Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: t4o2hAGyWxGk4scNopcimQ/H9R9vRWTwSLBZ0827HUA=
Subject key identifier: EB:11:93:F7:D1:DF:5B:5D:16:06:8A:27:35:D2:C2:4E:FE:8F:59:CD
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 019D9BBE3474CF5F744CD951A92E665186A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0B4E
Signing time: Fri 17 Apr 2026 14:00:26 +0000
Manifest this update: Fri 17 Apr 2026 14:00:26 +0000
Manifest next update: Sat 18 Apr 2026 14:00:26 +0000
Files and hashes: 1: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: ZUXbBCC0fGl13eER+Uke3EMVGPMFMz/n3DTJG7mQByg=)
2: d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa (hash: pNguw2qBCLAYUuPZ0wVkI6YbP099kM2Xh8UMvqT4t9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:34:74:cf:5f:74:4c:d9:51:a9:2e:66:51:86:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Apr 17 14:00:26 2026 GMT
Not After : Apr 18 14:00:26 2026 GMT
Subject: CN=eb1193f7d1df5b5d16068a2735d2c24efe8f59cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:42:1d:f1:a3:2a:dc:0d:38:bb:74:c0:a9:cb:
6b:f7:78:9f:70:55:de:bd:34:d5:b8:71:90:02:11:
0e:2b:24:b3:06:42:f7:af:19:a3:0a:e2:c3:a2:7e:
04:e7:8f:de:ab:fe:67:9f:ce:7e:1d:56:7d:15:57:
0c:45:03:b8:98:eb:c9:e0:8c:59:f3:f1:c4:69:84:
fd:82:17:dd:98:81:c8:78:ef:56:f6:c7:2d:c9:c2:
ea:c4:1e:6d:8e:d6:a4:80:a1:84:15:93:3c:6b:57:
b7:7b:af:e7:1d:eb:f4:71:a9:fd:1c:1a:04:87:8f:
09:c5:9d:c2:e1:27:64:4c:68:f8:f2:7e:58:e3:47:
5b:d4:a4:f0:b0:0f:b2:37:16:3c:05:d1:d6:c2:46:
3b:c7:d8:ad:cc:6a:64:21:bb:3c:08:f7:db:e1:b1:
5e:f6:89:3a:e7:06:b5:6b:4e:55:03:d3:aa:70:11:
71:e7:d1:cb:64:e2:97:18:75:a7:50:44:84:37:bb:
ad:24:a2:65:ac:29:bd:9b:71:8f:ed:47:e9:37:17:
80:f7:c9:d7:35:24:24:05:13:4e:10:66:17:73:06:
aa:c4:bc:2f:30:b5:8a:43:7d:30:1a:c5:c5:eb:15:
2c:10:21:70:c3:68:11:23:51:0a:73:c7:3f:dc:f0:
21:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:11:93:F7:D1:DF:5B:5D:16:06:8A:27:35:D2:C2:4E:FE:8F:59:CD
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:4f:98:4c:23:bb:7c:08:64:08:a7:ca:ab:90:59:7e:e9:0f:
f2:bc:f5:8c:3d:cf:79:4b:fc:37:2f:3a:9e:6b:3e:a5:c4:ae:
71:dd:93:fe:03:04:82:6b:67:fb:d7:49:6f:00:60:da:c9:9c:
89:14:b8:b0:e6:ca:d3:92:7e:45:37:b9:40:92:b8:7c:e5:30:
3d:cf:b0:20:0f:84:c0:27:93:29:9a:7e:81:41:3c:aa:e0:1e:
6c:db:ef:97:95:78:1f:8e:0e:5d:ed:dd:0e:77:83:f3:f5:53:
8e:db:36:03:1f:da:82:d8:35:f1:26:1d:0a:a4:8b:d4:3a:d3:
ed:da:08:00:6e:57:47:7b:b4:dd:a5:d1:7e:0e:c6:83:a3:bd:
42:00:cd:9a:fe:7d:1b:74:16:8b:cb:31:87:bc:37:6c:ec:13:
b3:a2:b8:b8:0e:35:de:c8:22:a2:3e:ef:9b:8a:55:36:6e:a4:
5f:18:6e:9b:0c:81:c4:9e:82:f2:d0:71:7e:ab:b8:05:c5:56:
e9:5e:19:cc:b2:79:9f:ea:96:c5:6a:6d:5c:f4:f4:58:e4:1f:
bc:de:62:88:2b:12:c9:05:5d:15:c1:bf:08:94:20:7e:6b:fb:
94:07:f5:b6:6d:16:66:96:bf:a5:29:6f:63:14:e2:b3:eb:71:
ff:24:11:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bvjR0z190TNlRqS5mUYahMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzZTNhZWRkOTFiZTgyNDUxMzQyZGNkMWM5ODI4MzQ1ZGI2
NjFhNWYwHhcNMjYwNDE3MTQwMDI2WhcNMjYwNDE4MTQwMDI2WjAzMTEwLwYDVQQD
EyhlYjExOTNmN2QxZGY1YjVkMTYwNjhhMjczNWQyYzI0ZWZlOGY1OWNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmkId8aMq3A04u3TAqctr93ifcFXe
vTTVuHGQAhEOKySzBkL3rxmjCuLDon4E54/eq/5nn85+HVZ9FVcMRQO4mOvJ4IxZ
8/HEaYT9ghfdmIHIeO9W9sctycLqxB5tjtakgKGEFZM8a1e3e6/nHev0can9HBoE
h48JxZ3C4SdkTGj48n5Y40db1KTwsA+yNxY8BdHWwkY7x9itzGpkIbs8CPfb4bFe
9ok65wa1a05VA9OqcBFx59HLZOKXGHWnUESEN7utJKJlrCm9m3GP7UfpNxeA98nX
NSQkBRNOEGYXcwaqxLwvMLWKQ30wGsXF6xUsECFww2gRI1EKc8c/3PAhmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOsRk/fR31tdFgaKJzXSwk7+j1nNMB8GA1UdIwQY
MBaAFFPjrt2RvoJFE0Lc0cmCg0XbZhpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQt
YTdkOTQ1YWYxNGU1LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQtYTdkOTQ1YWYxNGU1
LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh0+YTCO7
fAhkCKfKq5BZfukP8rz1jD3PeUv8Ny86nms+pcSucd2T/gMEgmtn+9dJbwBg2smc
iRS4sObK05J+RTe5QJK4fOUwPc+wIA+EwCeTKZp+gUE8quAebNvvl5V4H44OXe3d
DneD8/VTjts2Ax/agtg18SYdCqSL1DrT7doIAG5XR3u03aXRfg7Gg6O9QgDNmv59
G3QWi8sxh7w3bOwTs6K4uA413sgioj7vm4pVNm6kXxhumwyBxJ6C8tBxfqu4BcVW
6V4ZzLJ5n+qWxWptXPT0WOQfvN5iiCsSyQVdFcG/CJQgfmv7lAf1tm0WZpa/pSlv
YxTis+tx/yQRyw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 18:04:47 2026 by rpki-client