Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: clL9uU+zJLGFiMcBfqHWZl+6b0iTVxMEl2skzI+xUDg=
Subject key identifier: C3:CB:E8:88:EC:BF:3B:6A:47:F1:20:BC:BD:10:2C:65:62:AF:3E:CA
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 019EC14935B821F1746D226152D9C41E5F45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0BE6
Signing time: Sat 13 Jun 2026 14:01:00 +0000
Manifest this update: Sat 13 Jun 2026 14:01:00 +0000
Manifest next update: Sun 14 Jun 2026 14:01:00 +0000
Files and hashes: 1: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: ZFimFT45f6HN2H4rdbZL1oH1QFIyetyPYOQBkvSLHZk=)
2: d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa (hash: pNguw2qBCLAYUuPZ0wVkI6YbP099kM2Xh8UMvqT4t9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:49:35:b8:21:f1:74:6d:22:61:52:d9:c4:1e:5f:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Jun 13 14:01:00 2026 GMT
Not After : Jun 14 14:01:00 2026 GMT
Subject: CN=c3cbe888ecbf3b6a47f120bcbd102c6562af3eca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:37:c5:54:4d:eb:3f:7e:29:4b:96:c9:55:bf:
75:22:96:3d:59:6b:39:90:fd:a0:ab:6f:02:1b:ab:
60:01:e0:1a:84:58:86:39:e2:68:02:4c:91:a6:fd:
73:01:7e:de:da:10:b7:2c:8f:da:b1:df:8c:54:88:
e6:8c:bf:09:51:d1:51:db:ef:6f:69:0a:72:d4:bc:
9f:70:73:b9:4f:83:70:f5:fc:e6:4b:82:e3:08:4a:
d1:0d:bf:ac:44:8f:70:09:50:cf:b9:83:be:00:f9:
d1:41:08:4a:a4:c9:b7:18:7c:8f:d9:5d:b5:c1:8a:
02:fa:ed:d9:00:b4:9a:54:99:b5:74:85:83:9a:9d:
d1:65:15:e2:8e:12:b2:11:83:a9:39:1a:b4:e8:74:
14:76:ea:bf:8d:44:d7:fb:e3:a7:60:be:bc:bb:92:
5a:2e:25:a9:05:ff:c0:15:80:fa:7d:7c:68:82:09:
09:59:6a:88:c8:d1:d8:31:f0:27:e8:8b:f0:77:22:
08:73:2d:f8:50:9d:bb:f8:fe:22:a4:26:4a:d4:3e:
05:a3:01:31:96:17:60:6b:5a:ad:e1:5e:d6:f2:f8:
7b:ca:a2:a9:b1:74:66:66:4a:f0:d2:68:0e:22:d2:
5e:d6:69:1b:a9:9e:ee:86:bb:4d:4c:c6:c2:5d:6b:
30:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:CB:E8:88:EC:BF:3B:6A:47:F1:20:BC:BD:10:2C:65:62:AF:3E:CA
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:88:2a:98:b2:0a:ed:6f:a9:70:54:89:21:9b:fd:de:e3:4d:
95:fa:f8:cb:d7:a3:76:d1:ac:53:de:25:64:87:1b:db:23:f6:
44:ca:af:f3:0e:a4:15:cb:e4:b0:4f:dc:e2:fb:f6:a4:00:87:
6e:be:34:5e:b2:72:04:36:93:4c:63:77:e5:96:ad:39:4e:56:
3c:fa:2f:2a:09:32:c9:39:f2:ed:3c:9f:ce:e8:00:89:dc:ba:
bc:5d:75:8e:e4:b5:20:f3:cc:26:4e:30:df:57:2e:ec:95:27:
97:80:f4:08:47:03:e4:9d:da:74:5c:16:3d:f5:dd:12:8a:69:
77:63:e0:00:9c:0f:92:cb:45:d3:7d:d2:9a:59:2d:e6:99:22:
ad:f1:68:da:31:51:9d:dd:b7:bd:ca:f7:b9:b9:af:c5:68:02:
b5:54:70:49:77:48:ba:16:c0:c5:34:f6:b8:b4:6b:8a:54:8d:
c5:41:e1:6b:0e:2b:6d:5c:25:f1:b8:15:df:e1:62:cd:a0:32:
ca:31:30:46:1b:6f:ed:2f:44:c4:93:82:4d:d8:28:d4:3d:c7:
68:70:67:79:90:ad:c7:4b:9b:46:21:14:b9:1e:9d:08:e0:1d:
56:e6:56:48:d6:2c:4e:b7:bf:f5:9b:a3:25:02:8d:f4:ad:d6:
92:f6:62:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:40:43 2026 by rpki-client