Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
File: U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft (raw, json)
Hash identifier: 5fvLGhTLcXLl44FNpZEkUZ26vtsy/IoGczu5zn4gAk0=
Subject key identifier: 99:4F:3B:0A:72:29:9F:EC:76:30:6B:E9:AB:2A:4D:79:DA:5E:B8:62
Authority key identifier: 53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
Certificate issuer: /CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Certificate serial: 019D322BC18C1FAA4B67842379FF987D9890
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
Manifest number: 0CC0
Signing time: Sat 28 Mar 2026 02:00:21 +0000
Manifest this update: Sat 28 Mar 2026 02:00:21 +0000
Manifest next update: Sun 29 Mar 2026 02:00:21 +0000
Files and hashes: 1: Bopny7bI2jlfU67WynG1VqqZeys.roa (hash: VYcCPfl7fJTQ6gIXXd+kulaQjydxkXZtJ5KExsSYNb8=)
2: U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl (hash: lDzO0iVZ9LjlUjWFjJLaV05e/FzDRJdfcFeZxtl5cao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 02:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:2b:c1:8c:1f:aa:4b:67:84:23:79:ff:98:7d:98:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Validity
Not Before: Mar 28 02:00:21 2026 GMT
Not After : Mar 29 02:00:21 2026 GMT
Subject: CN=994f3b0a72299fec76306be9ab2a4d79da5eb862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f3:78:60:3d:cf:aa:e8:6b:b6:99:3c:fa:bd:
6f:bc:fd:b9:54:6b:65:7d:55:a6:32:87:39:09:e8:
9f:0c:16:66:59:fc:fa:07:93:8a:19:29:0e:39:b9:
73:81:06:83:04:e7:d7:21:25:f6:77:9d:ff:46:13:
4d:bb:f9:46:9d:d2:ce:e2:74:ef:f2:ea:05:46:68:
90:cc:e9:05:5b:a0:7c:a9:91:96:28:a4:af:dc:f5:
37:ac:82:36:e4:80:3d:33:6b:89:05:e2:46:2e:38:
25:c3:3e:df:2a:bc:05:fb:3e:43:45:b2:66:29:39:
79:69:6d:eb:c5:ed:0e:74:33:d0:89:b2:48:04:fc:
5e:b2:f4:08:ad:41:47:6e:c2:6f:44:0d:6c:4b:87:
7f:54:36:78:9f:16:ce:1f:b5:60:d4:a3:e2:d0:18:
c8:54:5e:e8:1c:27:9c:dc:b9:c8:d4:d9:09:95:f5:
37:03:d7:51:ff:f5:e8:ec:74:de:8b:c9:18:56:00:
27:e1:10:ca:7c:62:da:86:01:86:8b:a2:c7:7f:69:
1a:c1:49:12:2b:f8:d4:85:34:1b:ea:16:c7:ae:21:
57:e5:26:dc:ad:ac:24:30:4f:25:80:bb:fc:65:34:
6c:02:49:bb:9e:07:d6:2e:66:f6:4b:a4:41:2d:4c:
9b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:4F:3B:0A:72:29:9F:EC:76:30:6B:E9:AB:2A:4D:79:DA:5E:B8:62
X509v3 Authority Key Identifier:
keyid:53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:9c:ac:3e:35:5d:8c:7d:27:91:c1:12:69:1f:8c:9b:c0:8c:
04:09:58:60:61:da:50:42:dd:c2:37:6a:5d:07:23:60:12:7d:
ca:d4:8d:9f:7d:e0:43:7a:d4:8e:de:c9:11:e2:db:37:75:96:
ba:f1:5f:48:31:28:14:8e:33:07:4a:bd:f1:f2:57:f4:70:f7:
fc:22:75:62:ba:ca:84:f8:60:84:ce:fa:e7:3b:7e:f3:02:f4:
64:bf:8d:4e:83:66:cf:53:0f:08:dc:1e:d7:b8:2f:be:36:b8:
a2:aa:d1:eb:d0:bd:63:4f:e2:15:99:99:46:5d:58:69:be:8d:
1f:a4:3e:40:fe:aa:ba:c1:51:dc:da:21:6a:0c:ab:32:78:4d:
ec:07:ea:bb:97:15:49:8c:22:81:8e:80:5f:27:74:e9:56:d1:
46:0a:9e:a4:8d:60:6b:c6:cf:ab:79:28:bb:47:79:f9:23:4f:
ed:64:fd:14:77:54:d2:72:65:ea:4d:0b:02:2f:15:e4:98:11:
1f:06:57:23:22:8b:74:f9:68:ff:92:b7:7f:67:b2:19:40:f4:
7b:44:18:25:73:90:6d:fe:69:f6:c9:8d:af:1f:20:d1:4e:19:
cd:83:a3:d4:06:7c:ca:4a:58:b1:fb:e3:0e:a9:f9:45:de:9e:
59:d6:0b:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0yK8GMH6pLZ4Qjef+YfZiQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzNzk5NTYwNDUzZGNmNGFmMzFmOWIyYTQwY2QyMzhiODQ1
N2M1ZGUwHhcNMjYwMzI4MDIwMDIxWhcNMjYwMzI5MDIwMDIxWjAzMTEwLwYDVQQD
Eyg5OTRmM2IwYTcyMjk5ZmVjNzYzMDZiZTlhYjJhNGQ3OWRhNWViODYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuPN4YD3Pquhrtpk8+r1vvP25VGtl
fVWmMoc5CeifDBZmWfz6B5OKGSkOOblzgQaDBOfXISX2d53/RhNNu/lGndLO4nTv
8uoFRmiQzOkFW6B8qZGWKKSv3PU3rII25IA9M2uJBeJGLjglwz7fKrwF+z5DRbJm
KTl5aW3rxe0OdDPQibJIBPxesvQIrUFHbsJvRA1sS4d/VDZ4nxbOH7Vg1KPi0BjI
VF7oHCec3LnI1NkJlfU3A9dR//Xo7HTei8kYVgAn4RDKfGLahgGGi6LHf2kawUkS
K/jUhTQb6hbHriFX5SbcrawkME8lgLv8ZTRsAkm7ngfWLmb2S6RBLUybpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJlPOwpyKZ/sdjBr6asqTXnaXrhiMB8GA1UdIwQY
MBaAFFN5lWBFPc9K8x+bKkDNI4uEV8XeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTNtVllFVTl6MHJ6SDVzcVFNMGppNFJYeGQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9kODc3MWEtZTc1My00MDZjLWExZDgt
MzlhYjc3YjgzM2VhLzEvVTNtVllFVTl6MHJ6SDVzcVFNMGppNFJYeGQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9kODc3MWEtZTc1My00MDZjLWExZDgtMzlhYjc3YjgzM2Vh
LzEvVTNtVllFVTl6MHJ6SDVzcVFNMGppNFJYeGQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ5ysPjVd
jH0nkcESaR+Mm8CMBAlYYGHaUELdwjdqXQcjYBJ9ytSNn33gQ3rUjt7JEeLbN3WW
uvFfSDEoFI4zB0q98fJX9HD3/CJ1YrrKhPhghM765zt+8wL0ZL+NToNmz1MPCNwe
17gvvja4oqrR69C9Y0/iFZmZRl1Yab6NH6Q+QP6qusFR3NohagyrMnhN7Afqu5cV
SYwigY6AXyd06VbRRgqepI1ga8bPq3kou0d5+SNP7WT9FHdU0nJl6k0LAi8V5JgR
HwZXIyKLdPlo/5K3f2eyGUD0e0QYJXOQbf5p9smNrx8g0U4ZzYOj1AZ8ykpYsfvj
Dqn5Rd6eWdYL+w==
-----END CERTIFICATE-----
Generated at Sat Mar 28 12:12:49 2026 by rpki-client