Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
File: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft (raw, json)
Hash identifier: wkk4AVinX3pOSfMTNdDxCF9rBzPi2fmTd7gCU5fAKhY=
Subject key identifier: 7A:21:7B:37:66:71:3C:53:EB:EF:83:87:05:35:9F:CE:FF:98:44:90
Authority key identifier: 53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12
Certificate issuer: /CN=53bf98d53522aa957081fdec28b172084394f112
Certificate serial: 019E202437FBCF2DAF2EB02A6E7653BB7A6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
Manifest number: 111D
Signing time: Wed 13 May 2026 07:01:44 +0000
Manifest this update: Wed 13 May 2026 07:01:44 +0000
Manifest next update: Thu 14 May 2026 07:01:44 +0000
Files and hashes: 1: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl (hash: vDiWWdoQVHy9yaCnycY+ipgimH7RGevkZfnzVt3JKf0=)
2: mK9jBg2iFuywF6JUAww3mxKLxCU.roa (hash: lk8hbAdLVuILHrw42c6HMnMUPa/ZOyLXrol4InQSdq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:24:37:fb:cf:2d:af:2e:b0:2a:6e:76:53:bb:7a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bf98d53522aa957081fdec28b172084394f112
Validity
Not Before: May 13 07:01:44 2026 GMT
Not After : May 14 07:01:44 2026 GMT
Subject: CN=7a217b3766713c53ebef838705359fceff984490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:aa:72:f8:66:9c:fa:18:d5:4b:c1:26:bf:97:
78:9a:6b:c1:9b:6c:39:9b:37:8a:c0:56:4c:e7:bf:
c8:13:cf:ff:eb:c9:ea:25:88:ff:17:a8:5b:4a:71:
0e:03:27:b5:1e:ac:76:59:72:da:0e:e0:6e:7e:99:
fe:26:23:8f:8a:96:3e:2d:08:2c:90:4e:6e:28:ef:
d2:aa:30:a6:1d:8a:bc:bc:fc:28:78:5b:89:d3:da:
69:2c:b0:ce:48:4f:2a:34:a1:3b:6f:5d:8d:c2:f6:
01:4a:67:e0:f1:99:a3:ad:3e:84:d7:64:17:bb:1d:
92:84:e4:cc:e8:01:1a:35:f9:0f:20:1c:a3:92:83:
12:47:ba:e7:c9:25:47:7d:fe:9c:47:2d:ed:c4:ef:
58:a0:a1:15:b4:c2:f5:30:3d:df:10:ec:86:67:c3:
66:92:e3:96:d3:65:eb:c0:67:02:21:98:a4:fc:59:
27:d5:2e:ac:14:09:5f:10:a8:12:25:fb:b7:ed:c5:
85:97:dc:41:5f:af:af:3e:e8:58:a7:eb:19:18:26:
26:fc:12:33:2b:5d:af:88:7c:af:6c:57:13:dd:2b:
15:0f:1d:56:9e:95:a7:03:38:8d:4f:8e:fc:74:b7:
79:23:c7:a3:c5:09:26:2c:a9:7f:1b:ba:a7:02:59:
0f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:21:7B:37:66:71:3C:53:EB:EF:83:87:05:35:9F:CE:FF:98:44:90
X509v3 Authority Key Identifier:
keyid:53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:d2:3b:42:a1:0f:40:83:a3:ac:b2:ef:a2:47:c0:1a:be:8b:
f8:ba:e6:db:13:2c:ef:9d:d5:17:59:e1:3e:84:f9:46:93:a8:
3a:00:14:82:c5:91:5a:b9:45:e7:ff:4a:41:4b:2f:c5:55:aa:
a5:ec:19:59:0e:31:67:1d:af:35:bb:74:bb:1f:a1:8d:23:82:
a5:d2:74:8d:18:c6:85:d5:20:4d:72:65:3a:70:33:62:87:33:
9e:3a:36:a5:2b:40:53:b8:e8:32:ca:e5:c0:e3:23:2e:42:c7:
bc:2e:eb:65:ca:bd:02:c3:0d:c7:5d:92:b8:d2:95:4a:b3:99:
0a:7c:cc:aa:30:0b:0e:2c:95:4a:6e:ef:ac:e0:f9:ce:37:99:
71:a0:64:64:db:51:b5:60:cc:68:49:8e:6c:8b:b9:a9:7c:d3:
40:32:30:0d:b6:96:f1:36:24:88:c2:ae:ae:8f:98:27:e2:ec:
c3:e9:c1:8c:e9:3b:1a:fb:92:c3:29:92:ef:bd:cd:64:db:a4:
8a:05:20:ad:62:26:7a:78:49:8b:53:d6:0a:0d:f7:af:fe:c5:
9c:3b:1e:0b:19:ac:13:9c:bc:89:d0:dd:a2:2f:30:d1:8e:73:
04:dd:d3:41:d1:51:91:f1:a1:61:ad:b9:51:b9:54:36:08:ee:
08:81:c6:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:06:27 2026 by rpki-client