:ca:40:50:bd:61:aa:f9:8e:18:82:75:
0f:8e:16:a2:ee:56:a3:8f:09:cb:60:7b:58:03:f7:6f:bc:11:
fa:ac:61:a7:d1:80:e1:ed:14:8d:51:f0:1a:cd:7a:aa:07:09:
b0:67:fe:53:83:66:1d:e8:6f:e9:09:20:e6:f1:a5:01:48:52:
1b:93:1f:51:3c:8d:3e:64:09:04:a8:f9:79:53:d1:a2:18:d9:
99:9d:53:79:b3:aa:be:2e:8a:63:8f:41:d3:35:de:d2:27:06:
31:6b:43:fa:e0:42:9a:68:0e:8f:52:37:31:55:6f:97:18:2b:
9a:72:20:1e:f0:aa:76:18:6a:75:7e:a0:0a:11:8b:d6:e2:dd:
0c:75:42:d7:af:cf:a2:90:cd:07:d4:04:43:79:3d:52:10:e5:
0d:99:bf:fb:85:f3:9d:dd:7b:a4:7e:57:a4:b7:c8:ce:2b:39:
b9:e1:c6:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:34:40 2026 by rpki-client