Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft
File: lfdgXoUMnb8X2vC6OONvzGPCy_o.mft (raw, json)
Hash identifier: EGQW/CtuP2yI6JOGoqeqGTGO8QHlCJo+vzh5xKVVyLk=
Subject key identifier: 17:33:8E:AE:A4:9F:47:2F:03:BB:98:0C:28:A2:70:54:90:44:9B:65
Authority key identifier: 95:F7:60:5E:85:0C:9D:BF:17:DA:F0:BA:38:E3:6F:CC:63:C2:CB:FA
Certificate issuer: /CN=95f7605e850c9dbf17daf0ba38e36fcc63c2cbfa
Certificate serial: 019D277279D03260DA1ABC7FEB521EC21038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lfdgXoUMnb8X2vC6OONvzGPCy_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 00:01:46 +0000
Manifest this update: Thu 26 Mar 2026 00:01:46 +0000
Manifest next update: Fri 27 Mar 2026 00:01:46 +0000
Files and hashes: 1: T3Gte_sAcOYHDUpylqXZ9Stq9po.roa (hash: Z/AdHSzAsTqsVCU0cNeiAf6MSfmrxAUqR0oWpvYC1ec=)
2: lfdgXoUMnb8X2vC6OONvzGPCy_o.crl (hash: /2+exZKarEQMqCMK3cOqPOxTWnMfcaOGCRksM4ajJGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/lfdgXoUMnb8X2vC6OONvzGPCy_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:79:d0:32:60:da:1a:bc:7f:eb:52:1e:c2:10:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95f7605e850c9dbf17daf0ba38e36fcc63c2cbfa
Validity
Not Before: Mar 26 00:01:46 2026 GMT
Not After : Mar 27 00:01:46 2026 GMT
Subject: CN=17338eaea49f472f03bb980c28a2705490449b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9c:69:c7:9c:68:28:7a:cf:f8:05:3b:f2:9d:
a1:a1:b3:0f:97:f5:5c:0a:b2:a7:4a:45:03:85:70:
aa:11:ab:31:9d:4a:c6:74:d7:42:61:ee:bd:32:89:
91:b0:d1:fb:30:b8:61:0c:75:b1:bd:0e:ac:fc:d3:
b7:a3:76:d1:a4:0d:8e:4f:19:45:01:65:aa:d8:96:
8f:55:bd:49:4f:ca:4e:1c:e9:ea:8d:ff:36:d9:c1:
50:6a:47:2e:9c:b0:89:2d:49:ed:27:26:3b:7b:b7:
ca:07:c8:2d:a4:07:d7:ff:83:6c:2d:24:4c:58:a1:
d2:a2:1b:93:bd:c5:e0:6a:7a:b2:62:c2:3d:e6:fd:
c8:57:fe:fe:a5:b6:fb:bb:de:ae:85:11:17:3d:66:
e5:90:25:f7:73:ec:a2:88:38:c7:51:a6:c7:29:c4:
ce:4b:56:dd:d4:59:51:22:51:72:18:84:e5:2c:23:
c5:6f:05:cf:39:80:e6:33:ce:5a:8d:7a:b6:78:89:
3d:76:91:f7:e6:ac:b7:1e:aa:ce:ab:85:2c:8d:08:
6a:e0:f4:a6:fc:23:e8:9d:1d:34:5c:de:60:15:1a:
40:59:5c:63:70:3d:14:e1:c0:b6:ac:b5:3a:94:e6:
ca:4c:9d:77:ec:6e:55:f7:a9:06:ab:06:1e:f9:e5:
3d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:33:8E:AE:A4:9F:47:2F:03:BB:98:0C:28:A2:70:54:90:44:9B:65
X509v3 Authority Key Identifier:
keyid:95:F7:60:5E:85:0C:9D:BF:17:DA:F0:BA:38:E3:6F:CC:63:C2:CB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lfdgXoUMnb8X2vC6OONvzGPCy_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9f3bfa-ef3b-4361-b311-6705dc2e3aaa/1/lfdgXoUMnb8X2vC6OONvzGPCy_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:34:bc:8c:0b:11:67:eb:33:d1:83:e8:da:61:19:b1:64:94:
38:13:51:39:d0:cc:05:23:75:87:7c:7a:19:26:25:14:95:2c:
14:1d:62:e2:ac:5f:36:d1:9e:cc:90:56:1a:3b:32:4d:db:e7:
36:a8:ea:3e:46:55:0f:b8:56:80:77:9b:45:08:27:1b:79:72:
6a:0b:67:dc:95:9c:c1:fa:2b:f0:42:3c:69:24:6d:c7:40:25:
42:14:4d:92:3b:01:16:05:2a:db:e6:78:da:38:42:6b:63:1c:
d2:70:13:81:40:90:9e:32:68:69:e0:e6:d2:ab:5e:41:11:8a:
7d:c4:d8:47:e5:14:99:55:13:59:96:3c:04:e6:1e:48:7e:4f:
ac:3c:9a:bd:a4:e3:7f:07:61:9f:a1:8e:96:c7:c1:a9:24:dd:
f4:53:47:35:ae:3e:69:e0:c5:74:6c:f5:15:d1:dd:24:4b:6d:
c4:6b:58:65:15:39:53:b9:c7:35:5d:55:3d:37:59:02:a1:52:
e8:19:5b:0d:17:83:71:0f:20:34:58:25:fe:19:00:f6:45:7f:
86:8d:83:be:97:05:9c:f7:7b:cf:ed:d6:e0:62:82:81:12:03:
f8:2b:6c:76:fc:0e:bd:9b:71:56:eb:b8:f8:62:0d:f2:d9:c1:
26:6b:57:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:30:00 2026 by rpki-client