Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
File: UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft (raw, json)
Hash identifier: KxIPMBz+9JUMTciXeu9iaJvU6OBMqYvGVbWdWGIMDKs=
Subject key identifier: 3C:47:D0:3F:0E:36:42:58:16:C2:DB:5C:E1:B2:0D:6A:E6:96:98:37
Authority key identifier: 52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
Certificate issuer: /CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Certificate serial: 019E1ED9A7AD0C111854E2D4983F0A08127A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
Manifest number: 16E3
Signing time: Wed 13 May 2026 01:00:41 +0000
Manifest this update: Wed 13 May 2026 01:00:41 +0000
Manifest next update: Thu 14 May 2026 01:00:41 +0000
Files and hashes: 1: UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl (hash: 8U2dFSuspr0WcrOWzr6f1p1yrcJNzxQqTZ0SOcK3jRs=)
2: eFoLkSuYHSfJyZWDzIUZu8IRO1o.roa (hash: dD85celI+xdv/VzLzNSyQVejNzZ7b5z/nWIX6tyr6xc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:a7:ad:0c:11:18:54:e2:d4:98:3f:0a:08:12:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Validity
Not Before: May 13 01:00:41 2026 GMT
Not After : May 14 01:00:41 2026 GMT
Subject: CN=3c47d03f0e36425816c2db5ce1b20d6ae6969837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8c:0c:31:79:b3:dc:17:0d:d0:7c:c7:0d:5e:
80:75:05:86:ff:1a:2b:f8:6d:59:9d:e1:1c:27:1a:
88:b7:cc:ca:02:a4:23:38:5c:fe:bc:58:82:e5:20:
66:40:4c:86:56:3f:e8:d0:fe:8a:e8:3a:92:9e:d6:
d7:01:55:6e:b9:4a:41:91:ac:06:09:23:0a:0b:f9:
98:6a:79:1e:e8:eb:ce:40:68:89:13:e9:fc:29:08:
4b:00:6b:89:67:c4:03:b2:3c:96:96:8f:7b:48:d6:
08:28:f0:26:e9:21:be:81:c0:57:f0:b0:48:79:83:
68:51:88:d6:6d:3e:1c:e4:a7:d1:42:a2:40:77:67:
40:f8:10:b3:21:94:bb:4f:63:e9:e8:25:e7:45:22:
7c:93:65:02:6c:08:a3:71:79:02:35:3e:da:cf:ef:
6f:42:a3:d8:0b:e4:54:c0:df:3e:e3:02:e9:30:ae:
08:81:85:e1:4d:38:e1:30:1b:6c:96:2e:42:72:28:
5d:86:5e:13:e4:40:8b:a3:98:48:a9:8f:6b:06:55:
20:3a:ab:c5:c6:67:cc:49:a7:a9:4a:51:f3:76:b5:
a4:4f:0b:ed:82:23:13:ab:a4:9a:b6:f4:6c:ad:01:
a9:4c:1d:d5:73:80:9a:f6:07:00:b3:d7:2d:9c:2e:
8f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:47:D0:3F:0E:36:42:58:16:C2:DB:5C:E1:B2:0D:6A:E6:96:98:37
X509v3 Authority Key Identifier:
keyid:52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:8f:d4:45:11:73:16:cf:98:ca:b2:a2:e5:52:b9:55:0e:43:
b9:2b:11:ea:55:af:77:76:02:98:57:ba:ba:cc:78:b0:6e:75:
c4:e6:60:fb:c6:60:56:dc:26:76:b2:ec:06:af:31:4d:b9:68:
80:d1:3b:53:9a:8b:40:4b:db:b5:60:bc:77:6c:69:42:3a:91:
80:b5:49:72:47:02:10:f0:36:9a:33:ae:cc:fd:c4:0c:c2:76:
11:43:56:ae:e3:40:30:a4:20:c0:53:c6:69:18:79:7f:9d:cb:
66:bd:33:cb:be:d2:3e:64:16:6b:95:fd:74:b3:72:4a:c4:41:
ac:8c:58:76:8c:28:cf:00:fa:93:09:21:4d:94:91:44:42:04:
3f:19:c8:13:14:f3:05:e1:36:f7:d1:44:55:b8:53:e4:53:28:
9a:fe:89:3d:95:d5:db:b9:49:f8:a3:56:0a:c6:31:41:66:3a:
75:7d:7a:fa:fd:7a:eb:74:9f:fb:13:c5:0e:78:29:0b:cf:d8:
b5:2f:6b:6c:68:dd:4d:1e:06:97:51:d2:4a:c6:9f:0a:97:fb:
72:db:57:df:ad:ce:20:0a:65:4d:b3:38:3c:3d:01:38:b4:40:
15:4d:54:39:5e:78:b3:ae:7e:8a:b7:90:b3:37:ff:4c:43:95:
dd:22:81:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:04:48 2026 by rpki-client