Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
File: U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft (raw, json)
Hash identifier: 4Gp99w6JTx5E9wve/o9d21sYN6as8jUHG1zRA1jma0I=
Subject key identifier: 61:D9:88:5D:30:62:C3:15:F9:A4:DD:86:AC:C1:01:A8:88:0E:EC:BD
Authority key identifier: 53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
Certificate issuer: /CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Certificate serial: 019D284E3F0F7486401809FF7A8FBC52B97E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
Manifest number: 1897
Signing time: Thu 26 Mar 2026 04:01:49 +0000
Manifest this update: Thu 26 Mar 2026 04:01:49 +0000
Manifest next update: Fri 27 Mar 2026 04:01:49 +0000
Files and hashes: 1: 4T05fIk1IL5XmP-J7JePysAxRKE.roa (hash: CZTtj6ljL4ZrRColIvs5nHru+2r0m25Gxfk+juu8BnA=)
2: GIKwXPgpp9tYu44qAWsgouqavSk.roa (hash: U0ZjuWOGhkNCjwceAqeYAxKQDQUWsJyAsTBPjUkaiJM=)
3: U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl (hash: MdHPjD9SNXLL7N7kHV7WqSX/YOXa8O7ssVLgsV49pns=)
4: _r56llLnHAPpXxxxkXq1tr0D3E8.roa (hash: GaXEko33otm3bGM4yo2EOeA4n0z4wsimGbz5tJkDlo0=)
5: hdiJUsn-mGkGSUlT1Hqx92eDVHA.roa (hash: LJKbx4az7vTER8ap7GuxbSzBoud2G6PQUC4oXRhpf84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:3f:0f:74:86:40:18:09:ff:7a:8f:bc:52:b9:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Validity
Not Before: Mar 26 04:01:49 2026 GMT
Not After : Mar 27 04:01:49 2026 GMT
Subject: CN=61d9885d3062c315f9a4dd86acc101a8880eecbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d2:1b:90:e6:bb:af:82:ed:11:8f:ca:3b:af:
ff:69:3d:e8:2f:bc:a7:d7:2c:32:76:72:ff:ac:cd:
48:5f:77:66:b5:52:52:e7:f5:3a:50:ae:f1:b5:ed:
44:a7:e4:46:6b:95:0b:1c:a3:cc:a9:24:fb:39:63:
5f:7e:17:d9:8d:23:d9:70:89:a4:35:f1:31:97:1e:
26:df:32:f2:ab:fa:38:a7:f8:c6:bd:5b:d5:73:cf:
84:be:91:64:ee:b9:02:c7:51:9b:0c:67:a4:eb:61:
e5:98:4a:ed:50:d3:fb:05:c1:bc:4e:6f:49:31:5a:
a6:90:59:86:4c:8b:25:23:a0:5a:4b:55:75:b4:0f:
61:b8:43:90:3f:5e:7b:9d:a9:c7:51:6d:2b:50:e4:
83:1d:57:e1:b5:33:ca:58:7d:cf:f8:a9:1e:29:30:
0a:7f:17:29:17:26:92:c8:a9:24:8b:89:09:8c:9f:
b8:2e:e3:f6:f3:ed:de:56:14:ce:19:e8:c0:4f:32:
fb:71:92:d0:78:89:e2:e1:bf:5c:8f:35:8a:92:61:
cd:18:8b:db:25:1c:89:bd:42:26:bf:93:29:6a:18:
5c:53:0a:99:56:79:d1:61:75:6c:74:17:09:dc:24:
23:fc:a7:2a:6f:08:6c:aa:b0:ac:5b:8c:8e:29:08:
9c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D9:88:5D:30:62:C3:15:F9:A4:DD:86:AC:C1:01:A8:88:0E:EC:BD
X509v3 Authority Key Identifier:
keyid:53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:24:cf:94:a0:72:07:87:80:a0:7b:b5:3d:bd:68:21:db:26:
c3:04:80:48:69:98:76:ec:69:bc:53:43:8a:7b:94:13:77:ac:
66:9c:2c:40:2e:1d:77:59:f8:5d:ff:60:49:ec:8d:7a:76:9f:
79:23:3d:8c:59:f7:54:c7:09:e8:28:98:dc:05:06:c9:dd:f8:
b1:6d:71:ce:76:c9:2c:8c:2a:a6:33:7e:5c:84:4b:36:5e:65:
50:a2:24:8e:93:2d:38:4f:c7:1a:66:dd:b9:ca:22:04:e1:2a:
b1:65:11:33:86:18:26:e7:d7:fc:5b:84:75:dd:2f:11:5c:cf:
d3:58:40:1d:5f:d0:3c:08:a2:38:fd:e4:7d:40:fd:a9:b1:88:
c3:97:a8:f8:51:b7:73:14:fa:2e:4b:41:7d:26:32:f2:94:0a:
e6:6c:ef:12:c8:e9:b6:1a:98:c1:ec:63:9b:df:f8:16:ec:c1:
b3:08:99:d4:97:97:4b:73:6f:63:d8:4d:ec:df:3f:2b:43:de:
84:4f:17:1f:a5:d9:6c:54:93:74:c3:03:e6:33:cb:c8:22:e3:
88:11:74:15:01:64:3e:b1:6f:0c:e9:bb:f2:87:7a:4e:d7:1a:
a1:58:c6:30:29:4a:f5:2f:54:15:d3:21:47:e8:8a:20:b0:d9:
43:4f:1e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:54:59 2026 by rpki-client