Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
File: U8NcqD_N9xskTtgDrEaOFFPYJo8.mft (raw, json)
Hash identifier: sGQ6Q+C3qc5N5nh25HWg2w0A1sXOoS0+ZErdC+1izzM=
Subject key identifier: 40:C0:DD:A0:53:E4:2F:1A:66:45:F3:91:0D:17:A5:72:74:1A:33:6B
Authority key identifier: 53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F
Certificate issuer: /CN=53c35ca83fcdf71b244ed803ac468e1453d8268f
Certificate serial: 019D2997797FA530E92CA9FA6F4E5A5FACBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
Manifest number: 0ACD
Signing time: Thu 26 Mar 2026 10:01:25 +0000
Manifest this update: Thu 26 Mar 2026 10:01:25 +0000
Manifest next update: Fri 27 Mar 2026 10:01:25 +0000
Files and hashes: 1: 0P9xPfTELLOLsIkje98I5DI3JMM.roa (hash: /5GbceYSZZKUMKDpKsep1xA2kefROVR28hBE+53Ms/s=)
2: U8NcqD_N9xskTtgDrEaOFFPYJo8.crl (hash: 6p8EYfvoqyhEG8f7GADYQnNde3LqOHDWGvNH6Sk+SWg=)
3: pfH2GwBcvDoKyHCIT0cM2iz_ms0.roa (hash: Mm7/tRb+RTedsr3+m2DHJUxAaM0FcO0MUgT9eZ4XDVI=)
4: zMo_08BFuPtuYYrEDlRKq-rmGBo.roa (hash: vZCIJPH6khDNzPRPnP73DDsgX8UFqI/TfAzpfgqnDZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:79:7f:a5:30:e9:2c:a9:fa:6f:4e:5a:5f:ac:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c35ca83fcdf71b244ed803ac468e1453d8268f
Validity
Not Before: Mar 26 10:01:25 2026 GMT
Not After : Mar 27 10:01:25 2026 GMT
Subject: CN=40c0dda053e42f1a6645f3910d17a572741a336b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bb:13:87:f0:5e:04:c8:91:48:8c:ec:4c:f7:
e0:ea:b5:f5:28:29:c5:9c:16:c5:c1:cc:21:ec:07:
d2:29:c9:93:4d:2a:dc:89:36:01:aa:4b:a1:12:1d:
6a:f8:a4:86:dd:98:86:86:5b:cd:e3:92:0d:db:ea:
88:a5:e4:c9:1b:e1:cd:59:6f:9c:32:bc:2d:8f:94:
38:a6:e1:d2:a4:7e:63:73:3b:f7:a5:3d:fb:38:c6:
17:37:c0:b5:08:83:99:5e:47:57:86:f6:1c:3a:2a:
e3:58:a1:0a:c5:9a:cb:d3:9b:fc:e0:d3:c7:65:76:
31:e1:f9:3f:d5:45:a5:0a:89:01:c6:79:d5:da:96:
45:b1:31:2b:d9:6b:5b:08:09:25:36:4f:16:1a:17:
ac:21:16:e8:90:0d:51:58:26:8c:ef:df:d3:71:32:
d3:2a:3b:51:f7:df:34:5c:c0:f2:a3:89:9a:fd:09:
be:1d:67:0a:2d:56:32:93:e2:04:72:1a:6c:7f:3f:
6f:95:29:d3:71:7b:4d:a3:c9:97:06:1f:7e:0e:fa:
92:0b:bb:10:77:a6:ae:16:f2:63:3c:af:a1:bc:78:
1f:ff:19:af:6c:0b:dd:93:8c:a4:d9:5e:eb:a5:ed:
32:0f:b8:10:8b:19:81:0d:e8:fa:90:11:2d:3f:6c:
92:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C0:DD:A0:53:E4:2F:1A:66:45:F3:91:0D:17:A5:72:74:1A:33:6B
X509v3 Authority Key Identifier:
keyid:53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:8f:88:fc:d6:fe:e6:1a:11:26:ac:d7:58:7b:9e:4a:30:04:
c6:3b:40:51:ef:7f:ad:4e:b4:0c:76:cd:0a:5a:80:d3:ad:62:
00:7f:3f:4c:6c:f8:50:d2:8c:7c:11:93:ba:b4:32:e1:42:46:
61:2b:95:e2:c1:00:bf:9d:55:3f:e6:02:0e:0d:c2:20:d9:e8:
93:02:8c:2d:da:57:c6:8b:6c:fe:94:1f:6c:30:50:7d:77:5c:
2e:2b:29:54:86:da:20:fa:b8:d1:41:ca:35:a1:00:d7:1d:a3:
01:1c:d8:f5:0c:1c:97:62:ed:cd:81:ae:03:ff:fc:c9:b5:3e:
e7:1d:d5:3f:77:df:82:67:c1:66:84:ce:2b:ac:d2:8d:d3:56:
e9:fd:13:3e:49:53:98:b3:d7:b2:c7:af:11:24:f9:dd:e9:ad:
f6:d3:18:e8:0c:0a:f2:dc:ab:27:32:d3:98:e8:f3:a3:aa:bc:
ec:7f:e0:14:67:58:e0:e8:67:05:a1:3a:01:45:f1:a8:95:ec:
e5:53:a0:08:1d:f1:e7:59:fb:3b:19:56:be:25:f8:ec:37:1b:
b9:31:60:b9:8f:0b:70:16:04:c8:24:dc:f6:2f:28:0c:5c:da:
b7:44:44:de:0f:ff:f4:43:54:54:9f:fc:de:93:77:90:e0:6b:
bb:2c:f9:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:37:51 2026 by rpki-client