Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
File: lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft (raw, json)
Hash identifier: uM5IZ/4Kdp3bjTCNEHwa5EJjSG9jS3CIFrXgbioVoe8=
Subject key identifier: F6:C9:42:8C:BC:6A:67:D1:51:EC:32:5E:04:3E:8F:41:E8:88:53:BE
Authority key identifier: 96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
Certificate issuer: /CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Certificate serial: 019E1F479E9389150444F25F2269A4852AEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
Manifest number: 10BF
Signing time: Wed 13 May 2026 03:00:47 +0000
Manifest this update: Wed 13 May 2026 03:00:47 +0000
Manifest next update: Thu 14 May 2026 03:00:47 +0000
Files and hashes: 1: drsnkuosbg6qvFQb_xFsNGudfnU.roa (hash: NBvp9SPTa0IGtzv6khJhiENmtNEIw9wGReWShX2mC+o=)
2: lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl (hash: g74y2hIdxbd1ud3lKN1ILwOrKDJOlSWK47JNwfTY47E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:9e:93:89:15:04:44:f2:5f:22:69:a4:85:2a:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Validity
Not Before: May 13 03:00:47 2026 GMT
Not After : May 14 03:00:47 2026 GMT
Subject: CN=f6c9428cbc6a67d151ec325e043e8f41e88853be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:94:a6:7d:f8:50:47:b5:93:02:76:8a:21:ae:
64:38:17:00:e6:d4:f4:dd:c3:72:60:33:19:e4:80:
56:7e:c5:64:d9:ed:22:02:e1:ed:47:89:ea:a4:c7:
e5:87:e7:56:3d:12:09:e7:5f:7e:e0:b1:c3:db:d7:
5c:cc:f1:a0:e6:be:ee:ad:f3:30:93:6a:89:4c:f1:
28:51:66:dc:73:51:6e:b0:c8:f2:46:5b:05:02:99:
29:ae:94:e3:dd:d7:78:2c:74:ca:10:2a:11:90:bf:
b6:34:16:13:20:a9:a0:a0:40:1d:cd:50:ac:7f:8f:
62:d0:49:95:41:d4:2c:02:61:c9:48:4a:99:97:84:
6e:9c:87:e5:4f:f8:78:8b:af:66:47:dd:7a:b1:51:
06:1f:d5:fd:56:79:fb:f9:b9:c4:3c:58:05:ad:03:
d2:93:39:9b:68:ed:cb:ea:f3:ed:5b:36:d6:a5:c9:
8f:c1:45:53:95:f1:cb:75:d2:e2:16:28:30:61:05:
12:6a:90:ed:e7:a9:74:8f:42:61:54:9f:1c:98:e7:
d9:38:7c:b6:4b:b0:34:45:3a:0c:35:6d:3b:84:fa:
e7:0e:73:88:40:e9:5f:6f:be:af:35:5d:1c:db:12:
73:c6:67:0e:23:ae:30:0e:5b:31:0c:57:f3:4b:58:
8d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:C9:42:8C:BC:6A:67:D1:51:EC:32:5E:04:3E:8F:41:E8:88:53:BE
X509v3 Authority Key Identifier:
keyid:96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:7f:15:f8:b1:91:df:3f:e4:00:37:00:3b:9d:ce:a7:15:71:
92:62:af:53:da:22:3f:c8:76:b1:5d:29:b6:f2:e8:22:d7:9b:
5e:3c:a8:4e:0f:3b:1e:0b:82:c6:df:03:53:76:8b:48:d8:c4:
db:ea:f9:ee:d3:7a:e1:d9:55:2b:65:b3:81:ab:e0:43:8a:b9:
a1:f9:96:d4:8a:88:1a:2e:84:b6:c5:95:b3:1b:46:68:38:11:
c1:db:7e:8b:74:cc:c7:47:d0:6f:2e:74:33:3e:10:ab:fd:6a:
b4:20:ca:d9:2b:dd:e2:d9:b8:2a:41:b5:78:a0:f8:b9:6b:e1:
02:c1:71:9f:29:84:08:ca:76:a0:3b:1f:ac:bb:4c:37:82:22:
7c:1b:37:4f:2c:54:15:d1:7e:6c:ac:5c:4a:08:6d:3c:3d:75:
e9:1b:e8:c1:ae:26:45:0a:19:71:85:e5:49:38:9f:bd:91:56:
08:58:68:ad:e2:34:30:38:29:ba:45:10:80:82:ce:57:c2:bd:
94:72:26:4a:1a:ac:83:f0:c0:07:41:17:67:f0:d2:1e:35:8a:
42:cd:73:fd:96:49:bf:69:61:b5:75:10:a9:d0:68:7c:5a:9b:
68:b5:ee:5e:99:15:3e:b5:3f:62:02:05:67:eb:92:7a:9e:26:
45:74:d8:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:17:40 2026 by rpki-client