Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
File: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json)
Hash identifier: sExY7ddWmAdv0d+B1mR2asUsrwMImwDY6+X5Da4K9A0=
Subject key identifier: 08:2D:91:8B:88:5A:7F:BE:09:B4:C4:8A:04:12:D2:0B:79:0C:C6:22
Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
Certificate issuer: /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Certificate serial: 019D27A8D11099CFD8EAEC03C732F07B8D8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
Manifest number: 15A9
Signing time: Thu 26 Mar 2026 01:01:08 +0000
Manifest this update: Thu 26 Mar 2026 01:01:08 +0000
Manifest next update: Fri 27 Mar 2026 01:01:08 +0000
Files and hashes: 1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: JcpatU6dPVSeXZje3iSy1bJqv2i6qpKeUV9axP5rtgk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:d1:10:99:cf:d8:ea:ec:03:c7:32:f0:7b:8d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Validity
Not Before: Mar 26 01:01:08 2026 GMT
Not After : Mar 27 01:01:08 2026 GMT
Subject: CN=082d918b885a7fbe09b4c48a0412d20b790cc622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:61:46:dc:a0:74:93:d1:a9:4e:a8:96:6f:f9:
83:96:d9:cf:4c:cc:66:21:af:ef:6e:84:13:4d:ea:
72:4e:08:63:94:62:95:e1:a4:18:2a:0e:34:6e:af:
f3:03:6c:51:90:8d:04:6e:6b:05:26:c9:1e:64:09:
15:af:74:93:e3:9c:26:ff:11:57:ca:e5:43:4d:a8:
3e:d5:86:df:1b:5f:4e:3b:15:b8:e5:da:ca:79:30:
9c:c7:2f:5e:f2:5e:12:ee:7b:be:08:fd:fb:47:1f:
fd:5c:03:68:12:79:73:ec:fd:4a:05:60:1a:80:0d:
d1:ad:52:d8:d2:85:84:5f:a7:63:46:a5:b8:d3:26:
1e:01:11:b2:ea:58:67:6d:b1:c6:3d:a5:24:45:50:
ec:b1:37:49:8c:e0:c6:3c:4b:cc:bd:4a:5b:71:0b:
ed:cf:65:a1:4d:9b:cc:14:b5:90:0a:c5:97:d6:b4:
0d:81:8f:9f:6f:26:00:52:c5:b3:11:a3:71:f5:0e:
73:45:36:5a:f4:4a:a9:32:fe:ed:61:3b:9b:d2:2a:
5a:15:e0:e2:05:ec:0e:49:c0:ee:05:0d:40:0c:86:
ea:91:3d:4e:1e:1f:ef:a9:29:46:d4:f3:cb:6c:cf:
e7:a8:9e:cb:0b:89:f0:e1:14:11:0f:1d:ce:9d:48:
aa:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:2D:91:8B:88:5A:7F:BE:09:B4:C4:8A:04:12:D2:0B:79:0C:C6:22
X509v3 Authority Key Identifier:
keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:5e:d2:d7:83:94:97:bd:a1:7a:f3:4b:27:88:9f:ea:21:f3:
d0:73:3a:ee:0b:30:3a:c6:e7:cd:17:dd:70:2c:82:6f:9b:a9:
7b:d1:eb:7d:b1:4e:7d:9b:b5:3b:f8:7e:36:80:32:49:69:c8:
92:90:57:cf:c6:9e:a2:68:72:4c:a4:91:eb:86:7f:50:e8:63:
a3:6a:cb:46:3d:ba:e7:bf:36:b0:02:d8:d4:e8:9e:d7:3e:fa:
47:2a:a3:68:77:54:de:99:9b:be:00:4a:ea:6a:e6:90:ef:6b:
ac:df:8b:a5:50:33:8d:80:b9:87:b8:75:53:cc:e1:de:2f:7c:
f1:51:06:85:28:6f:bc:c1:24:0d:fb:f3:1e:53:43:08:d4:55:
83:5c:f7:d9:d3:11:bb:70:9f:27:98:83:06:0d:5d:ee:34:d3:
b3:ef:9b:5f:6a:5c:08:dc:1a:44:49:f6:89:36:7b:97:ef:51:
80:7a:ca:96:e6:87:94:c1:29:d2:50:c9:1e:1c:62:46:85:64:
b1:82:f4:ff:da:a4:6f:aa:74:70:b1:cb:84:05:6e:14:13:8e:
f9:5d:0f:1d:45:cb:aa:a5:f3:35:77:83:42:0f:de:cd:f9:e5:
11:26:da:3b:68:65:0c:57:38:36:1f:c0:04:9d:d5:4c:fe:cf:
81:9e:36:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:57:14 2026 by rpki-client