Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
File: U6hLUj3-Mriom5zdMKn4cRAH_bk.mft (raw, json)
Hash identifier: X0ZA8o3b7lRGR/zuQY+Onv77PG3NDSrtzbgbPDUkil0=
Subject key identifier: 85:70:12:82:29:A7:C9:1F:45:61:2F:7E:5B:8E:F6:1B:C6:B3:87:88
Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Certificate serial: 019CABD99A118B2A17E1F5FA6349A2170A32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
Manifest number: 0F1D
Signing time: Mon 02 Mar 2026 00:01:30 +0000
Manifest this update: Mon 02 Mar 2026 00:01:30 +0000
Manifest next update: Tue 03 Mar 2026 00:01:30 +0000
Files and hashes: 1: U6hLUj3-Mriom5zdMKn4cRAH_bk.crl (hash: ibkWbDWdz7jvfrEF6N7yRhRv4q6vcXO4KY8QKzc4qs8=)
2: e7AHTN6GMHGk_8dAcf_gVZnvxVI.roa (hash: IevTKfUQJkqwDYYU6PQJwFiwDh/wjsGFxyO8+JdLEM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:9a:11:8b:2a:17:e1:f5:fa:63:49:a2:17:0a:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Validity
Not Before: Mar 2 00:01:30 2026 GMT
Not After : Mar 3 00:01:30 2026 GMT
Subject: CN=8570128229a7c91f45612f7e5b8ef61bc6b38788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:95:43:bb:d5:d5:6a:8f:1b:ea:aa:bb:2c:a8:
f5:a0:a2:2f:e0:99:46:8e:a1:f6:e1:c4:d6:e3:7b:
33:cc:af:0a:25:5a:b3:d0:c8:29:a0:88:d7:db:92:
f0:06:b6:48:4a:47:da:ba:d6:b2:76:a5:0e:df:ae:
07:a8:ac:71:d8:e1:64:db:4d:08:5d:ec:70:c9:8b:
5a:a0:f4:63:cc:3f:24:7f:3a:79:14:89:e5:59:17:
e9:d2:66:d6:3f:8a:36:e8:bd:f3:1a:64:9c:1b:b8:
b5:e1:1f:19:d4:bd:bd:eb:04:a4:4b:e4:f7:b8:c0:
d1:3e:44:93:9a:07:a2:07:f2:d9:ff:ff:9e:43:99:
13:e9:a0:06:05:4f:06:75:a7:c1:6f:67:68:d9:d9:
08:84:bb:a4:4f:f3:89:3d:bb:ad:04:c1:42:c2:ab:
18:50:62:82:82:1e:1a:3d:a1:e7:36:20:a4:dd:eb:
58:bd:3e:1b:09:00:3a:e3:48:c2:1a:c2:4b:c9:0c:
04:cb:1b:46:48:9c:8e:bc:77:20:6f:ea:6c:17:61:
09:04:63:95:2a:15:c4:85:a5:ff:75:78:0a:2e:93:
ab:d5:cc:de:4a:a0:da:47:84:13:27:e1:d7:a5:63:
3a:bf:18:e9:c0:f0:36:b4:3f:08:74:04:18:ab:9f:
18:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:70:12:82:29:A7:C9:1F:45:61:2F:7E:5B:8E:F6:1B:C6:B3:87:88
X509v3 Authority Key Identifier:
keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:a3:de:05:b8:da:6a:bf:e6:8b:df:f1:84:a3:f1:f3:3e:88:
71:51:b3:3e:dc:1e:3a:38:5c:2c:1f:a4:d2:37:e0:15:c0:48:
09:03:1f:e7:6d:0c:a9:78:bb:30:91:52:72:c5:8b:0a:56:7a:
8b:be:9f:ed:b0:57:c4:ed:92:66:46:33:dc:07:de:29:4f:17:
05:09:76:9e:95:ee:63:fa:33:2e:2f:f7:4e:5b:74:09:61:99:
4f:d7:fb:0f:e7:40:15:02:42:09:b7:8c:e0:ce:30:eb:84:cb:
c7:0b:96:5b:27:82:cb:68:5e:d2:d5:6b:3b:9b:44:b8:c4:26:
1c:ca:6a:6e:69:a1:1b:9d:90:7d:e7:00:aa:f0:e3:a5:2a:d3:
56:72:a8:5b:93:33:d0:3d:8c:20:a8:be:75:9d:bc:92:35:c4:
fc:11:29:e3:0d:16:20:61:fb:34:1e:74:f9:8b:11:d8:2a:9d:
2a:9e:ef:f3:1f:d0:d1:1a:23:32:2b:e8:83:b9:10:85:18:96:
28:4e:9c:67:9a:3b:52:6b:3a:69:0d:a5:c3:c3:d8:e3:d9:0b:
6f:d9:07:d6:da:e4:85:ec:7e:ef:e3:b0:86:c0:b5:6b:5d:d6:
e2:28:1a:61:69:45:6f:3a:d7:a4:80:62:86:89:32:73:83:c9:
47:af:5e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:06:57 2026 by rpki-client