Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
File: lWmTFkJJYHEcLo7LU2vdArxyT60.mft (raw, json)
Hash identifier: bIKizbYSRTXFGEFhPuMhOkvEaKU/JAXCPRY2TyfcTHM=
Subject key identifier: C8:1A:F2:A0:D2:0A:C9:96:13:AF:AD:EA:98:D8:C3:58:CC:9D:7B:B6
Authority key identifier: 95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
Certificate issuer: /CN=95699316424960711c2e8ecb536bdd02bc724fad
Certificate serial: 019D26284A4A0BC750B5EA9CF24502418D94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
Manifest number: 06FF
Signing time: Wed 25 Mar 2026 18:01:07 +0000
Manifest this update: Wed 25 Mar 2026 18:01:07 +0000
Manifest next update: Thu 26 Mar 2026 18:01:07 +0000
Files and hashes: 1: lWmTFkJJYHEcLo7LU2vdArxyT60.crl (hash: lq9kGsgSyP+o1Qu6INzS/I733RYDFWtbGRnS2xujrrE=)
2: t8SQMGrl26r1gRo4N2MntzBn8Fo.roa (hash: KLhgVuuIFKpUzDmtTgaR/z7BuurCfK28TIL8+NxxxH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:4a:4a:0b:c7:50:b5:ea:9c:f2:45:02:41:8d:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95699316424960711c2e8ecb536bdd02bc724fad
Validity
Not Before: Mar 25 18:01:07 2026 GMT
Not After : Mar 26 18:01:07 2026 GMT
Subject: CN=c81af2a0d20ac99613afadea98d8c358cc9d7bb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6c:c7:86:65:64:0c:8c:1d:43:cf:ef:a6:47:
17:96:6a:a9:54:f0:04:da:20:09:1d:96:77:71:22:
ad:6e:3e:b7:52:1d:4e:88:fc:f0:7a:9a:1f:18:15:
9f:59:18:5d:67:23:a8:a4:76:23:2c:a5:b4:b8:35:
23:82:85:a9:d5:a7:ac:4e:8a:bc:ca:a0:27:44:2d:
69:d7:4a:f9:c2:c7:17:d5:7f:03:25:1d:e9:ca:7a:
b6:ba:15:d6:d4:cc:b9:82:b3:a6:de:b8:fb:dd:d0:
c6:21:78:64:62:92:c9:e6:55:c8:cc:8f:9c:6c:c4:
5d:05:b9:26:b6:84:17:5d:7e:4d:c7:72:b7:55:35:
8e:95:dd:cf:3a:e8:82:fb:c7:12:cc:a3:0a:27:3c:
7e:d4:41:f6:ad:0a:52:93:09:2e:0a:4c:c0:bf:3c:
a6:e5:16:34:ae:4b:6e:18:6b:41:9c:5b:56:65:7f:
ce:3d:18:26:07:60:93:d5:0d:05:d8:29:9f:4b:db:
a0:dd:71:06:90:32:aa:3b:0d:c3:ef:90:bf:19:19:
f6:ba:b0:33:4c:90:60:74:02:14:f4:54:be:2f:95:
82:15:14:ab:27:f7:0c:b0:ba:88:ce:75:e8:fb:45:
d7:24:a2:58:ce:fa:a1:fd:46:e1:06:2b:aa:de:29:
fa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:1A:F2:A0:D2:0A:C9:96:13:AF:AD:EA:98:D8:C3:58:CC:9D:7B:B6
X509v3 Authority Key Identifier:
keyid:95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:cf:39:ea:f8:1d:0f:88:53:f0:00:a4:ae:53:b3:33:aa:2d:
46:15:58:6a:68:95:55:3c:57:d5:fd:fa:e3:7f:78:c2:74:84:
0f:75:fd:2a:3b:52:99:5c:b3:af:e4:d2:00:14:24:ab:75:93:
97:8d:7f:f0:ae:66:49:19:c2:d3:da:20:f1:40:2b:6e:54:e7:
84:ae:c0:23:15:7e:c6:53:39:9f:8f:1e:53:95:bf:fa:e8:55:
0d:7d:4d:a7:18:4a:37:99:84:6b:d7:20:e6:1d:fc:7e:1e:b4:
83:5e:95:42:67:3d:6c:8a:ed:50:6d:af:d3:d2:d6:d0:5e:83:
77:5a:b4:14:5e:33:b7:e7:7a:a7:aa:52:3d:18:e8:20:cd:f9:
25:f9:bb:5b:e4:8b:fc:6b:93:05:70:3c:89:36:9a:4e:40:7b:
92:a9:3d:1c:0f:3d:c9:70:fe:7d:64:dd:49:7c:dc:71:66:9f:
f5:54:6f:14:27:42:23:db:7a:0d:fe:3d:25:79:4e:0a:b8:88:
71:af:d0:10:52:d8:95:ac:93:18:b3:7c:e4:71:b5:5a:3e:d6:
03:56:21:cf:ae:b3:52:82:8f:c2:7c:c5:7d:02:b1:7e:42:4d:
e7:fb:67:36:4e:d3:65:86:35:13:d8:4f:5d:54:b4:c9:5d:e4:
16:52:1f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:10:28 2026 by rpki-client