Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
File: lXbbt2mVtJUKhsXwfKjbPrSWePY.mft (raw, json)
Hash identifier: hi6H74I7pwsbdVIcdUqisnM4XDKwwzE8jEpD72jz3mk=
Subject key identifier: 2D:C0:EA:45:98:B3:51:A5:9C:63:B9:CA:F6:B3:A9:C2:C9:22:3C:DF
Authority key identifier: 95:76:DB:B7:69:95:B4:95:0A:86:C5:F0:7C:A8:DB:3E:B4:96:78:F6
Certificate issuer: /CN=9576dbb76995b4950a86c5f07ca8db3eb49678f6
Certificate serial: 019D284DF046E7827824A6310D7C4B8A67AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
Manifest number: 05C7
Signing time: Thu 26 Mar 2026 04:01:29 +0000
Manifest this update: Thu 26 Mar 2026 04:01:29 +0000
Manifest next update: Fri 27 Mar 2026 04:01:29 +0000
Files and hashes: 1: lXbbt2mVtJUKhsXwfKjbPrSWePY.crl (hash: QKwF+WVyZNIYev7rAjZyVjCrfMVHNGOsuFzV8trH+QE=)
2: nbxib9e8VbJ8d-n9VXgUOSoB7ew.roa (hash: BSCbUo+BwOOhYIZHjykMAuVC2rv0/uSGrGXGa+iP2Us=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:f0:46:e7:82:78:24:a6:31:0d:7c:4b:8a:67:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9576dbb76995b4950a86c5f07ca8db3eb49678f6
Validity
Not Before: Mar 26 04:01:29 2026 GMT
Not After : Mar 27 04:01:29 2026 GMT
Subject: CN=2dc0ea4598b351a59c63b9caf6b3a9c2c9223cdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:06:4f:84:85:a5:a0:ef:a4:12:8f:db:4b:b2:
cc:45:ee:47:c0:ef:3f:92:c7:55:2e:dd:a3:fa:1f:
e2:05:6b:df:08:0d:fa:6f:aa:dd:3c:a8:ee:fb:b4:
82:22:4f:c0:2a:d8:25:3c:b4:78:66:2a:df:31:4b:
23:34:97:d7:c5:12:8a:1f:c7:0e:9a:0f:06:da:cc:
83:0e:39:28:fd:c0:4a:d3:22:a2:cd:0f:a4:9e:aa:
8b:17:ce:1d:da:ab:0a:e5:b2:da:d4:f7:42:db:05:
b7:17:7e:97:6f:54:32:88:39:b1:3c:62:0b:3e:d4:
0e:d9:24:83:e9:6a:93:fd:ce:2c:88:e2:3d:6c:7a:
84:88:4e:67:d1:45:90:c4:45:80:eb:fb:41:24:1c:
39:71:31:59:6b:29:5e:e7:ad:ac:83:71:38:cf:d1:
72:97:31:5d:ab:10:11:fb:e7:22:1f:ab:60:6a:76:
e4:a2:18:e4:0b:35:65:16:af:4a:32:68:6e:d2:3a:
a7:1c:f9:c0:69:a2:a8:d9:8c:bf:dd:f5:bc:5e:dc:
da:ea:6f:66:74:d2:9c:2d:07:a4:eb:43:08:1a:bb:
d1:00:e0:c1:2c:61:a0:f6:57:b4:3c:d4:95:4d:22:
fe:e0:d1:9e:fc:86:9a:b4:f0:78:8a:eb:07:d8:4a:
51:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:C0:EA:45:98:B3:51:A5:9C:63:B9:CA:F6:B3:A9:C2:C9:22:3C:DF
X509v3 Authority Key Identifier:
keyid:95:76:DB:B7:69:95:B4:95:0A:86:C5:F0:7C:A8:DB:3E:B4:96:78:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lXbbt2mVtJUKhsXwfKjbPrSWePY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/09263c-a5cc-44d6-91c4-61802d9c9344/1/lXbbt2mVtJUKhsXwfKjbPrSWePY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:14:89:72:e1:d6:0e:1c:bf:2a:13:f3:53:5d:8b:4e:2b:20:
20:85:8a:9e:c1:f3:99:fd:bc:d5:41:29:df:07:56:87:23:8e:
9a:08:b4:5e:2e:42:4a:23:51:2f:06:f2:44:67:95:af:c2:da:
95:58:e4:ee:b4:29:70:95:be:15:e9:1e:c8:b3:d2:28:73:98:
ce:c4:1a:4e:58:dd:b9:7d:8e:2b:bc:e2:e1:af:15:70:ae:93:
61:8d:09:22:fc:06:76:75:3f:64:0c:42:17:d0:9e:0e:9b:20:
45:5e:5f:75:cb:53:47:02:6a:41:49:15:c5:da:f7:db:85:5f:
b4:d6:b2:a8:30:27:b3:b0:cd:33:c2:94:ef:49:3c:88:1b:5c:
a1:ac:70:67:a9:73:ec:f2:bc:cc:d6:9c:87:b1:85:7b:8c:b8:
44:a1:6f:cc:6d:d3:67:88:f4:31:1f:0f:74:29:82:cb:39:60:
63:74:e5:e1:51:61:90:4d:1d:57:8d:a6:17:25:9d:c8:91:01:
f6:86:e5:f5:5b:8f:0d:ae:22:09:81:ba:06:04:b5:08:ea:34:
05:45:c2:e8:76:de:f3:c3:7b:58:af:2a:0a:85:2c:10:16:12:
be:b7:16:a2:05:d4:23:71:8a:c4:a1:19:ea:5a:f9:e3:d0:40:
5a:82:45:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oTfBG54J4JKYxDXxLimeuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1NzZkYmI3Njk5NWI0OTUwYTg2YzVmMDdjYThkYjNlYjQ5
Njc4ZjYwHhcNMjYwMzI2MDQwMTI5WhcNMjYwMzI3MDQwMTI5WjAzMTEwLwYDVQQD
EygyZGMwZWE0NTk4YjM1MWE1OWM2M2I5Y2FmNmIzYTljMmM5MjIzY2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwZPhIWloO+kEo/bS7LMRe5HwO8/
ksdVLt2j+h/iBWvfCA36b6rdPKju+7SCIk/AKtglPLR4ZirfMUsjNJfXxRKKH8cO
mg8G2syDDjko/cBK0yKizQ+knqqLF84d2qsK5bLa1PdC2wW3F36Xb1QyiDmxPGIL
PtQO2SSD6WqT/c4siOI9bHqEiE5n0UWQxEWA6/tBJBw5cTFZayle562sg3E4z9Fy
lzFdqxAR++ciH6tganbkohjkCzVlFq9KMmhu0jqnHPnAaaKo2Yy/3fW8Xtza6m9m
dNKcLQek60MIGrvRAODBLGGg9le0PNSVTSL+4NGe/IaatPB4iusH2EpRGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC3A6kWYs1GlnGO5yvazqcLJIjzfMB8GA1UdIwQY
MBaAFJV227dplbSVCobF8Hyo2z60lnj2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFhiYnQybVZ0SlVLaHNYd2ZLamJQclNXZVBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8wOTI2M2MtYTVjYy00NGQ2LTkxYzQt
NjE4MDJkOWM5MzQ0LzEvbFhiYnQybVZ0SlVLaHNYd2ZLamJQclNXZVBZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8wOTI2M2MtYTVjYy00NGQ2LTkxYzQtNjE4MDJkOWM5MzQ0
LzEvbFhiYnQybVZ0SlVLaHNYd2ZLamJQclNXZVBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjBSJcuHW
Dhy/KhPzU12LTisgIIWKnsHzmf281UEp3wdWhyOOmgi0Xi5CSiNRLwbyRGeVr8La
lVjk7rQpcJW+FekeyLPSKHOYzsQaTljduX2OK7zi4a8VcK6TYY0JIvwGdnU/ZAxC
F9CeDpsgRV5fdctTRwJqQUkVxdr324VftNayqDAns7DNM8KU70k8iBtcoaxwZ6lz
7PK8zNach7GFe4y4RKFvzG3TZ4j0MR8PdCmCyzlgY3Tl4VFhkE0dV42mFyWdyJEB
9obl9VuPDa4iCYG6BgS1COo0BUXC6Hbe88N7WK8qCoUsEBYSvrcWogXUI3GKxKEZ
6lr549BAWoJFPQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:59:39 2026 by rpki-client