Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json)
Hash identifier: K2e5mgNeDlQgn7MejvKMKDCSn1TdQ5k3tJYWfUFwaLs=
Subject key identifier: 01:42:75:3A:43:16:F1:87:12:1E:A2:56:49:5D:6D:6C:DB:AF:13:E1
Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53
Certificate serial: 019EC06E0CD84FBC2300CE725FFE65F6F86E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
Manifest number: 195B
Signing time: Sat 13 Jun 2026 10:01:38 +0000
Manifest this update: Sat 13 Jun 2026 10:01:38 +0000
Manifest next update: Sun 14 Jun 2026 10:01:38 +0000
Files and hashes: 1: S_bLPS21FFHSFgzqZbLQgGjdapU.roa (hash: ntP7qUH7mD4+qqNvUodX6WEcYgeevuhwX8/sIbaDqz4=)
2: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: gtyrhWXBFsKd7QoCchdkGHYWxsBda2mGWSNRtDoF8L4=)
3: vuogQOiw-NsRjP2TO25Dr4VGU1g.roa (hash: /xeIMQbmMftTFD0OnGKJGQk5eie+bKtG5JesE4wKpZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6e:0c:d8:4f:bc:23:00:ce:72:5f:fe:65:f6:f8:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53
Validity
Not Before: Jun 13 10:01:38 2026 GMT
Not After : Jun 14 10:01:38 2026 GMT
Subject: CN=0142753a4316f187121ea256495d6d6cdbaf13e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ea:ac:f5:d6:48:b9:21:5a:28:c1:2f:86:3c:
02:47:96:75:19:58:0f:20:7f:e9:75:20:86:d4:f5:
79:ea:cc:9e:66:73:4c:71:df:60:83:5b:3a:79:a2:
ff:b9:47:72:cf:6b:c3:fe:57:7f:65:ea:ec:c3:d5:
27:fe:5c:4c:cc:99:76:e6:01:d1:b7:03:9d:e3:95:
c1:c8:1d:3c:84:81:e7:eb:60:af:e8:7a:40:80:96:
8c:4c:24:66:39:20:87:59:fb:08:67:28:76:0a:be:
38:17:b8:ab:17:a8:0b:71:3c:ee:74:54:4f:d9:ff:
51:1f:28:69:55:f4:fa:a6:c3:a2:c9:1c:34:6f:48:
8e:be:17:39:42:a5:7a:c3:b1:6b:d4:8f:c0:bc:16:
e2:bc:53:3d:b7:3c:7d:85:01:59:bc:f7:e5:d2:c5:
a0:05:d9:82:22:30:34:c4:57:fb:b7:d6:1f:51:64:
20:31:c3:0a:a1:e0:6f:74:88:b6:51:95:0d:92:dd:
74:55:1e:ee:9f:32:8c:b9:e3:04:e4:e6:21:01:39:
e2:1d:5f:84:82:78:f5:4a:33:b8:53:23:43:6a:e2:
35:27:5e:72:30:53:1f:79:df:e3:68:01:fb:fa:f7:
e0:ee:86:06:7a:47:b1:40:b1:f0:5b:a6:15:d7:8b:
dc:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:42:75:3A:43:16:F1:87:12:1E:A2:56:49:5D:6D:6C:DB:AF:13:E1
X509v3 Authority Key Identifier:
keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:f2:40:bc:31:9a:6a:9a:d5:a6:d6:eb:49:e3:58:29:7d:08:
a5:87:df:51:ab:5e:de:ac:b8:d5:62:00:b6:76:2e:1f:a8:3c:
98:c0:2f:20:0e:b2:d1:7c:7d:2e:26:9f:bd:99:ae:72:7c:49:
a7:73:6d:48:a2:a9:81:a4:e4:57:b6:ae:05:c2:96:70:b1:a9:
81:c3:12:b2:d6:1d:2d:61:be:5b:22:67:de:3c:f0:a0:05:5d:
fd:a1:6f:a8:e9:93:87:16:60:0f:ff:66:8a:2f:34:31:6b:c8:
e1:e1:48:9f:50:21:da:28:d1:22:ef:67:d4:9c:ad:65:aa:35:
60:5a:8d:ee:16:63:45:db:5d:6f:90:82:09:ae:5f:c4:c1:f2:
4b:bd:b2:46:68:d6:82:63:b6:9b:87:71:a6:88:6f:4f:40:b6:
ea:95:b1:37:92:fc:08:a2:71:23:b0:4d:59:cc:9e:9d:a3:57:
2a:42:18:23:a0:ed:05:f8:16:b8:a6:af:95:7d:d8:79:16:e5:
6d:16:8b:98:be:6a:bf:1b:b6:49:1f:7c:b2:74:57:3d:43:51:
76:50:2b:56:fb:5d:09:b1:53:45:62:43:0e:ef:b9:72:ab:cc:
af:d1:3e:d5:f0:fc:3e:4e:50:a5:88:08:36:76:6d:03:37:fe:
8e:7c:8e:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:02:11 2026 by rpki-client