Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json)
Hash identifier: WExQlOFNXXCWk9gUWek4mAKA5qY5EKv8LMAPPeCSXAg=
Subject key identifier: C5:D8:05:B8:86:66:4B:22:44:C3:C4:B1:FC:6A:34:DF:46:85:04:0A
Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53
Certificate serial: 019D2704CCE44C676A0232D7E057AF50CE99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 22:01:59 +0000
Manifest this update: Wed 25 Mar 2026 22:01:59 +0000
Manifest next update: Thu 26 Mar 2026 22:01:59 +0000
Files and hashes: 1: S_bLPS21FFHSFgzqZbLQgGjdapU.roa (hash: ntP7qUH7mD4+qqNvUodX6WEcYgeevuhwX8/sIbaDqz4=)
2: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: He1qf6OvCOKYxc80iCk8YqKVlWFxWQ+9YvoJFAnVUGQ=)
3: vuogQOiw-NsRjP2TO25Dr4VGU1g.roa (hash: /xeIMQbmMftTFD0OnGKJGQk5eie+bKtG5JesE4wKpZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:cc:e4:4c:67:6a:02:32:d7:e0:57:af:50:ce:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53
Validity
Not Before: Mar 25 22:01:59 2026 GMT
Not After : Mar 26 22:01:59 2026 GMT
Subject: CN=c5d805b886664b2244c3c4b1fc6a34df4685040a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bc:e4:1c:5c:1c:14:62:a5:56:df:6a:6e:f7:
31:e7:14:3f:6c:fa:d3:d3:08:16:5f:b7:dd:0e:b1:
ad:19:df:45:3c:52:35:11:69:24:d5:44:d7:a0:c4:
d8:86:1a:4f:9d:43:83:b7:92:58:eb:b9:f7:d8:24:
dd:8b:f6:44:85:40:f8:e9:42:6d:4c:c5:24:fb:1b:
bc:78:67:ca:97:f3:58:b4:b2:26:b0:2c:a5:cb:f7:
7a:a8:77:c7:f3:0f:66:b5:f1:fe:a7:27:e9:e8:04:
0a:c4:c7:1e:70:d4:95:4a:47:95:8f:28:53:6a:f1:
ee:4d:9e:de:a2:9c:5f:d3:77:f1:7d:b2:5b:03:e4:
c6:83:59:af:ac:34:74:b9:20:aa:db:52:51:78:14:
16:82:c3:7a:88:2c:ed:5b:9c:23:a8:59:26:97:34:
44:9f:69:b3:fe:c9:93:d1:7e:e0:9d:5e:f6:af:01:
f3:0a:20:b1:cc:40:f5:71:09:54:97:5f:a1:e2:8d:
11:e5:6f:72:b4:cd:87:c7:ea:90:31:3e:0e:ac:0c:
7f:c6:4a:ab:6c:f2:2c:e9:63:8c:45:ed:e7:22:5c:
09:67:b3:45:85:be:57:dd:a6:bf:6b:47:e1:b9:9b:
1f:49:8d:9b:e9:7b:94:52:67:a0:7a:36:ea:23:f4:
f4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D8:05:B8:86:66:4B:22:44:C3:C4:B1:FC:6A:34:DF:46:85:04:0A
X509v3 Authority Key Identifier:
keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:35:86:1d:2c:57:2c:ff:16:96:58:de:d0:9e:14:c6:fb:0f:
80:2d:c5:8c:4a:21:a5:75:8c:0e:2a:83:df:36:0b:79:12:60:
cc:38:32:82:9a:8a:a0:6f:66:60:5e:62:c0:61:93:c1:ba:3e:
65:6b:89:1b:6d:c4:12:50:04:a3:a2:46:3c:d0:cd:db:85:91:
ec:db:52:45:7c:3e:61:df:2c:1e:c0:f9:1c:d5:58:92:b8:d4:
17:1a:ca:6e:45:3d:71:47:77:82:47:32:15:d2:63:02:b4:f8:
33:33:d9:38:91:1a:54:e0:c5:4b:2d:fa:a8:42:71:94:07:39:
8c:2c:8c:2d:fd:51:fe:c3:39:91:40:7e:50:07:3a:a7:f5:27:
83:dc:85:84:d7:a2:af:15:86:2c:c0:45:60:03:06:a4:e0:81:
41:07:98:ad:7e:8c:4a:ff:ce:6d:a4:13:14:ba:56:6f:88:2d:
35:22:8e:c1:3a:7a:6f:85:dd:f2:fe:18:e7:b5:f3:3e:ef:f3:
4d:71:06:76:ea:75:2b:80:b0:50:c3:61:ea:5a:3c:e7:2f:44:
7f:31:bb:9f:90:a5:a5:9a:e2:b6:b1:8d:b2:d1:f2:4f:c2:62:
8a:78:62:3a:5d:10:44:6f:6f:d8:61:53:33:3e:d1:3c:93:53:
e9:b6:a9:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:53:36 2026 by rpki-client