Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: OCrRShtMAx1B7KV3+WVcNRjt8KzEZi/XptP5lvxRAqo=
Subject key identifier: 82:7A:1D:FC:FF:17:DA:BC:7C:FD:7D:3A:7E:6B:31:60:F2:C3:CD:74
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 019D32634BB9FC0E130A0B857B0B6AE793FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 04FB
Signing time: Sat 28 Mar 2026 03:01:01 +0000
Manifest this update: Sat 28 Mar 2026 03:01:01 +0000
Manifest next update: Sun 29 Mar 2026 03:01:01 +0000
Files and hashes: 1: 349FQFd5GuBNHJ1XSdLWCNh7MgE.roa (hash: X07/rOHAvRnDnhTDeHpviTIJqNY8MhsZ5tUjK1kXVRQ=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: SyPVg9rvMZHbDI/wo4MXcqSmuaFwnzjMSwIeE5k0RIY=)
3: Ro9U9BJ6f0_Ri9pStBmjPzC3PAI.roa (hash: OME7cIqz4TyEQ9tHIazsSceKPyDQCFfwvggAogmMI2I=)
4: iRueGgNSFlYLf9RROG0f0rTAc00.roa (hash: S/n0OWxnW1sYVn1zOvkt5rV/05+3yi0pPUNZuVoiUaI=)
5: o8OOXMpbaFk_8-RmJyQxncgLVFQ.roa (hash: jB/RtTqOu46GTbqyk/NL/0jshQ8FkOf7LHzIj9jHQHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:63:4b:b9:fc:0e:13:0a:0b:85:7b:0b:6a:e7:93:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Mar 28 03:01:01 2026 GMT
Not After : Mar 29 03:01:01 2026 GMT
Subject: CN=827a1dfcff17dabc7cfd7d3a7e6b3160f2c3cd74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:24:19:65:90:97:f9:87:65:80:8c:d9:11:35:
17:8f:e5:22:32:e7:19:0e:34:09:fd:a6:8c:10:2e:
b0:16:24:99:2f:66:33:ff:5a:bd:fa:fb:f9:60:1f:
4e:eb:b2:92:92:bc:6b:c8:c0:be:c3:bd:be:fb:90:
7e:a2:7d:cf:f2:0d:7c:10:a6:a1:31:0f:33:28:79:
df:3c:48:b4:3c:8b:ed:22:34:38:8c:65:a3:a5:c4:
5f:90:0a:57:93:aa:8f:8f:1f:99:27:13:46:63:f7:
e8:00:a0:f4:01:ed:a7:ec:71:02:9f:1f:64:f4:05:
0c:20:93:93:03:c8:25:bc:d5:a6:53:80:43:26:f8:
18:98:11:df:55:0c:8c:a9:82:71:97:22:79:47:d3:
e5:35:f6:cf:27:2d:4d:61:fb:f5:c7:31:2b:c1:2b:
f2:16:1c:2c:b1:9d:ed:9e:b4:ce:a2:47:ea:44:57:
69:ff:f6:13:bd:d3:e9:0e:c4:bc:65:04:aa:a0:99:
6b:54:39:75:cc:9b:76:99:1b:06:3d:07:44:1c:f7:
8f:51:be:87:78:65:13:61:44:27:e2:0a:94:9a:c3:
55:47:47:e8:3c:9b:6a:cf:45:b2:ce:a9:d9:77:f2:
5a:41:a8:ce:e9:b5:9d:a2:63:9c:52:88:74:15:82:
0c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:7A:1D:FC:FF:17:DA:BC:7C:FD:7D:3A:7E:6B:31:60:F2:C3:CD:74
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:a2:10:e5:25:75:26:7c:cb:d7:b6:23:70:25:6c:a1:07:39:
60:70:fd:29:85:03:8e:5c:61:e5:f5:7a:4e:ff:c0:7b:8c:f3:
38:56:1b:37:63:ec:2c:9a:fe:de:89:1c:d5:5a:c2:a9:3d:1b:
6c:2a:0b:71:d9:21:51:07:a9:45:63:03:62:1c:9a:b0:95:b7:
58:ca:53:a8:8b:fc:7d:65:e0:bf:12:37:db:b9:70:84:24:26:
f5:14:86:14:8f:34:64:a1:45:eb:7d:06:58:a8:8b:ef:e8:3e:
ac:51:9e:39:2c:f4:72:ad:33:5a:9a:9b:40:36:46:e4:0c:b3:
aa:d0:4d:0c:69:c7:9b:f8:1b:1e:49:dc:5a:50:ce:85:a8:f2:
d0:75:33:88:5a:35:b0:9a:ba:41:59:0b:81:4e:9c:ad:fb:0e:
1f:6a:97:ab:c4:67:32:5e:9d:fd:b4:c0:19:8a:e9:8c:b7:25:
50:52:0c:3b:d1:73:a7:60:a8:a8:1c:a2:b8:cf:2c:13:33:d2:
32:26:29:40:04:d1:a3:8f:30:c9:17:f1:32:66:6e:f6:a0:be:
fc:24:d6:45:9a:c6:2c:57:b1:14:83:7c:44:3e:eb:a3:5b:ef:
6a:52:99:23:ac:07:df:06:d0:1b:a9:1b:73:9c:72:2d:b7:5f:
0f:8b:db:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:37:07 2026 by rpki-client