Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
File: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json)
Hash identifier: ye4CDs9bCVYHOGqMjC/6MJnjWG6HH69Dhq+nIRfzsCE=
Subject key identifier: E4:AA:FB:98:A4:CC:F2:A9:AA:51:B9:6D:39:77:14:13:13:EF:85:A1
Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
Certificate issuer: /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Certificate serial: 019CAC0FA745F1CFACD3F06AA8F964C9929C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
Manifest number: 1569
Signing time: Mon 02 Mar 2026 01:00:32 +0000
Manifest this update: Mon 02 Mar 2026 01:00:32 +0000
Manifest next update: Tue 03 Mar 2026 01:00:32 +0000
Files and hashes: 1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: Q1cuBnH/+gf1z9i3funKoTs3GNQiS0vZen/mEZiFpo4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:a7:45:f1:cf:ac:d3:f0:6a:a8:f9:64:c9:92:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Validity
Not Before: Mar 2 01:00:32 2026 GMT
Not After : Mar 3 01:00:32 2026 GMT
Subject: CN=e4aafb98a4ccf2a9aa51b96d3977141313ef85a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:55:d5:f5:37:5a:a3:8b:2d:ce:41:07:5f:77:
58:ad:c9:c9:11:9d:83:db:e6:c7:33:04:04:10:4b:
88:b5:74:ef:24:5e:dc:82:cb:f3:32:f7:59:4c:0c:
ef:83:9e:a7:9a:36:58:70:8f:31:84:a9:0c:78:49:
b5:77:e1:73:17:51:16:99:4d:24:2a:57:25:ab:bd:
62:5e:48:85:c5:73:ed:a5:1d:59:8e:b8:30:74:43:
13:32:9b:54:f1:b1:9d:c8:6b:07:22:eb:b6:45:c1:
78:1f:01:86:ef:bb:5b:fa:2e:d3:75:5b:e3:28:7a:
cf:74:57:05:b7:71:14:4d:71:54:c1:3c:8e:64:18:
a0:6a:0a:f8:d8:28:15:e7:fa:5a:95:c2:f7:2c:f0:
0b:26:51:a1:c6:f0:13:03:21:8e:c5:ae:1a:53:ca:
29:63:e4:8f:fa:2b:7c:bc:6b:f1:1d:59:b2:d2:c2:
7e:45:b8:6d:b4:4f:9b:35:09:c3:23:40:98:5e:3d:
6a:70:a1:a1:e8:40:a1:22:7a:1d:50:63:a5:66:59:
ba:9a:94:80:b7:8c:2b:d4:71:58:81:c8:49:ba:80:
bb:76:3a:47:93:1d:77:1b:99:e1:fe:c5:ce:38:b3:
e4:d3:5a:e9:f2:dc:da:e6:41:48:b2:0f:a0:f2:ab:
35:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:AA:FB:98:A4:CC:F2:A9:AA:51:B9:6D:39:77:14:13:13:EF:85:A1
X509v3 Authority Key Identifier:
keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:15:39:69:74:fd:1a:ec:49:79:fa:47:8b:ce:09:93:d2:f0:
5e:df:81:d2:a0:18:c7:32:b8:4b:b0:8d:7a:4f:f5:21:f3:ee:
fe:9e:37:c9:37:6e:65:57:cc:0a:ea:1d:0a:8e:09:8a:9a:c5:
c2:40:5c:6f:71:ff:61:a0:f8:16:75:c9:40:20:1b:e2:f2:c0:
d7:ce:42:54:1b:24:19:19:19:38:80:ac:cf:6a:d3:a2:68:73:
84:e6:f4:5e:e7:1e:9a:78:6e:eb:e2:c5:59:f4:b8:90:16:22:
db:51:b5:68:f7:81:90:ab:45:0e:5d:3f:4b:7d:6b:35:43:8d:
cc:12:d5:1e:c0:f7:ed:39:d2:8e:08:7c:2a:a0:66:81:70:40:
42:17:12:8a:69:c2:b0:6c:ff:82:8f:59:49:be:1a:93:4a:4a:
c4:fa:7a:1c:10:23:2f:41:29:b6:a8:7f:8f:3e:e2:65:5f:9b:
85:ca:1d:32:10:3b:0f:ad:b8:24:e1:93:de:70:c0:71:ab:98:
86:3f:8f:53:c2:93:a5:13:0f:f7:35:f1:70:a1:42:4b:18:53:
1a:08:34:1d:b8:33:d7:ef:a4:fd:50:54:98:87:0c:d8:3f:22:
14:b0:ed:6d:fd:74:94:8e:6e:1e:d6:d3:9d:8c:ba:46:99:a7:
8d:11:fa:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:42:52 2026 by rpki-client