Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json)
Hash identifier: jdCqgKN6ZHKDiiWI4aveiQXnMhqiTbmFrTC1iHyJ3/s=
Subject key identifier: 29:15:36:34:CA:8C:79:F3:85:9A:60:5F:AF:44:D2:5F:94:03:AE:7D
Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53
Certificate serial: 019CAB6AE42B8395808573F4E81501E8005D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 22:00:34 +0000
Manifest this update: Sun 01 Mar 2026 22:00:34 +0000
Manifest next update: Mon 02 Mar 2026 22:00:34 +0000
Files and hashes: 1: S_bLPS21FFHSFgzqZbLQgGjdapU.roa (hash: ntP7qUH7mD4+qqNvUodX6WEcYgeevuhwX8/sIbaDqz4=)
2: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: i+8bpEBnt4BgQVt9u1QJWJYz+35guhtPsw5Z3L2agqU=)
3: vuogQOiw-NsRjP2TO25Dr4VGU1g.roa (hash: /xeIMQbmMftTFD0OnGKJGQk5eie+bKtG5JesE4wKpZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:e4:2b:83:95:80:85:73:f4:e8:15:01:e8:00:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53
Validity
Not Before: Mar 1 22:00:34 2026 GMT
Not After : Mar 2 22:00:34 2026 GMT
Subject: CN=29153634ca8c79f3859a605faf44d25f9403ae7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0c:99:20:27:aa:2e:d7:b9:63:31:9c:55:76:
94:78:e5:ac:34:49:29:40:10:bb:81:f8:ad:98:67:
8c:d2:12:dc:d2:df:e3:90:86:c3:81:63:73:a7:ce:
af:ca:74:2d:29:8f:82:48:5f:80:ce:30:3e:9b:fd:
53:38:c6:84:3c:30:f6:63:29:ee:d3:2e:b4:af:db:
41:87:fc:d8:69:0f:58:5d:99:3d:0a:b9:7a:0c:3d:
23:1b:86:28:0f:a6:43:1f:5f:23:06:cb:51:b2:6e:
95:40:bc:ae:01:52:e2:4e:07:2b:2a:f3:56:19:c9:
57:2e:e5:b3:be:f9:c9:ce:51:18:78:ed:b6:84:bd:
1c:aa:4e:83:0f:ff:39:62:89:bf:e4:16:d7:85:73:
4f:52:a6:80:ab:dd:39:40:f3:ef:7a:25:86:54:70:
66:a6:5a:ca:4f:6d:96:e5:d6:04:2c:9b:25:91:5f:
a6:36:39:9b:15:17:c1:3a:f4:c0:52:53:1c:de:56:
18:d9:85:2f:8e:1b:0f:df:d4:bd:28:9c:21:30:42:
10:d9:38:77:fb:3b:e6:b7:03:11:bd:5f:96:64:26:
63:c2:c8:47:4e:9b:c6:bf:e6:ce:65:1d:29:fe:e0:
42:f0:0d:c8:c3:bc:c6:20:14:52:09:f9:9a:b9:a6:
be:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:15:36:34:CA:8C:79:F3:85:9A:60:5F:AF:44:D2:5F:94:03:AE:7D
X509v3 Authority Key Identifier:
keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:85:fb:40:bc:da:44:e3:97:84:9f:c9:0c:a0:3a:33:cf:54:
36:cd:45:c1:1c:b1:db:86:67:a3:84:d3:20:1e:65:36:08:05:
8e:4e:0d:c8:ef:0f:56:cb:fd:ed:4c:0f:58:66:a9:82:2f:ac:
08:56:d8:4c:a4:ee:e3:0b:ad:cd:cb:10:1f:4f:e8:7d:9a:88:
f7:ab:df:16:00:ea:a1:b6:c4:f6:d3:f6:f9:4a:7b:1d:3c:cd:
ee:49:bf:ab:1f:43:c4:69:85:53:79:52:a5:9b:01:37:47:0f:
e9:3a:1e:a1:e5:84:cb:db:0a:ff:67:c0:a5:55:57:69:7c:e2:
be:b9:ff:e1:54:13:0c:97:e6:58:06:8a:89:f1:5b:e7:bc:8e:
cf:58:0e:50:cc:cd:f2:ed:ce:c6:56:f0:1e:8d:35:6f:71:e2:
5c:07:80:e7:a9:d4:99:f9:4c:ee:f2:b0:f8:b3:89:db:6f:34:
d4:c9:e1:f4:fe:e3:b3:7b:43:29:cf:86:85:17:80:e0:93:3b:
cf:cd:19:db:2c:ab:30:d6:da:e2:89:27:10:c5:26:ec:a4:57:
a1:66:7e:2b:45:34:ee:fc:c9:19:0d:a0:5e:5d:9d:17:c1:e8:
62:3a:0f:cc:1e:63:d6:fe:49:89:28:17:1b:94:25:88:a5:e5:
56:64:f2:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:51:33 2026 by rpki-client