Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
File: U8NcqD_N9xskTtgDrEaOFFPYJo8.mft (raw, json)
Hash identifier: yubzHa5doUlup/UcLUSxt6B3Nc4YoLbyVm3OkjCnLrg=
Subject key identifier: 34:F9:23:B5:10:39:96:0E:9D:53:48:7E:2B:01:1A:BE:52:A3:E4:78
Authority key identifier: 53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F
Certificate issuer: /CN=53c35ca83fcdf71b244ed803ac468e1453d8268f
Certificate serial: 019E20C85AF2EFC14C6C0F3ABF4DAC7A15E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
Manifest number: 0B4D
Signing time: Wed 13 May 2026 10:01:01 +0000
Manifest this update: Wed 13 May 2026 10:01:01 +0000
Manifest next update: Thu 14 May 2026 10:01:01 +0000
Files and hashes: 1: 0P9xPfTELLOLsIkje98I5DI3JMM.roa (hash: /5GbceYSZZKUMKDpKsep1xA2kefROVR28hBE+53Ms/s=)
2: U8NcqD_N9xskTtgDrEaOFFPYJo8.crl (hash: NfZAWRhmwU3MpJRgpz/4PfDVjjVHQJ7t+45rD0hLWV8=)
3: pfH2GwBcvDoKyHCIT0cM2iz_ms0.roa (hash: Mm7/tRb+RTedsr3+m2DHJUxAaM0FcO0MUgT9eZ4XDVI=)
4: zMo_08BFuPtuYYrEDlRKq-rmGBo.roa (hash: vZCIJPH6khDNzPRPnP73DDsgX8UFqI/TfAzpfgqnDZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:c8:5a:f2:ef:c1:4c:6c:0f:3a:bf:4d:ac:7a:15:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c35ca83fcdf71b244ed803ac468e1453d8268f
Validity
Not Before: May 13 10:01:01 2026 GMT
Not After : May 14 10:01:01 2026 GMT
Subject: CN=34f923b51039960e9d53487e2b011abe52a3e478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cf:e8:b1:0e:5a:9b:d3:94:2a:0d:1b:27:62:
e6:e9:45:02:50:bf:64:e9:0f:66:5e:36:22:cb:65:
da:61:5f:27:da:25:d2:ab:60:bd:bd:97:55:e3:2e:
0a:60:2c:7d:97:be:a5:bd:77:29:88:26:5a:bd:45:
ba:2b:f4:15:14:8f:e2:75:41:fb:aa:ff:95:f0:a2:
b7:d9:74:9a:7e:1c:b9:29:5c:45:c6:70:48:84:fb:
1a:71:3c:70:b1:a9:e3:7c:96:e7:f7:35:47:64:cc:
d3:20:a2:6c:aa:66:3b:0f:b8:84:2d:ac:d0:e6:be:
e8:69:17:44:65:f6:98:40:1f:9d:09:1f:63:f1:20:
a4:b2:2f:d3:30:fd:2b:14:2d:0a:4d:18:23:70:e2:
a1:7f:58:16:2e:f9:9f:23:fc:8c:80:81:c5:80:de:
ba:a9:5f:e9:71:35:18:dd:b4:cf:74:8e:98:89:ee:
a1:ed:ca:e6:87:90:52:05:e9:c5:2a:e3:26:f8:a5:
81:36:0d:6e:d1:0b:74:94:04:32:59:70:d3:9b:dc:
ca:d2:cc:b3:17:7b:a1:ae:7b:30:02:8e:81:04:35:
38:db:20:9c:89:76:cb:79:ff:63:71:c2:f2:01:33:
0b:bc:eb:e1:54:4e:ea:10:87:b6:8c:15:3e:a9:5b:
ff:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:F9:23:B5:10:39:96:0E:9D:53:48:7E:2B:01:1A:BE:52:A3:E4:78
X509v3 Authority Key Identifier:
keyid:53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:b6:0e:84:dd:66:b8:f8:6d:b1:bc:1d:a4:1f:fc:ee:f8:a8:
17:b0:44:10:16:48:c3:65:a6:c1:d0:34:de:35:1b:7a:cc:5b:
dc:2a:cf:9f:fb:2f:a2:ab:00:0b:81:9a:75:28:41:4f:2f:21:
07:66:f5:97:2e:24:b5:cc:23:6d:8f:44:41:fa:30:2d:a8:f5:
92:6c:19:d4:64:3d:f9:38:ee:93:89:98:ae:76:b7:c5:e6:b7:
5e:7b:0c:bb:be:da:21:d0:c5:93:e4:73:7b:e2:4b:b8:01:88:
1c:96:2a:7e:86:c8:a5:5c:5e:5a:1a:04:00:2b:89:22:be:3b:
45:1c:2b:45:13:9c:03:54:c4:95:1b:80:b3:52:fc:fc:c1:26:
0c:0e:57:10:68:79:b3:a8:c9:ab:68:ee:fb:b5:dc:33:7c:5f:
26:3a:8d:18:7f:d3:29:90:51:b0:76:2a:60:3b:f0:10:c4:69:
81:61:bd:99:83:5a:cf:27:84:b3:8d:a4:74:b6:a6:0d:c1:b0:
8b:2f:81:61:3a:03:91:ea:e2:d8:c7:94:0f:d6:13:7d:14:48:
eb:b5:33:2d:db:07:0e:62:aa:33:8e:21:45:c0:38:4c:09:af:
d4:20:7b:74:39:4a:a9:55:0a:09:95:93:53:51:7c:7e:19:53:
2f:29:ed:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:20:11 2026 by rpki-client