Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json)
Hash identifier: HXk56mMNpC1dorSaDzYGgmzjP4fH4FyhXDiYZIfplsM=
Subject key identifier: 78:E0:7D:F2:5A:AB:E9:89:D4:B0:A9:0A:09:98:B4:0C:7D:CB:ED:13
Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc
Certificate serial: 019D26CD3E8F9B7B05ED4BFA36CF1389B7D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
Manifest number: 06A3
Signing time: Wed 25 Mar 2026 21:01:18 +0000
Manifest this update: Wed 25 Mar 2026 21:01:18 +0000
Manifest next update: Thu 26 Mar 2026 21:01:18 +0000
Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: xbDX9M64e2R8nPtTcWJ19ADHIIs+PSPFeCH2ddWZDuQ=)
2: nS12X_FMQVUUwkWnLYmgJW732kk.roa (hash: GXbiX9J7KWPFCiPzKs7zINZFOvfmZgRDxvmBON8Kk10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:3e:8f:9b:7b:05:ed:4b:fa:36:cf:13:89:b7:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc
Validity
Not Before: Mar 25 21:01:18 2026 GMT
Not After : Mar 26 21:01:18 2026 GMT
Subject: CN=78e07df25aabe989d4b0a90a0998b40c7dcbed13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f2:cd:38:3a:8f:fc:cc:0c:61:42:77:bc:f9:
4a:5d:50:7d:28:26:fc:f5:81:4c:ea:45:a6:41:29:
67:50:d5:91:75:7f:4b:a5:20:40:b9:b5:ee:e4:46:
fd:15:fe:ef:45:54:26:ad:2e:e6:29:c7:db:d5:ef:
d1:62:fa:1d:92:2a:87:d1:64:d2:ec:b7:fc:02:65:
0a:35:96:76:ad:4b:17:d9:f5:50:43:0d:28:5c:cc:
0e:12:c7:6a:d0:e8:91:5d:37:fe:b5:ae:79:fb:78:
13:89:80:53:fb:8a:2d:cf:c8:7c:cd:a2:2a:e5:b4:
94:b1:57:2f:7d:68:7c:c0:58:41:2a:f1:5f:a2:dc:
76:27:72:23:43:f3:ef:47:e7:aa:1f:0d:58:fc:dc:
ff:b7:c8:90:b6:a9:c2:c7:32:2e:89:a6:21:71:36:
f7:44:ff:3b:75:5c:15:51:cc:82:9e:a6:bb:13:72:
eb:98:79:a1:b0:28:76:3a:63:62:bb:f0:21:c7:81:
b7:83:2c:05:c7:90:16:4f:55:8e:a6:8c:c5:aa:13:
3c:90:26:68:dd:c2:91:27:92:c1:4e:2e:32:48:11:
e1:bd:66:f1:3e:d1:3d:81:82:d4:6e:7c:e6:b9:fe:
d0:43:73:30:16:ec:bf:2a:22:fa:b9:86:d7:fd:af:
fc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E0:7D:F2:5A:AB:E9:89:D4:B0:A9:0A:09:98:B4:0C:7D:CB:ED:13
X509v3 Authority Key Identifier:
keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:4d:35:31:15:7b:6d:cb:d0:e3:f0:42:d1:52:9d:2d:55:25:
12:fa:5a:6c:1f:a9:b1:10:61:a3:6a:41:ed:db:b8:63:25:87:
76:0e:35:f2:c7:92:5d:c8:17:19:5c:be:47:23:86:bb:7a:ce:
d1:46:57:13:5c:05:70:63:49:fd:57:44:2f:7b:e8:94:d6:07:
bc:78:e2:5a:4f:fe:7f:8b:35:c5:13:29:1c:63:6e:68:71:23:
c0:40:e8:56:ce:7a:02:4c:ed:0e:8d:68:f2:a2:bc:71:9d:38:
07:9f:84:8a:38:2b:91:00:36:94:2b:91:25:05:6b:2f:bd:2d:
43:2e:5f:ce:ae:6d:8f:08:02:29:c8:93:33:d4:45:48:ba:95:
6a:c1:1d:56:1b:da:40:4e:7e:df:2a:45:52:fc:3e:ca:8d:11:
27:18:27:22:7e:8b:93:4f:b3:db:31:48:12:a1:4b:47:6c:e6:
99:c7:ce:f3:5e:57:48:75:8b:7d:75:f5:4a:8f:2e:33:1c:28:
78:2d:35:dc:82:89:9a:1b:9c:b5:ec:b0:d7:d9:ea:b8:26:24:
0c:8d:18:f1:ef:59:05:5f:5b:c3:03:c7:3e:bd:10:27:a7:58:
1f:79:bb:20:83:48:b3:c6:e1:cc:21:06:38:a6:f7:b7:cb:76:
5c:80:90:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:42:50 2026 by rpki-client