Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
File: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft (raw, json)
Hash identifier: ZxWcxoz0h52/V5d9bXRKrBFfvbWJ2X5wRgNdKN+zU+8=
Subject key identifier: 42:C6:E4:22:C9:6C:B5:E0:FB:B3:51:12:C3:76:FD:FF:0D:50:A4:3D
Authority key identifier: 53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12
Certificate issuer: /CN=53bf98d53522aa957081fdec28b172084394f112
Certificate serial: 019D2703FB67E3834A84D6CC229C4DF922F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
Manifest number: 109C
Signing time: Wed 25 Mar 2026 22:01:05 +0000
Manifest this update: Wed 25 Mar 2026 22:01:05 +0000
Manifest next update: Thu 26 Mar 2026 22:01:05 +0000
Files and hashes: 1: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl (hash: ZWHtGcdP+HQntYMIQiXcx49V9ehS98veV097zOMcfc4=)
2: mK9jBg2iFuywF6JUAww3mxKLxCU.roa (hash: lk8hbAdLVuILHrw42c6HMnMUPa/ZOyLXrol4InQSdq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:fb:67:e3:83:4a:84:d6:cc:22:9c:4d:f9:22:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bf98d53522aa957081fdec28b172084394f112
Validity
Not Before: Mar 25 22:01:05 2026 GMT
Not After : Mar 26 22:01:05 2026 GMT
Subject: CN=42c6e422c96cb5e0fbb35112c376fdff0d50a43d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7e:ae:da:59:26:84:01:b8:82:08:ad:7f:16:
9b:96:12:e2:0b:59:0d:82:22:09:4c:85:06:e3:d6:
91:24:1a:d8:75:e5:b5:ae:6b:93:af:ec:f4:32:46:
7c:6f:f6:79:6a:42:6f:07:31:02:b3:11:91:5a:4a:
e6:a5:95:54:ac:d0:62:2b:89:cb:8d:aa:77:6b:38:
56:42:82:f5:f0:4e:29:0b:10:cb:d5:6f:e9:76:f6:
0a:0b:f1:f9:c3:e2:28:6a:8a:3c:e9:bf:4f:4a:42:
ae:42:f6:2a:3e:67:7a:e8:05:14:c5:ee:e3:fa:66:
29:18:82:3d:96:e3:58:8e:53:d2:70:b6:a9:20:b9:
db:66:8d:89:51:f0:97:5f:23:15:ad:b6:34:93:3e:
09:e4:b6:ab:5e:d2:c2:53:a6:c0:0a:98:3f:b4:38:
95:a6:70:27:67:dc:1a:cd:2c:9e:94:d7:db:62:d1:
94:3d:4f:a1:9f:99:37:c2:02:36:bc:cd:b7:3e:e5:
96:3a:10:22:d9:a1:e6:40:60:67:9b:c1:cb:34:7c:
a7:13:65:73:da:26:57:f4:dd:94:c1:bc:af:ae:ed:
83:45:3f:fb:a9:5e:68:f7:b2:04:82:b1:16:da:df:
9a:67:be:70:00:af:59:be:6b:14:0e:af:8c:99:9e:
38:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C6:E4:22:C9:6C:B5:E0:FB:B3:51:12:C3:76:FD:FF:0D:50:A4:3D
X509v3 Authority Key Identifier:
keyid:53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:7e:84:9e:7d:c5:c0:f1:16:2f:c3:fb:2f:c8:1b:14:59:67:
40:0e:9f:a1:1c:b9:b0:35:9c:4f:d6:55:49:12:c5:e0:c6:12:
b5:ea:58:f6:2d:21:93:78:de:df:8c:ca:c7:4d:e0:c5:61:31:
1c:41:fe:20:72:14:6d:ea:dd:dc:15:02:48:f1:dd:e9:4b:be:
5f:d9:51:72:02:3b:ad:a2:16:9b:bc:5f:93:63:49:f1:5d:a8:
c9:d7:69:a9:43:94:04:f2:8b:8c:01:b4:dc:e2:59:71:aa:40:
47:43:c7:14:e1:d6:ee:15:08:b0:13:81:f6:d1:2e:f3:ec:3d:
4b:fd:76:70:a9:9e:06:43:6c:ba:d9:7d:44:14:22:8a:7f:41:
9c:34:e3:0e:6e:e2:51:59:a8:3f:39:5c:4b:31:69:47:46:75:
c7:7f:d9:c9:66:6c:56:9a:b5:53:37:24:2c:2a:a0:6a:b1:96:
bd:b0:ef:64:7d:5a:f7:f5:dd:5a:9a:d9:c6:80:47:92:cd:fe:
53:85:cd:b9:62:a7:35:f9:b2:30:09:be:bd:1f:4a:3f:3b:21:
47:5c:3b:79:c3:90:d3:5b:a2:8f:57:c2:2b:71:1d:ae:ec:16:
9b:7b:dd:07:1d:a9:06:a4:d9:96:8c:a6:f5:0c:64:ea:a6:67:
42:72:55:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:38:42 2026 by rpki-client