Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: 8dcDqtaxMtk/itV8rhEiK2oRkwm7BHeRck4FwW0ZVZ0=
Subject key identifier: 3B:CC:16:37:E6:63:C6:DB:87:B1:A0:BC:26:D3:CA:74:EE:5B:13:BD
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 019E1FECB5385FCB50DC0249E01AA4B4157E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 0576
Signing time: Wed 13 May 2026 06:01:07 +0000
Manifest this update: Wed 13 May 2026 06:01:07 +0000
Manifest next update: Thu 14 May 2026 06:01:07 +0000
Files and hashes: 1: 349FQFd5GuBNHJ1XSdLWCNh7MgE.roa (hash: X07/rOHAvRnDnhTDeHpviTIJqNY8MhsZ5tUjK1kXVRQ=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: gl89cPhTF52hhyFWT+HTfGylFZ/eWdFJK7BkqevrGZM=)
3: Ro9U9BJ6f0_Ri9pStBmjPzC3PAI.roa (hash: OME7cIqz4TyEQ9tHIazsSceKPyDQCFfwvggAogmMI2I=)
4: iRueGgNSFlYLf9RROG0f0rTAc00.roa (hash: S/n0OWxnW1sYVn1zOvkt5rV/05+3yi0pPUNZuVoiUaI=)
5: o8OOXMpbaFk_8-RmJyQxncgLVFQ.roa (hash: jB/RtTqOu46GTbqyk/NL/0jshQ8FkOf7LHzIj9jHQHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:b5:38:5f:cb:50:dc:02:49:e0:1a:a4:b4:15:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: May 13 06:01:07 2026 GMT
Not After : May 14 06:01:07 2026 GMT
Subject: CN=3bcc1637e663c6db87b1a0bc26d3ca74ee5b13bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9d:8f:cc:a3:c1:05:be:2d:da:89:83:63:4f:
2b:b9:94:89:c0:23:3b:3f:e7:2e:c7:a7:ae:d0:12:
96:27:29:b6:f4:e2:5b:49:3e:0d:35:a4:ce:96:59:
34:b1:f1:9d:58:4d:c3:6e:a2:99:24:b9:f9:4e:2f:
db:36:75:c6:e1:a4:a7:43:a4:90:03:5c:e5:6b:ce:
0a:4c:a4:c8:f3:f9:ff:cf:1b:e2:81:fb:43:49:fc:
ff:e7:ad:54:8b:56:ee:d9:a3:ba:30:5c:4a:ca:be:
a1:e4:5c:58:38:df:92:8f:76:54:0f:db:95:a2:c0:
37:f2:e7:8e:95:87:43:28:29:13:35:e9:48:c7:4e:
bb:90:b0:09:4c:f2:77:ec:39:68:e6:6f:c9:8f:50:
de:9b:2f:57:6b:28:51:83:3b:f2:47:03:c2:f8:76:
1c:c5:83:72:e4:c0:b6:11:6a:e9:12:bd:3b:ae:b1:
4a:67:51:67:e5:e3:2a:80:85:7e:0b:72:10:0e:1e:
42:71:9a:1f:b7:2d:68:4f:5d:b8:93:c4:33:18:92:
30:b6:ac:8a:78:7b:8c:d5:ef:4f:8c:91:fb:b7:f3:
8c:94:c9:0c:f0:32:9f:15:59:d9:c1:7e:05:0c:b5:
3c:09:7c:42:df:66:43:26:32:ea:99:c3:98:3f:02:
ad:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CC:16:37:E6:63:C6:DB:87:B1:A0:BC:26:D3:CA:74:EE:5B:13:BD
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:7a:f7:e5:e0:e8:c3:02:a7:86:83:97:f2:9e:70:3b:76:92:
5f:3c:f1:02:85:32:73:77:0e:3c:9a:ee:83:39:90:1b:f2:ba:
3d:a0:b7:79:89:ce:ae:d2:a0:71:d3:ca:bf:6b:f0:82:0f:55:
b2:d1:fa:20:3a:fd:dc:4b:dd:b0:2c:b3:45:0f:f0:87:0b:6e:
7c:3c:4c:45:30:52:e7:38:90:98:34:67:2b:49:f4:c4:0f:98:
fe:41:a6:89:e9:59:07:70:be:a0:26:87:44:81:09:fe:da:5d:
6d:73:98:de:8c:83:09:60:23:1e:59:71:c3:9a:b0:f1:b3:87:
82:73:82:05:4c:2c:5f:1a:a1:d5:90:7c:7f:60:9b:8d:c9:6f:
76:e1:96:3b:22:cc:71:4a:79:18:76:10:34:e7:6f:1a:87:3e:
83:f1:82:bb:17:d4:8b:47:cf:56:14:e0:e5:f5:d1:fc:8b:fb:
40:66:e7:7c:f4:70:d0:71:08:35:a6:81:13:c0:f2:de:74:57:
a7:87:68:af:ca:5d:2c:1a:56:cd:95:92:f8:9d:37:a3:16:f5:
9b:50:73:c0:63:26:31:57:de:c7:2e:4f:08:3d:09:46:24:10:
1a:57:77:b2:38:98:7b:54:eb:68:5b:51:7a:aa:05:e1:fe:ab:
ed:e0:c1:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:44:38 2026 by rpki-client