Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
File: U_tSQvmM_53qm6qMiuRmpCtTfFw.mft (raw, json)
Hash identifier: bdUEm7/0eQGEUtYA9gIsBmw1Dj2f3ExDGZq7KE7KXxM=
Subject key identifier: 75:FD:02:4C:96:78:F6:0E:4A:22:82:CB:78:C6:D9:A5:F1:B8:96:A3
Authority key identifier: 53:FB:52:42:F9:8C:FF:9D:EA:9B:AA:8C:8A:E4:66:A4:2B:53:7C:5C
Certificate issuer: /CN=53fb5242f98cff9dea9baa8c8ae466a42b537c5c
Certificate serial: 019D28F1F98B3116637D2AEFE7A11C42FD8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_tSQvmM_53qm6qMiuRmpCtTfFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
Manifest number: 186C
Signing time: Thu 26 Mar 2026 07:00:39 +0000
Manifest this update: Thu 26 Mar 2026 07:00:39 +0000
Manifest next update: Fri 27 Mar 2026 07:00:39 +0000
Files and hashes: 1: U_tSQvmM_53qm6qMiuRmpCtTfFw.crl (hash: 7tbmWsxxNzn5Jor5G6WBQAYJtBBdLgdX63YIh3Mumvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U_tSQvmM_53qm6qMiuRmpCtTfFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f1:f9:8b:31:16:63:7d:2a:ef:e7:a1:1c:42:fd:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53fb5242f98cff9dea9baa8c8ae466a42b537c5c
Validity
Not Before: Mar 26 07:00:39 2026 GMT
Not After : Mar 27 07:00:39 2026 GMT
Subject: CN=75fd024c9678f60e4a2282cb78c6d9a5f1b896a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c3:01:0e:2d:e3:d0:cc:d3:14:30:60:07:0d:
f7:c0:8c:48:cc:5e:0f:86:a4:99:33:94:7c:eb:d4:
23:1c:6a:ab:49:f7:e9:b5:c1:88:27:9b:ad:45:5c:
c0:0e:9c:58:7f:02:40:bb:90:fc:68:57:55:cc:d6:
b4:a1:85:79:d1:fd:9e:35:ad:68:e9:b4:de:0f:6d:
3e:7d:27:e9:50:f4:49:ea:64:2c:5f:94:ea:cc:1c:
77:53:e5:8c:a8:fa:d4:d6:4f:6c:f8:18:93:2e:3b:
43:8a:f0:15:9e:4a:78:db:a6:a4:56:71:68:9f:e1:
b0:65:a6:19:e7:b5:44:af:0f:68:34:ff:73:ca:d2:
f2:9e:38:2c:fb:3e:df:35:c3:03:1a:35:08:5c:67:
a3:24:61:c5:de:00:2f:b8:6e:f3:a0:e6:d4:74:65:
95:2e:8c:f6:03:c0:d0:ca:76:1e:25:4e:c6:c1:84:
a7:23:6a:ee:56:40:13:75:d4:12:6d:0d:57:3c:f6:
63:ab:71:87:97:13:09:70:94:b4:9c:1d:3c:b5:94:
79:b3:31:8f:49:8b:a2:6f:e1:22:de:9a:50:7d:2f:
59:76:62:2a:36:b1:e2:23:05:64:d0:3c:66:74:46:
4e:c3:88:da:4f:6f:b8:99:0e:64:c6:24:aa:0b:8e:
a2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:FD:02:4C:96:78:F6:0E:4A:22:82:CB:78:C6:D9:A5:F1:B8:96:A3
X509v3 Authority Key Identifier:
keyid:53:FB:52:42:F9:8C:FF:9D:EA:9B:AA:8C:8A:E4:66:A4:2B:53:7C:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_tSQvmM_53qm6qMiuRmpCtTfFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:52:c9:39:42:f3:53:f8:3c:aa:3e:36:a5:b8:bc:a5:ac:d8:
d3:14:f6:53:66:e4:49:b0:18:d7:2a:ba:e4:d7:1e:18:1e:d6:
48:03:86:f3:3e:7e:a2:e6:64:c4:58:db:08:84:ca:5c:92:0b:
33:5e:9b:00:10:50:77:c4:4e:55:58:ed:fc:dd:b0:5a:7a:66:
b8:b9:c9:90:16:85:00:64:0e:df:e3:bc:4a:5f:47:0c:be:28:
4b:cc:c8:f7:52:ac:43:06:5e:85:39:f6:3c:6e:8a:f0:17:6a:
d5:b6:88:11:1e:71:4c:cd:85:72:85:06:3b:a3:ab:41:f2:9d:
7e:65:48:2a:1a:24:5d:1c:bf:15:e8:1e:0f:6d:21:1f:ee:1a:
01:47:29:06:6e:0e:19:c9:b5:7c:d8:1f:c5:0f:36:39:17:2f:
38:b6:4b:f6:71:47:19:00:52:81:2b:40:11:04:81:c8:0e:b7:
01:65:5b:48:7e:40:3e:d6:c2:97:73:39:4e:ad:c4:12:65:75:
2b:e4:e0:7b:20:2f:03:47:8d:8c:6f:5a:64:96:03:65:ef:89:
01:0d:74:17:32:30:91:87:5d:d9:66:88:01:3b:71:80:38:54:
00:d5:79:cb:87:d7:be:1b:9d:4e:08:d8:ad:16:be:24:06:a2:
8a:a0:eb:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:53:43 2026 by rpki-client