Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json)
Hash identifier: L6Hm9QEAy9DzbLTG4lfPEshqB6HZzLuOxA1huR8spOw=
Subject key identifier: B7:CD:3E:90:98:63:8C:32:C0:53:D0:59:16:F6:BB:02:4A:F3:0B:19
Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53
Certificate serial: 019E1E3578D0137C429AB25A74996B0784FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
Manifest number: 1907
Signing time: Tue 12 May 2026 22:01:21 +0000
Manifest this update: Tue 12 May 2026 22:01:21 +0000
Manifest next update: Wed 13 May 2026 22:01:21 +0000
Files and hashes: 1: S_bLPS21FFHSFgzqZbLQgGjdapU.roa (hash: ntP7qUH7mD4+qqNvUodX6WEcYgeevuhwX8/sIbaDqz4=)
2: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: 5f/GUCaRUnxDKgyAO1eEnuJgwIzDBBWmUinGXQYS4yo=)
3: vuogQOiw-NsRjP2TO25Dr4VGU1g.roa (hash: /xeIMQbmMftTFD0OnGKJGQk5eie+bKtG5JesE4wKpZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:78:d0:13:7c:42:9a:b2:5a:74:99:6b:07:84:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53
Validity
Not Before: May 12 22:01:21 2026 GMT
Not After : May 13 22:01:21 2026 GMT
Subject: CN=b7cd3e9098638c32c053d05916f6bb024af30b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c0:90:8d:bb:e8:34:86:71:48:89:e2:49:e2:
74:80:e0:0c:60:73:dc:a2:93:a2:7f:52:3c:6d:f5:
c7:57:bd:80:44:d3:8a:8b:00:c8:2a:df:fd:bf:3d:
00:ea:b3:b4:d6:5e:82:19:30:da:26:79:84:d2:36:
ef:1d:31:24:41:11:3b:e4:ea:bc:76:bc:7b:2c:3c:
35:68:8a:c6:49:ab:c3:a3:ec:35:a4:6f:ed:e1:13:
2f:67:a1:05:67:f9:2d:0a:00:42:0d:4d:54:82:38:
fa:e3:39:dd:9e:61:95:7c:ff:3c:71:00:4d:d4:3c:
01:30:8e:52:c0:5d:ce:56:de:2c:40:3a:91:ae:1c:
00:70:0d:a6:30:af:b7:5d:4d:a9:d7:60:9c:32:ec:
e8:da:fe:8a:77:92:8a:23:6a:16:9c:7b:5d:b1:b7:
f1:6a:8f:23:9a:a0:aa:8b:3c:f9:50:3c:d4:79:e1:
a4:69:57:61:ee:fd:b6:f8:eb:81:fc:9d:62:de:f5:
74:49:c6:62:87:96:50:18:b9:48:d7:60:45:1f:f4:
d0:b7:71:f9:9f:da:8d:82:14:ed:22:47:58:d3:76:
91:b6:03:a5:0d:d7:56:38:e4:81:a6:bc:54:f2:0f:
d1:e0:7d:b4:73:a2:27:ff:f3:7a:c9:05:24:86:6b:
7b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CD:3E:90:98:63:8C:32:C0:53:D0:59:16:F6:BB:02:4A:F3:0B:19
X509v3 Authority Key Identifier:
keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:4b:91:dd:46:9d:b2:06:ec:9d:9d:e1:13:7d:5e:b4:b9:36:
56:9d:6e:00:b0:8a:1e:2a:f9:6e:9a:ee:28:ad:d0:eb:af:0e:
cf:fb:09:bb:95:cf:15:c5:b2:8e:7c:20:bc:94:b9:fe:46:5d:
d9:07:6e:0a:d0:28:74:5b:7d:71:43:26:68:69:48:d1:58:94:
5d:15:05:cb:1d:a8:c6:03:fe:19:6c:40:5e:07:34:a5:3a:97:
63:ed:be:d4:f4:76:57:a2:2d:d0:4a:79:bd:9d:94:e9:89:68:
67:98:56:a0:90:ca:6c:53:ef:52:75:e2:cf:2f:d7:e7:2f:75:
98:9e:f0:06:c2:e6:e3:7b:34:97:9d:66:b1:31:02:17:8f:af:
6d:37:2f:f5:bd:f9:0f:67:d4:c3:fc:81:08:4f:18:fa:59:33:
9b:72:59:ec:98:98:cc:42:4c:57:33:23:6e:fa:57:0c:a7:4b:
14:64:4e:bc:ad:35:e5:71:44:7b:28:40:eb:35:27:91:42:6e:
2b:5a:5c:b8:a6:9e:c1:30:b9:4b:c9:d9:46:1b:9d:b2:00:e5:
65:b0:23:98:fa:aa:3c:a9:97:01:f2:25:d1:a4:87:6f:65:f5:
af:44:4f:7f:f5:01:68:1f:e1:94:a2:8a:de:e9:48:9b:48:eb:
a8:75:d1:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:21:13 2026 by rpki-client