Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json)
Hash identifier: w592xmJ5MHNv14rcXWgmF5jHUxT5hFO6jJzy/nMeUHU=
Subject key identifier: 35:A3:15:94:20:6E:6D:70:9A:83:80:65:78:6C:71:6D:28:14:7D:01
Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc
Certificate serial: 019E1DFE6266191894213EE7802E5D11FD9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
Manifest number: 0723
Signing time: Tue 12 May 2026 21:01:10 +0000
Manifest this update: Tue 12 May 2026 21:01:10 +0000
Manifest next update: Wed 13 May 2026 21:01:10 +0000
Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: DvCfz9RaMH6pCOS1X0C/gAUzvQ+y7aLvLx59WvBzx30=)
2: nS12X_FMQVUUwkWnLYmgJW732kk.roa (hash: GXbiX9J7KWPFCiPzKs7zINZFOvfmZgRDxvmBON8Kk10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:62:66:19:18:94:21:3e:e7:80:2e:5d:11:fd:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc
Validity
Not Before: May 12 21:01:10 2026 GMT
Not After : May 13 21:01:10 2026 GMT
Subject: CN=35a31594206e6d709a838065786c716d28147d01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6f:67:7e:bc:76:d9:ef:eb:a5:b2:e9:ee:d6:
be:86:0a:e5:2f:e3:5c:64:38:74:7c:9a:48:4c:44:
3b:b7:49:03:39:b4:5f:7f:bb:e3:4e:2b:05:c5:75:
e1:de:22:68:28:a5:ec:28:1a:c1:0f:35:43:86:88:
69:61:95:18:97:2e:39:05:f1:0c:4f:29:d8:c3:98:
a2:47:45:e0:c8:72:80:24:80:04:88:bb:e4:c0:49:
48:48:23:66:e2:41:d0:70:8f:76:b9:0f:d2:f7:70:
9c:7b:21:b8:76:89:25:50:1a:41:4f:87:be:de:c3:
d5:3e:a2:1c:1f:59:f8:a4:6e:71:05:a9:3f:59:86:
86:cd:04:07:f4:e3:fc:f1:79:e6:cb:85:c1:ef:3c:
5a:0f:ca:81:23:35:28:2a:87:a8:58:d9:0e:93:08:
d6:79:76:aa:ac:9c:d9:a6:d0:99:b6:8d:08:e5:03:
2e:c1:3f:ae:d7:3c:78:5d:ea:37:6f:39:94:d5:99:
a5:83:dd:f6:ab:c8:51:65:bd:40:b4:05:dc:a8:e5:
94:59:0b:65:87:01:0d:c4:a5:fc:48:ce:80:f0:88:
c0:3f:3d:59:7e:77:30:bf:9d:be:cd:cd:24:76:18:
35:81:20:3f:00:6a:38:87:36:90:81:c5:ad:90:ee:
dc:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A3:15:94:20:6E:6D:70:9A:83:80:65:78:6C:71:6D:28:14:7D:01
X509v3 Authority Key Identifier:
keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:00:01:cf:e2:fb:fe:b4:56:6c:c8:8f:65:f1:61:e9:8b:9d:
8f:2c:0e:58:1c:f4:7e:c5:58:f0:12:90:6b:9a:7b:84:b1:10:
8a:7a:20:41:0a:c2:0d:b3:eb:d7:c4:68:f9:0d:2c:b8:b6:53:
d4:0d:f9:2e:5b:63:00:6a:05:5b:13:71:65:56:ce:7a:3b:48:
93:66:fe:0c:68:84:90:99:b0:90:a9:f1:0b:a3:f8:46:64:3e:
35:c6:5e:8d:12:3b:ad:f4:97:67:61:cb:bb:60:5b:8f:de:cc:
b0:d0:ed:9f:ab:33:16:6a:e1:67:02:e5:22:5f:50:79:2f:a9:
72:89:67:10:29:f8:89:e1:18:67:a2:28:4d:a9:9b:68:70:65:
47:72:8c:a2:22:6a:ac:b5:fc:a9:8b:61:fc:74:50:1f:c6:f6:
e4:c7:c5:58:8a:87:66:bd:a4:24:53:5a:a5:97:f9:18:52:11:
35:59:34:ab:11:6c:5b:2a:e2:61:48:a1:ce:21:b1:50:8e:b2:
49:d4:e0:d4:af:d7:ce:92:ea:33:42:b2:6e:3c:01:11:93:90:
77:e4:30:ae:05:65:4b:09:0c:d1:0a:b9:2f:31:34:d3:43:35:
aa:1e:0d:da:5f:c2:b3:2b:5c:e1:3f:82:00:a8:9c:19:49:19:
03:7f:4f:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:36:35 2026 by rpki-client