Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
File: U1vkU3bViYdFK9Bka5p0z562yy0.mft (raw, json)
Hash identifier: GEov07rNeNm6iRHAQE3nFhe/HneBcI1FOAlycHOt7VA=
Subject key identifier: 3C:C6:62:F3:CF:C4:EF:CB:DE:34:D3:AF:3E:34:60:47:D0:A1:78:3D
Authority key identifier: 53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
Certificate issuer: /CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Certificate serial: 019D2583929A89CFADB08C6F43045B23C4CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 15:01:12 +0000
Manifest this update: Wed 25 Mar 2026 15:01:12 +0000
Manifest next update: Thu 26 Mar 2026 15:01:12 +0000
Files and hashes: 1: U1vkU3bViYdFK9Bka5p0z562yy0.crl (hash: 5sjb1CBloCyD5rsxUKA+cOl53PmkZIQf4s/C2a+Dl/8=)
2: yAmajTNIGB30RaNnDKHZKbNV084.roa (hash: AvmPyTEQGMbZs2CFL6VyUeUgqUB6djXcQ6A/Qc+SDAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:92:9a:89:cf:ad:b0:8c:6f:43:04:5b:23:c4:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Validity
Not Before: Mar 25 15:01:12 2026 GMT
Not After : Mar 26 15:01:12 2026 GMT
Subject: CN=3cc662f3cfc4efcbde34d3af3e346047d0a1783d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ca:0b:01:cb:44:4e:a0:09:e1:28:96:43:e2:
3f:5a:76:e1:ff:77:ab:3f:6f:2b:4a:80:03:ad:93:
01:cd:58:fa:81:80:fd:1b:a7:0b:15:04:ad:dc:99:
4b:73:7a:b8:76:96:48:7d:18:df:01:93:0b:4d:46:
18:c7:54:b8:cc:54:08:4f:f8:c0:75:f7:23:8a:69:
5e:16:ec:0c:b8:00:62:9a:e2:25:57:be:c5:c7:55:
07:eb:72:79:31:ed:ef:04:ae:bf:0d:3c:48:cc:1e:
79:4e:9e:d4:a6:63:16:41:1f:48:46:89:2a:74:92:
c6:ce:c9:ab:e4:b8:05:9b:76:f8:c6:21:fc:fe:57:
75:d2:a1:27:d2:b8:2f:ac:28:63:64:4f:52:ab:13:
6a:e5:35:bb:21:1b:57:8a:c4:28:10:67:90:8d:c5:
5b:88:d1:65:5f:69:22:95:ac:8a:c6:ad:be:e6:4a:
35:e4:0e:7d:ca:0b:55:bd:27:da:a8:cb:9b:e1:f2:
a1:3a:bb:95:69:c9:3d:c4:42:0e:b2:0b:0a:99:98:
03:cb:df:68:b5:a6:a6:cc:f5:e2:0c:d9:aa:9d:cb:
de:f7:99:b2:65:7a:49:2f:69:14:a1:ad:23:e6:52:
a4:24:64:2d:38:0c:6f:4a:88:14:15:ae:a1:17:87:
76:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C6:62:F3:CF:C4:EF:CB:DE:34:D3:AF:3E:34:60:47:D0:A1:78:3D
X509v3 Authority Key Identifier:
keyid:53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:dc:1e:96:64:5a:2a:26:20:7e:d3:2c:f6:3c:fd:6e:f4:47:
41:8e:dc:95:f0:e5:74:1e:0d:cd:7a:ae:21:d9:72:a2:5d:04:
df:76:36:0c:c0:d0:fe:78:23:2a:7e:f0:dc:8b:26:1b:19:4c:
0f:e8:31:de:45:f4:6b:af:40:1d:7c:4c:c3:60:2c:1c:14:77:
09:cb:94:bc:63:a4:f8:9a:93:20:64:fb:c0:c5:c6:43:f9:e5:
d0:30:81:ee:7d:84:57:0f:57:b8:b9:c0:c6:20:7a:a9:3e:04:
1c:31:3a:9b:40:c2:a1:eb:83:39:b2:78:29:67:d7:c9:c1:65:
d5:e6:5f:8e:9b:f3:e7:e5:2f:08:4c:c0:36:63:26:b6:c7:3c:
76:17:a7:56:b0:34:7b:b8:75:cd:ad:70:23:6f:0d:46:da:93:
04:8d:6d:ca:3f:06:76:d4:0f:bd:05:bb:58:01:2e:32:f4:3c:
01:26:ac:08:65:19:70:c0:63:0c:c0:3d:11:3d:22:7c:14:fc:
9e:5b:c9:f4:7c:a2:3e:6a:3b:82:62:be:49:bf:50:4d:27:b5:
63:9e:d5:64:54:a8:78:2b:e6:7a:ee:1a:fe:56:78:ba:e5:27:
53:5b:0b:db:cd:20:6d:b7:cd:e6:95:f6:d9:35:ad:d6:d9:3d:
af:4b:ff:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:36:37 2026 by rpki-client