Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
File: LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft (raw, json)
Hash identifier: LluCedRhiCDLRifLGLkMNKdz4btHa5zLkp4HqZ0cC+U=
Subject key identifier: 25:30:6F:6A:93:C2:33:52:5C:2B:64:A1:AE:1C:BC:6F:D6:89:35:6A
Authority key identifier: 2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01
Certificate issuer: /CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01
Certificate serial: 019D296141C87D278B931D1035F53672ED94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
Manifest number: 01BD
Signing time: Thu 26 Mar 2026 09:02:12 +0000
Manifest this update: Thu 26 Mar 2026 09:02:12 +0000
Manifest next update: Fri 27 Mar 2026 09:02:12 +0000
Files and hashes: 1: DQVqjzC5rdONHq62ZKGqNPJyrRw.roa (hash: dDYajOCYrao79EK9Kj5vMqOndXhk7A3V1BOKDwNdvCc=)
2: LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl (hash: RujzYVlpfbBVhUZJlRf5bDNDyRWTjQ20Fy0U3FyVZCQ=)
3: NE7mP6LXofTtetMrz0bZ4gVjQZQ.roa (hash: OKq/sE5vI4Tp87JPYnyleJOP67qF4AH8+fsvJkq27uQ=)
4: p38nf1_J-hf5pJoRzzg0ttvCGMc.roa (hash: VNYm4Y42SOlQ9dXOHkzUE+m/pzdyaj+7nbqcjEjzt8M=)
5: zvVC2CdS_Vys1pvzmxe_hKJxz9g.roa (hash: Y5vKf0NFPya3WpVfMqZzvw2PJOdgljS8wUAGM1LsFLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:41:c8:7d:27:8b:93:1d:10:35:f5:36:72:ed:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01
Validity
Not Before: Mar 26 09:02:12 2026 GMT
Not After : Mar 27 09:02:12 2026 GMT
Subject: CN=25306f6a93c233525c2b64a1ae1cbc6fd689356a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:00:f7:9b:35:67:11:95:87:d5:4e:8e:d5:10:
b9:d7:62:99:bd:93:ba:28:e0:80:24:36:14:a2:45:
f5:77:7c:4b:e4:55:8b:30:ee:98:1c:de:92:ca:15:
30:26:34:cf:94:53:d6:f5:1d:70:e8:e2:90:b4:1e:
32:0d:72:b3:24:73:6a:50:c7:f4:a7:7a:54:d5:c2:
d5:99:a3:09:82:e2:e7:1b:9c:62:16:1c:b5:d0:2d:
ef:6b:22:ca:e8:5d:ae:a8:9d:d8:18:f6:ea:18:00:
77:1c:10:5a:61:b3:e2:00:24:03:32:e7:17:4e:d0:
59:e4:b4:2e:5e:4d:ba:15:bf:40:63:f1:7f:c5:f2:
6f:76:e4:65:9b:f9:57:fa:6a:78:6b:ca:3b:de:9f:
19:d3:54:c6:72:1a:4f:42:1e:ca:85:8c:53:8a:54:
19:9a:52:ea:b2:2d:04:81:bc:d4:a4:72:e0:b1:22:
f4:3c:cc:30:ef:11:11:cd:85:f3:8f:93:e7:8e:ba:
23:2c:47:0b:ad:54:fd:b2:7c:4f:9b:11:46:d8:53:
b5:60:a4:2f:5b:f1:9e:91:88:f6:37:d0:c8:e4:ef:
03:bb:c4:87:35:93:f9:29:d7:9f:20:d1:2d:f1:6d:
91:49:39:08:5b:c0:26:5b:7c:d3:79:b1:1c:d0:8b:
b1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:30:6F:6A:93:C2:33:52:5C:2B:64:A1:AE:1C:BC:6F:D6:89:35:6A
X509v3 Authority Key Identifier:
keyid:2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:fc:0b:9f:63:f2:40:ac:87:c5:54:c9:68:95:db:ee:b6:c8:
37:59:86:34:c2:ba:0b:45:a4:11:83:2a:3d:15:73:91:cb:7f:
77:90:b4:29:6c:73:1c:c7:53:ef:f9:7b:4a:c2:ad:60:33:83:
89:3d:05:9c:a8:4e:1f:81:a4:57:70:59:2a:eb:5a:45:a7:25:
ba:73:10:d8:90:88:82:a0:05:21:da:7c:b5:84:ef:7b:0d:53:
60:c0:3d:f6:b3:d1:22:3c:a7:9e:23:98:62:1e:01:db:64:34:
da:6c:f2:af:f9:32:1d:d4:bc:ea:20:03:22:b4:f1:a8:af:43:
ba:ee:7f:60:57:9c:41:53:c7:82:47:44:2d:0a:e8:21:cb:3e:
5c:2c:e1:6a:7d:ff:77:7f:90:e7:16:d9:6d:c0:bd:a5:8a:d2:
0e:36:55:9f:1d:e8:df:15:0c:24:e1:4c:7c:a8:c2:9a:15:eb:
7a:fc:cd:67:12:94:10:28:94:7e:95:28:78:cb:bd:6e:1c:f8:
5f:24:7c:b9:4d:d5:69:13:4b:bc:c9:c2:2b:1f:b9:79:3c:23:
bb:2b:7c:a0:a8:58:53:8a:f4:22:30:f8:2a:bf:16:ef:04:1f:
4e:82:59:47:fa:95:96:dc:dc:7d:31:7e:81:4b:49:c2:1b:27:
de:9d:54:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:26:27 2026 by rpki-client