Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: 4EYDjRQQx+4kdMTpygtS4eiVT7SrBrlRlFOPPdR+cFc=
Subject key identifier: D4:DE:78:C1:6A:1C:27:3D:8A:9E:77:C1:BC:1F:80:FB:FC:A0:FC:FF
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 019D29CE16BD0AE5584F2685D5ECF18DFA65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0B13
Signing time: Thu 26 Mar 2026 11:01:05 +0000
Manifest this update: Thu 26 Mar 2026 11:01:05 +0000
Manifest next update: Fri 27 Mar 2026 11:01:05 +0000
Files and hashes: 1: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: OzV+GrVB9uArj0eJiEB2/oWQsetejMkhnWUsn2p0zCo=)
2: d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa (hash: pNguw2qBCLAYUuPZ0wVkI6YbP099kM2Xh8UMvqT4t9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:16:bd:0a:e5:58:4f:26:85:d5:ec:f1:8d:fa:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Mar 26 11:01:05 2026 GMT
Not After : Mar 27 11:01:05 2026 GMT
Subject: CN=d4de78c16a1c273d8a9e77c1bc1f80fbfca0fcff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:da:ea:4e:1e:c9:24:89:b3:33:36:34:e0:4b:
35:50:44:5d:29:e0:92:a2:95:16:00:49:a3:d9:c2:
5c:51:10:b9:d3:fd:38:d9:c2:60:19:fb:57:d0:08:
fb:30:e0:98:22:21:01:01:4d:d1:cc:4f:d1:bc:e8:
e7:b4:1c:8b:ec:a8:3a:b1:84:93:69:36:6a:ee:c7:
cb:33:65:cd:c8:96:35:98:a1:49:07:c1:5d:08:df:
c6:65:a5:b2:80:96:11:14:1e:38:10:2c:8f:3d:3f:
f4:00:b3:52:36:83:28:90:09:30:99:c7:5a:c8:49:
12:28:c9:66:90:84:61:56:91:66:66:44:8e:75:5e:
bf:37:dd:6d:3c:c1:76:97:53:db:47:46:c5:d1:69:
38:f6:7e:13:be:08:d4:88:e5:0b:db:10:b5:5e:d7:
09:5c:d8:7d:9b:4e:7b:02:ae:89:09:3c:b1:04:af:
00:ef:35:a7:c7:66:2c:42:41:bf:29:c8:bb:6c:d8:
09:b5:03:d6:6d:e8:b7:fe:2c:e7:e9:c9:53:24:94:
48:be:25:72:8c:3b:7a:14:79:78:3e:73:dd:02:64:
5a:0e:3d:f9:ab:50:9e:3b:39:28:7f:c5:41:e8:73:
04:f2:7b:0a:58:a4:a2:dd:64:a5:90:5e:e0:86:59:
4d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:DE:78:C1:6A:1C:27:3D:8A:9E:77:C1:BC:1F:80:FB:FC:A0:FC:FF
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:d8:46:1d:b2:fa:55:c9:06:ff:64:a7:4e:a1:5d:cb:c4:6c:
3c:1f:58:80:79:9b:4f:1a:84:12:e9:7a:f2:9b:08:bd:a7:c3:
74:84:42:ae:76:b1:a0:a8:d2:3e:cf:82:60:db:41:df:44:88:
de:ce:31:fb:9e:92:cd:50:3f:bc:a8:f3:ff:bc:5a:fe:8e:02:
4d:a5:4f:15:66:6c:a4:75:31:41:65:90:d3:05:1f:59:25:7c:
71:a3:6e:e3:52:77:07:70:0f:f9:b8:b4:cc:bb:bb:fc:32:b6:
b7:20:db:d6:8a:85:a8:84:f9:cd:3d:c6:ee:d4:09:b6:02:ae:
c0:f6:90:49:b7:15:d6:53:8f:0f:b5:f0:c9:9d:27:9f:34:90:
81:e7:7c:33:22:67:97:72:1c:ee:99:5a:e2:f8:47:61:87:2c:
11:cf:4b:35:fd:92:7b:f9:1d:a3:7d:82:6d:bc:f5:49:fd:f0:
6c:e6:ee:3d:34:71:76:72:d7:37:42:55:72:00:ee:84:df:ab:
db:09:97:78:1b:cf:7a:c7:8d:8f:09:d0:a1:ba:f7:31:bd:61:
76:cc:a4:a2:cd:db:a8:c7:1e:09:23:af:30:de:ab:fe:73:3b:
3b:47:b5:6a:ea:9a:94:e3:34:3a:c5:21:48:9c:26:66:b4:fc:
89:f9:99:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:43:34 2026 by rpki-client