Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
File: U170D69INDOz4zaY5NHulfPJS-w.mft (raw, json)
Hash identifier: +X9vGGS9sKtafaZxGzUnrrHsxfoNNxqxgV+coVcS72w=
Subject key identifier: 66:E9:E1:39:A0:B1:33:1F:73:59:9B:0C:5A:52:CD:E3:39:C5:96:D9
Authority key identifier: 53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
Certificate issuer: /CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Certificate serial: 019CAAC707D22F114927DCD6DB2F8DE96F7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
Manifest number: 1845
Signing time: Sun 01 Mar 2026 19:01:36 +0000
Manifest this update: Sun 01 Mar 2026 19:01:36 +0000
Manifest next update: Mon 02 Mar 2026 19:01:36 +0000
Files and hashes: 1: QKjP2N8r4nDoEM9cPJ71JOp2ddU.roa (hash: W/BKNtYHRWaJtO1Nu7XJOX8Q45kPzU4r+lT7o1huThQ=)
2: U170D69INDOz4zaY5NHulfPJS-w.crl (hash: xhldYeTzhTu/MTsEJCR/AqYLq6YxL6Lg/tPgJaj672k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c7:07:d2:2f:11:49:27:dc:d6:db:2f:8d:e9:6f:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Validity
Not Before: Mar 1 19:01:36 2026 GMT
Not After : Mar 2 19:01:36 2026 GMT
Subject: CN=66e9e139a0b1331f73599b0c5a52cde339c596d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c5:bb:f8:f3:43:88:69:7b:82:da:de:5d:6f:
3a:35:b1:8c:6a:b0:c7:0e:61:b2:af:5e:37:19:73:
03:c7:8c:3b:cd:48:4d:41:26:9c:05:04:b4:f0:af:
96:f1:8a:7a:c2:eb:fe:16:68:85:60:f0:c7:2e:d6:
c1:5b:38:35:cf:f3:17:a3:3b:68:d4:fb:95:9e:18:
cf:dd:b0:3a:f0:c5:bf:ff:fa:e7:ef:ef:39:c1:fc:
ed:81:67:a2:ba:17:0f:28:c2:36:99:ab:7e:f2:28:
a6:fe:0a:0c:05:ad:35:0f:64:db:db:15:49:9f:07:
6b:28:5d:1e:b1:88:87:97:93:22:3c:f5:0c:69:14:
ab:ef:38:d0:40:2f:dc:ac:22:71:e1:95:12:c7:d1:
6c:c8:7d:b1:89:a0:71:b3:01:7c:35:7f:85:c3:4b:
94:85:36:88:a5:a5:15:fb:6a:b5:11:92:0d:0d:70:
3b:cf:a6:82:1c:66:0c:45:57:e6:30:64:f0:f7:c7:
0f:42:00:70:ea:50:a3:65:71:31:5d:31:61:6e:aa:
a9:3a:51:48:2d:73:27:98:c8:df:69:04:d0:92:f5:
63:24:26:39:4d:88:5a:aa:c5:ba:54:71:ef:cb:b3:
22:76:21:0b:52:8d:c0:a4:eb:2a:67:86:d7:9c:11:
ef:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:E9:E1:39:A0:B1:33:1F:73:59:9B:0C:5A:52:CD:E3:39:C5:96:D9
X509v3 Authority Key Identifier:
keyid:53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:42:93:47:07:4d:f9:94:e4:c0:45:b9:92:d2:78:a0:21:a5:
11:9d:f5:a8:13:1a:c7:f6:53:58:bb:63:5d:56:1d:3b:7e:d1:
cb:ad:e0:2c:93:e2:bf:b0:7a:61:bd:31:e8:81:0c:0f:bb:1e:
99:4d:34:92:09:fc:ba:70:ca:66:bc:f3:50:ee:08:38:ea:24:
f8:66:e4:66:fc:31:00:ac:ee:03:83:73:f9:34:48:9b:a7:7a:
9d:cd:e6:a7:1e:dc:24:5b:95:ae:81:64:ba:6b:3c:4b:6b:89:
07:27:27:ef:e4:31:9e:16:9e:6a:15:39:1d:b6:3f:cd:8c:4f:
ed:df:41:ff:ed:8e:81:0a:52:c1:c6:62:9b:33:67:87:95:fc:
c1:d1:c4:7d:cc:39:ed:48:2e:21:70:98:41:83:d5:87:72:b3:
14:86:a5:f6:54:33:53:cb:a9:e7:92:44:d0:4d:54:61:a5:c1:
10:ca:c6:42:6e:73:92:05:8d:f4:1c:9c:b0:62:13:31:26:79:
71:2b:c4:df:3d:1d:97:30:a3:05:72:63:50:0a:99:da:12:30:
6b:47:7d:2c:97:19:ac:7a:b0:bf:f4:fe:2d:61:ce:3c:3d:b2:
90:f7:ac:92:4e:eb:c4:dc:68:ae:1e:b9:1e:c3:11:8b:e5:39:
3d:04:4c:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:27:22 2026 by rpki-client