Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
File: U3h815RuENiGRqx53lfMbsWeQTI.mft (raw, json)
Hash identifier: eK0A36XbzBCHOqcISNpynhbAxHWIrKchjXvUwvKDWnA=
Subject key identifier: 67:D7:C1:77:07:B5:25:B8:26:BA:09:AA:16:1E:63:41:AC:C5:FA:3A
Authority key identifier: 53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
Certificate issuer: /CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Certificate serial: 019D2771EF7022A5B1FEE31A579FEC7C2861
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
Manifest number: 1535
Signing time: Thu 26 Mar 2026 00:01:11 +0000
Manifest this update: Thu 26 Mar 2026 00:01:11 +0000
Manifest next update: Fri 27 Mar 2026 00:01:11 +0000
Files and hashes: 1: BTQqaN3zxchRx-EpD2H2MNJ-ft4.roa (hash: XV4ayQSd0b2rkVnEHjcvBGIgn52FBAArQFJOmYQB3pA=)
2: QtW4Z9V0VWOm_3B5SrSvvQ3anTE.roa (hash: DHlUdVZGbEoHW4Ps1BkaOOFImnLamhxBGEFyeIi9s+Q=)
3: U3h815RuENiGRqx53lfMbsWeQTI.crl (hash: /T6YZbCfnKlDI9PfpTtG9+O0F2qRV0NiNi81f9n4YK0=)
4: xAgD6SynRwV_Yye8rFHO4JCRRio.roa (hash: l2HE8jagwao4Kb86kIkCwZOHjaiAFH+AljSJnuRLiF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:ef:70:22:a5:b1:fe:e3:1a:57:9f:ec:7c:28:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Validity
Not Before: Mar 26 00:01:11 2026 GMT
Not After : Mar 27 00:01:11 2026 GMT
Subject: CN=67d7c17707b525b826ba09aa161e6341acc5fa3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:65:52:3e:92:07:ab:d8:dc:af:e2:45:6f:b5:
a1:c8:dc:35:1c:6c:3a:cd:b1:23:33:72:4c:ef:e5:
d0:af:e0:56:da:0c:c7:01:7a:9e:58:6d:3c:cb:3e:
b1:7d:b3:8d:42:58:61:ba:25:d9:76:d1:94:15:72:
b2:a8:ff:0e:c1:7d:37:e7:78:8e:29:dd:b8:3c:38:
a3:e9:dd:48:b4:08:68:67:e6:09:f3:c1:ba:6c:ea:
70:3d:b6:57:2b:7b:d0:88:06:7c:d7:d8:b7:82:8f:
f1:7a:27:00:e5:1f:24:40:47:4e:93:ad:4a:ca:67:
c5:99:64:f5:f2:ca:fb:32:99:ab:71:b9:f7:46:fb:
53:bd:45:18:24:a2:a2:f3:87:7a:f2:c0:3f:36:44:
f1:6c:93:76:c9:7d:fc:2c:1a:71:c0:9b:05:a3:ea:
b9:6f:32:27:a7:bc:e2:33:1b:7f:da:7a:a6:9b:13:
e6:cc:e0:d3:98:2b:d7:3f:18:a1:e6:49:01:85:ac:
45:24:a1:28:3b:65:60:5e:7a:7e:5f:c5:28:6f:a3:
d4:48:81:5e:82:1e:63:49:63:1d:d0:72:71:51:11:
0b:b5:9d:a9:b0:a6:57:75:af:8c:4c:22:f3:ad:6c:
ef:4c:51:51:eb:a0:0a:36:34:eb:43:97:57:1e:85:
7b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D7:C1:77:07:B5:25:B8:26:BA:09:AA:16:1E:63:41:AC:C5:FA:3A
X509v3 Authority Key Identifier:
keyid:53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:ac:8c:84:72:14:53:ff:63:e8:0b:3a:21:72:89:a2:4a:b8:
1a:28:0b:50:78:3b:50:ce:cd:f5:59:41:7a:a7:2b:ba:66:1d:
04:25:34:45:91:3a:49:8d:4a:3e:96:13:c8:85:25:db:61:eb:
1a:42:70:10:9e:03:d1:80:91:f1:f6:87:85:5b:e1:49:95:9f:
3d:db:de:a3:18:15:9a:60:9a:f2:1a:31:be:2a:31:c3:18:26:
7b:cb:b0:d4:a0:32:cf:29:6b:05:fd:04:6e:88:83:20:2b:c3:
ac:ac:25:64:78:bb:4e:bf:07:c7:ad:c9:09:90:3d:9a:3b:05:
f6:7d:ea:e2:53:ed:74:7d:81:2e:f2:06:8b:a3:fc:73:83:e4:
d8:3d:c4:c6:a5:58:47:ca:30:a9:2a:d9:6b:a1:c2:c9:53:58:
a0:66:74:4c:9b:91:95:0b:c2:77:ad:ef:d3:57:3b:15:25:06:
7c:72:72:8c:ff:1c:8d:03:f5:42:14:4d:57:91:58:e1:f5:32:
50:b7:4d:08:55:9e:0c:68:d7:a9:81:8e:c4:fe:04:bd:57:b2:
1e:79:1b:08:cf:78:28:2a:e3:19:16:cc:53:dd:6e:2d:dd:a9:
02:92:c0:73:06:a7:d2:40:06:a8:dc:34:5e:b2:0b:16:75:36:
cc:8e:58:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:11:33 2026 by rpki-client