Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
File: U1ULI4LgD6ffGU5khf4UJYNiE_8.mft (raw, json)
Hash identifier: CAyW5tVxwNqRyLvsvcwgxdjTNU21REfRV498a4mzBX4=
Subject key identifier: 2C:D6:C8:B2:B5:EE:72:F4:83:52:95:85:88:B3:59:CF:FA:62:13:DF
Authority key identifier: 53:55:0B:23:82:E0:0F:A7:DF:19:4E:64:85:FE:14:25:83:62:13:FF
Certificate issuer: /CN=53550b2382e00fa7df194e6485fe1425836213ff
Certificate serial: 019CAE350E3FFE2B06EA9BB5B26E089C1B87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1ULI4LgD6ffGU5khf4UJYNiE_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
Manifest number: 0FE4
Signing time: Mon 02 Mar 2026 11:00:38 +0000
Manifest this update: Mon 02 Mar 2026 11:00:38 +0000
Manifest next update: Tue 03 Mar 2026 11:00:38 +0000
Files and hashes: 1: 3_TF1Jd76sN3QxPbPepv9qZrq6c.roa (hash: ML2ZijwEfiwVvzhcT4qRWRAEYKvPQK5MksfX4SSNLgQ=)
2: U1ULI4LgD6ffGU5khf4UJYNiE_8.crl (hash: kPtfev6bZZ9BdwZWz2c06B2am539/RG9EhQ8P731T/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1ULI4LgD6ffGU5khf4UJYNiE_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:0e:3f:fe:2b:06:ea:9b:b5:b2:6e:08:9c:1b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53550b2382e00fa7df194e6485fe1425836213ff
Validity
Not Before: Mar 2 11:00:38 2026 GMT
Not After : Mar 3 11:00:38 2026 GMT
Subject: CN=2cd6c8b2b5ee72f48352958588b359cffa6213df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ea:1f:d8:6a:b6:b8:65:32:ba:29:aa:26:d0:
c2:e2:89:bf:8a:b3:14:7b:ef:41:89:bf:df:33:17:
46:37:0c:a0:c5:33:1d:a7:46:16:a9:08:35:43:97:
57:b5:a3:99:5b:5a:56:14:ce:82:bf:f3:c7:7c:07:
41:f0:dd:3c:70:bb:55:e2:ff:f5:86:d5:1e:dc:a1:
a8:b7:11:55:f9:fc:2b:ec:56:6c:de:c7:92:54:c1:
67:cf:85:3f:cc:19:0f:d3:0d:0c:d0:e3:72:5c:ce:
dc:ae:34:00:59:e0:6e:20:f0:65:e8:69:49:4b:42:
c9:ee:2f:d3:20:d5:27:e1:41:cc:25:c6:ac:6e:ad:
21:1a:ef:16:80:29:3c:a9:39:4f:dd:24:2d:d7:e7:
75:98:48:9c:9b:8c:12:5c:42:0c:cf:9b:ca:68:01:
c4:be:21:c0:7f:fc:99:10:b6:a3:fa:d2:ba:36:a5:
25:5f:21:f8:80:5e:9c:48:72:71:18:08:ed:c8:8f:
f5:41:07:b9:3c:77:ee:0c:1d:50:c8:bf:9b:ab:20:
8c:58:5a:bf:13:a6:06:3a:34:41:ce:f3:5b:e2:51:
e4:cb:74:38:04:61:ea:0d:ef:92:fa:49:8e:79:36:
af:d2:00:a8:c2:45:36:1a:cf:ff:72:27:de:f9:57:
4c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D6:C8:B2:B5:EE:72:F4:83:52:95:85:88:B3:59:CF:FA:62:13:DF
X509v3 Authority Key Identifier:
keyid:53:55:0B:23:82:E0:0F:A7:DF:19:4E:64:85:FE:14:25:83:62:13:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1ULI4LgD6ffGU5khf4UJYNiE_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:96:30:70:0f:49:af:f6:44:67:25:01:07:87:5e:ee:3a:25:
db:ca:38:86:92:c3:90:b5:28:4d:a7:1f:31:f5:41:f3:78:a1:
9a:f6:72:da:fb:a8:fe:6e:72:11:cd:e9:68:36:b0:0c:a5:98:
fb:ea:35:45:7b:25:8d:05:ec:80:e8:98:df:85:79:ef:1f:b7:
20:af:d7:c5:38:cb:fc:97:e3:89:aa:1c:b6:31:cb:af:b0:5d:
e7:79:f7:dd:d6:e5:10:f6:0d:fe:28:50:87:50:fe:cb:1b:da:
a4:c2:35:5a:05:fd:56:84:1b:44:b2:e1:3e:02:b1:ff:b6:b4:
1f:47:98:fe:90:d2:af:8c:5e:8e:5e:79:2c:61:ab:a7:f4:af:
8e:7c:c7:f1:73:5d:8e:ed:b4:2b:85:44:5e:2d:48:98:67:5d:
fb:fd:9e:90:e0:39:25:57:48:0f:ec:54:ca:93:cb:cc:71:6c:
26:8d:6c:47:03:da:47:fb:9a:2a:0d:97:76:17:37:68:73:16:
45:03:c6:77:63:6c:62:4e:29:64:d6:80:43:22:0a:09:dc:b4:
43:8b:c4:15:5c:16:d5:b3:10:b6:69:e2:5e:ff:a2:2b:6e:d2:
53:b5:28:f9:e9:92:bc:21:d3:8b:27:16:85:8f:4f:6b:1c:67:
09:7e:36:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:41:25 2026 by rpki-client