Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
File: lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft (raw, json)
Hash identifier: wELD7wy3Y/QN0KYA8mNalpUBtRvA16S7znbfTwrnZiI=
Subject key identifier: 23:CA:A8:89:77:14:5A:53:0C:19:5D:BD:94:AC:0E:EF:8D:91:74:39
Authority key identifier: 96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
Certificate issuer: /CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Certificate serial: 019D2816F3F670DCC4139228F94DCEC66825
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
Manifest number: 103F
Signing time: Thu 26 Mar 2026 03:01:25 +0000
Manifest this update: Thu 26 Mar 2026 03:01:25 +0000
Manifest next update: Fri 27 Mar 2026 03:01:25 +0000
Files and hashes: 1: drsnkuosbg6qvFQb_xFsNGudfnU.roa (hash: NBvp9SPTa0IGtzv6khJhiENmtNEIw9wGReWShX2mC+o=)
2: lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl (hash: BYVxFHGBcsJyFBzLqgjwFFB4+8vLJ7WoPqvT+0v6fP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 03:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:f3:f6:70:dc:c4:13:92:28:f9:4d:ce:c6:68:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Validity
Not Before: Mar 26 03:01:25 2026 GMT
Not After : Mar 27 03:01:25 2026 GMT
Subject: CN=23caa88977145a530c195dbd94ac0eef8d917439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e1:93:d8:c4:4e:62:1c:4b:2a:e5:0f:3c:2f:
e7:41:4a:55:7f:28:46:4c:ba:90:1b:e4:02:95:f0:
85:e4:8f:67:f6:d5:bc:19:d4:2d:ad:1f:86:8a:67:
7b:e5:78:e2:f9:3e:ad:52:e6:03:38:21:02:ea:2d:
64:19:f2:10:65:5f:58:8f:5d:5e:d6:96:58:ec:03:
20:5a:93:67:89:d0:04:d7:8a:91:55:80:71:aa:1b:
06:e8:0d:38:f4:dc:b3:8f:c5:ad:b0:c3:a1:78:4c:
72:0a:be:2f:a2:e1:5a:a8:4c:c8:fb:3e:3d:b2:4c:
5a:50:66:fd:bf:b2:e5:5f:14:ee:08:f4:84:e5:81:
ef:e2:3f:b3:35:37:b2:30:fa:34:db:fb:7d:1b:3f:
e1:7f:4a:f9:16:af:b3:c9:26:e5:65:b4:1b:ae:83:
fe:cd:73:a7:d2:5a:22:32:4c:0b:cf:c1:f5:88:fb:
44:0c:3b:87:13:68:1b:a2:91:1e:42:cc:82:8f:4b:
67:76:39:ca:af:ff:03:06:25:01:f6:f7:29:93:92:
9c:6d:d6:b5:3c:3e:5d:9e:5a:96:c6:8f:00:a8:33:
5f:43:54:91:b1:c9:b1:f6:2e:3e:0f:e4:84:26:51:
57:06:ca:2e:46:85:a5:d8:46:e4:02:38:6a:a9:83:
ed:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:CA:A8:89:77:14:5A:53:0C:19:5D:BD:94:AC:0E:EF:8D:91:74:39
X509v3 Authority Key Identifier:
keyid:96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:72:6c:bf:96:60:ff:ec:d6:76:88:0a:1a:70:e2:5e:55:5b:
7b:3c:17:61:60:38:8d:a6:d8:d6:aa:9f:25:e3:a5:36:14:ca:
b5:65:90:17:90:4c:11:61:9d:78:79:b8:27:cd:b8:91:dd:de:
9c:7a:2c:cf:7b:89:bf:be:12:51:b4:ca:3d:d5:d6:28:4d:f3:
ac:f3:4f:c0:84:2c:f0:8f:de:91:25:fe:ea:61:0a:43:6a:98:
38:b7:8f:df:bc:9f:12:dc:85:5b:6b:a9:7d:5a:ff:9f:76:2a:
27:7d:82:1f:9f:a1:c4:6b:41:b8:83:ec:60:78:6a:6a:4d:55:
32:40:bb:16:7e:15:8c:53:bd:25:51:98:0b:aa:12:58:f1:9b:
08:3d:ec:6c:9a:b7:c2:f6:79:12:ae:1e:e0:2b:f9:10:0e:2c:
4a:d5:6f:e1:ea:53:71:c9:3a:fb:9d:25:4b:3e:2b:72:41:03:
3e:88:73:f4:f7:e6:66:1f:4c:cc:0c:4b:8b:a4:58:32:3f:02:
cf:87:b4:72:5a:00:e0:5f:6f:d7:c0:d3:92:2e:71:2c:bf:91:
df:e6:16:13:7d:a8:03:ed:bb:eb:b1:87:97:e1:fb:ce:dc:09:
13:f6:e7:e3:e6:6d:0a:71:3b:eb:7f:e3:5c:6e:82:f4:15:4a:
e9:23:9a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:01:12 2026 by rpki-client