Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json)
Hash identifier: 5RDXe5GnfNclblXq6qNpkHxGlSTCS7NJh2bhbQ+qJZ8=
Subject key identifier: A8:51:B5:31:88:EB:3A:06:81:C0:F3:7B:80:48:03:C6:CE:67:F4:2B
Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53
Certificate serial: 019D98F418D065B68995F8B7E9DC5B5514E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 01:00:27 +0000
Manifest this update: Fri 17 Apr 2026 01:00:27 +0000
Manifest next update: Sat 18 Apr 2026 01:00:27 +0000
Files and hashes: 1: S_bLPS21FFHSFgzqZbLQgGjdapU.roa (hash: ntP7qUH7mD4+qqNvUodX6WEcYgeevuhwX8/sIbaDqz4=)
2: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: yddGI3dJWIFSy7L6qvmBbrLLfGBTg95msrs+PlcfJYs=)
3: vuogQOiw-NsRjP2TO25Dr4VGU1g.roa (hash: /xeIMQbmMftTFD0OnGKJGQk5eie+bKtG5JesE4wKpZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:18:d0:65:b6:89:95:f8:b7:e9:dc:5b:55:14:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53
Validity
Not Before: Apr 17 01:00:27 2026 GMT
Not After : Apr 18 01:00:27 2026 GMT
Subject: CN=a851b53188eb3a0681c0f37b804803c6ce67f42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:15:85:48:41:4c:5b:61:b8:b6:96:ec:23:36:
e3:86:c6:59:5e:14:77:fc:14:05:de:b1:67:78:00:
d4:34:4c:6e:3f:c0:1c:97:d6:d8:a3:98:f9:e3:75:
3a:66:82:37:6d:aa:3d:6c:8a:44:16:7f:15:2f:e6:
90:70:8d:79:5c:f6:f9:de:65:32:50:e7:e6:4e:d2:
88:f1:dc:0a:8e:49:2f:3e:37:07:35:8b:4e:7e:87:
6e:4c:0f:05:50:9a:1b:94:05:82:5c:8f:70:0d:c9:
67:bd:12:d6:a0:2a:af:d6:ef:08:83:a1:25:70:17:
c5:13:ba:e4:3e:db:8b:68:af:99:a7:ad:5f:21:65:
c8:21:65:e1:a3:3a:2e:32:d2:45:1e:5d:a3:ab:9f:
c3:e1:7d:1a:54:02:70:6c:a2:de:64:c3:93:e4:eb:
4d:65:55:d3:02:f6:c7:91:35:e1:15:00:3a:f3:db:
b3:1c:ba:ee:64:15:a7:ad:28:16:e1:3f:ba:94:fe:
40:4a:24:ce:c8:ec:25:85:e4:9c:46:39:fd:7b:ff:
60:f8:9e:0f:67:b5:de:71:ce:db:75:c5:19:fd:30:
0b:77:97:8d:db:fd:5f:d6:ec:33:15:29:04:3b:b8:
05:8f:3f:e8:e1:de:92:ce:78:22:39:4f:fb:19:bd:
ce:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:51:B5:31:88:EB:3A:06:81:C0:F3:7B:80:48:03:C6:CE:67:F4:2B
X509v3 Authority Key Identifier:
keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:0a:b8:f6:a4:56:f2:d1:b9:d1:93:6a:b0:89:29:bb:13:ec:
38:a1:9f:f2:91:bb:cf:91:ef:34:61:40:30:c5:96:03:9a:90:
f9:e2:8d:3c:4e:d6:7a:f4:7d:dc:7a:aa:51:7a:f1:f4:e9:18:
57:0d:18:bd:5c:80:c0:89:f4:b7:42:48:36:e9:8c:e2:42:01:
48:bd:58:23:27:4b:de:a0:1f:c6:d4:6e:1b:b7:06:49:c2:87:
3e:93:4e:57:d9:a1:2e:af:16:c6:96:9b:45:58:7d:d7:26:bc:
46:10:0d:d5:18:00:4f:fc:bb:6a:a4:bc:a3:2b:59:1e:b9:93:
d0:c7:f0:b5:51:9e:23:50:9e:d8:19:1a:02:c7:07:f5:1a:8a:
07:f8:bc:57:fe:5c:44:0c:4b:9c:67:69:b7:2b:b1:47:d4:97:
88:3b:d1:71:bf:a4:ee:5b:0d:a3:4b:31:b0:e3:b4:3b:97:e5:
00:ff:73:f1:58:a5:8f:50:ab:24:aa:45:87:43:d9:11:35:e7:
65:7b:ed:37:d3:a6:b3:80:59:70:fb:b4:01:82:49:26:97:97:
cf:82:70:5a:b5:59:aa:09:5f:09:71:71:2d:a1:b9:52:c2:9f:
4b:4d:59:30:f2:32:58:77:08:47:82:bc:62:5d:e7:cf:39:31:
e5:2c:18:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:43:47 2026 by rpki-client