Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json)
Hash identifier: I0VU4KJAwF2aKHtlz6g4ht0ZW4yDDmfNSsliIczBAmM=
Subject key identifier: A4:11:C5:60:10:F5:C0:DD:FF:41:C3:D8:56:A9:04:65:B1:86:CF:77
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 019D26CD3FAD12F4A20E89A18B1C03EBA3AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
Manifest number: 0D08
Signing time: Wed 25 Mar 2026 21:01:18 +0000
Manifest this update: Wed 25 Mar 2026 21:01:18 +0000
Manifest next update: Thu 26 Mar 2026 21:01:18 +0000
Files and hashes: 1: kE66fhDE4xBKZgP00aDSZ5wUo8Q.roa (hash: Xz3m7rpESDDSay6iugLcdgSAsdxY3IOPYIq5I7x/X5M=)
2: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: fMKt2NPIkNb/EnWvSFf3yuP86gt08V+CfP0jGhOBYeU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:3f:ad:12:f4:a2:0e:89:a1:8b:1c:03:eb:a3:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: Mar 25 21:01:18 2026 GMT
Not After : Mar 26 21:01:18 2026 GMT
Subject: CN=a411c56010f5c0ddff41c3d856a90465b186cf77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ce:cb:14:e7:0e:5d:bb:ff:13:bb:c7:d3:5b:
f1:d8:04:63:13:6e:23:93:36:c5:d9:ed:93:c6:20:
3a:f0:d6:de:76:f1:82:df:f5:e0:d5:fe:18:4a:dd:
bc:d8:0a:b6:7e:79:f0:2b:fa:60:65:c2:8a:48:73:
f7:78:62:e8:f6:3a:62:a9:aa:e9:97:33:a7:ce:4c:
3e:26:7e:57:10:e1:31:fe:4a:27:20:94:93:a6:51:
1e:9b:58:2c:e5:44:5a:e7:7f:e8:7a:be:6e:a2:ef:
fa:05:12:17:8c:20:a7:3e:10:ef:9d:ab:6a:f5:53:
cf:0d:4b:66:db:2d:79:49:92:46:0f:6c:a5:c2:89:
6d:53:47:15:4d:ba:40:e4:f2:9c:2c:d4:34:5b:51:
1e:08:91:8e:5a:a0:a1:c8:ad:45:f0:cf:84:ec:88:
14:a7:a0:a8:cf:10:16:b6:c3:94:58:6e:42:a2:6d:
97:50:77:d9:18:99:d6:73:be:5d:d3:cf:5c:82:cb:
b2:be:ea:76:28:4f:77:3f:0f:85:45:50:cc:88:48:
b4:c2:46:19:f7:76:b6:57:55:da:67:23:e4:0a:d4:
87:c7:e5:a3:9e:dd:98:3b:c0:a8:bf:e0:7b:c8:22:
f7:fa:93:f5:4b:e7:15:73:f5:0f:7c:22:6b:5a:8b:
2b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:11:C5:60:10:F5:C0:DD:FF:41:C3:D8:56:A9:04:65:B1:86:CF:77
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:dc:65:26:d8:46:87:98:2c:2e:e7:3a:54:10:05:3b:71:87:
16:4f:9e:cc:b6:7a:98:89:50:c1:7c:8c:2b:6a:c9:27:0e:9b:
83:ce:c8:49:be:a6:86:45:85:5c:96:31:b3:2b:84:76:08:26:
f0:a4:65:b7:33:b8:79:13:3d:0f:fd:5e:b8:e9:a9:24:f5:46:
5a:d2:60:cb:e8:dc:e0:6c:a6:49:b9:dd:e7:a5:58:ea:92:14:
49:cb:46:98:60:57:6f:5f:86:39:71:82:c8:02:4c:16:96:dc:
97:da:f7:7f:57:64:8d:79:16:8c:55:50:31:fc:a7:43:4b:64:
2b:d3:49:3f:06:70:0e:cc:38:64:21:64:71:f2:bc:db:de:20:
7b:49:cc:11:ee:4b:ad:8e:48:47:ab:5c:7f:30:ab:ee:5b:14:
44:3d:93:71:68:d8:3c:48:33:63:d7:56:bf:d0:92:c4:f1:c8:
6e:df:61:2d:9f:08:e8:64:93:80:17:82:2d:33:7b:7a:3f:65:
07:f0:81:25:75:8f:b2:47:7a:ea:9b:fa:25:a7:fe:41:6a:d4:
8e:04:4e:03:9e:18:98:e6:ce:7f:b8:b7:52:f4:11:01:86:56:
de:6e:4e:98:c7:51:2e:06:a4:23:b7:a1:30:cb:dc:75:24:82:
49:3b:d6:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mzT+tEvSiDomhixwD66OrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MWJiNDkwZTA5ZGYxNDY3ZTRlZWM0M2Q4ZjIwNDg0Y2Vl
ODM5ZmUwHhcNMjYwMzI1MjEwMTE4WhcNMjYwMzI2MjEwMTE4WjAzMTEwLwYDVQQD
EyhhNDExYzU2MDEwZjVjMGRkZmY0MWMzZDg1NmE5MDQ2NWIxODZjZjc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApM7LFOcOXbv/E7vH01vx2ARjE24j
kzbF2e2TxiA68NbedvGC3/Xg1f4YSt282Aq2fnnwK/pgZcKKSHP3eGLo9jpiqarp
lzOnzkw+Jn5XEOEx/konIJSTplEem1gs5URa53/oer5uou/6BRIXjCCnPhDvnatq
9VPPDUtm2y15SZJGD2ylwoltU0cVTbpA5PKcLNQ0W1EeCJGOWqChyK1F8M+E7IgU
p6CozxAWtsOUWG5Com2XUHfZGJnWc75d089cgsuyvup2KE93Pw+FRVDMiEi0wkYZ
93a2V1XaZyPkCtSHx+Wjnt2YO8Cov+B7yCL3+pP1S+cVc/UPfCJrWosrRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKQRxWAQ9cDd/0HD2FapBGWxhs93MB8GA1UdIwQY
MBaAFJUbtJDgnfFGfk7sQ9jyBITO6Dn+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTct
MWRiNGVkMTMxYmMzLzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTctMWRiNGVkMTMxYmMz
LzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgtxlJthG
h5gsLuc6VBAFO3GHFk+ezLZ6mIlQwXyMK2rJJw6bg87ISb6mhkWFXJYxsyuEdggm
8KRltzO4eRM9D/1euOmpJPVGWtJgy+jc4GymSbnd56VY6pIUSctGmGBXb1+GOXGC
yAJMFpbcl9r3f1dkjXkWjFVQMfynQ0tkK9NJPwZwDsw4ZCFkcfK8294ge0nMEe5L
rY5IR6tcfzCr7lsURD2TcWjYPEgzY9dWv9CSxPHIbt9hLZ8I6GSTgBeCLTN7ej9l
B/CBJXWPskd66pv6Jaf+QWrUjgROA54YmObOf7i3UvQRAYZW3m5OmMdRLgakI7eh
MMvcdSSCSTvWsg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:28 2026 by rpki-client