Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
File: L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft (raw, json)
Hash identifier: zRN33ZzqjbJqNzUfv9XJNBufNW8tcaPqppiSoNrxoJ0=
Subject key identifier: 0B:19:FE:7B:A9:F8:83:F0:D6:F9:74:57:6D:2F:19:4B:CA:2E:E6:70
Authority key identifier: 2F:70:53:26:64:34:3C:B3:D2:89:70:23:A1:27:F6:0B:A9:17:A5:DD
Certificate issuer: /CN=2f70532664343cb3d2897023a127f60ba917a5dd
Certificate serial: 019D269646361983A57A9C09D5959DCA5AD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
Manifest number: 0E79
Signing time: Wed 25 Mar 2026 20:01:15 +0000
Manifest this update: Wed 25 Mar 2026 20:01:15 +0000
Manifest next update: Thu 26 Mar 2026 20:01:15 +0000
Files and hashes: 1: L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl (hash: WP8WhMYZoVDYdZBkXZgaSaDQfH3MSBvjEvrA4CpSMLY=)
2: TsNw6_rUlF3WyS0xB9lA_qFI5N0.roa (hash: o/jK1+Sozn92VWRitjnWkL3+T8fEVmw/zg1uz6fdVJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:46:36:19:83:a5:7a:9c:09:d5:95:9d:ca:5a:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f70532664343cb3d2897023a127f60ba917a5dd
Validity
Not Before: Mar 25 20:01:15 2026 GMT
Not After : Mar 26 20:01:15 2026 GMT
Subject: CN=0b19fe7ba9f883f0d6f974576d2f194bca2ee670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c0:49:e4:1c:4a:82:e5:7b:3d:a8:8b:52:bb:
67:f5:ab:42:f8:e9:3a:d9:cc:65:fb:9f:ce:8b:e4:
aa:cb:66:cf:2b:77:78:45:6a:57:e3:86:81:ea:3d:
0b:3d:df:d8:a3:7f:7d:c1:d6:ad:06:6f:a1:58:80:
04:f2:4d:f3:c7:80:2f:7e:4e:09:e9:03:0e:1b:22:
35:ad:cd:6b:8e:0b:bc:42:26:b2:44:ed:d9:d4:ae:
f6:16:d7:d7:de:57:9d:47:96:0f:13:34:51:56:4d:
6f:3c:de:82:24:51:88:ce:ac:df:ff:bd:21:5e:7f:
c5:2b:03:53:de:16:73:f1:cd:19:53:88:7f:23:62:
22:9a:5b:2f:a7:6b:cb:85:83:1a:5e:1b:d1:cf:ec:
f5:7b:3a:e5:8d:ce:0d:1c:f7:a2:98:d6:dc:62:7f:
99:05:34:64:02:96:6a:e3:9d:fb:38:a4:c6:58:81:
db:71:d2:9a:6e:39:a7:56:7f:da:77:d2:49:15:ac:
06:a0:19:84:08:f0:d7:64:48:3c:85:ce:33:71:36:
1d:63:f8:af:cd:fa:43:12:3d:13:24:87:be:19:c5:
2a:35:9a:3f:bd:cb:3b:07:09:f9:ca:b4:49:d9:6e:
69:0d:7f:39:dd:11:a8:72:12:2d:90:8d:f3:16:57:
f0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:19:FE:7B:A9:F8:83:F0:D6:F9:74:57:6D:2F:19:4B:CA:2E:E6:70
X509v3 Authority Key Identifier:
keyid:2F:70:53:26:64:34:3C:B3:D2:89:70:23:A1:27:F6:0B:A9:17:A5:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:53:55:ad:46:d1:00:76:e5:66:13:3d:7e:6c:4e:23:1f:7d:
67:df:7f:90:cf:48:e1:ad:4f:17:46:44:30:84:98:95:17:ae:
ea:84:44:8c:51:14:10:90:76:07:07:16:b6:8f:4c:3d:1f:e7:
4a:6f:b5:1c:43:31:ac:55:1a:b3:24:d0:92:05:29:d9:f9:8c:
50:d7:06:27:1e:dc:fd:3f:19:0c:f9:50:56:75:7e:af:05:02:
19:cd:b7:79:f5:f3:ea:2e:95:55:b3:0f:f8:fb:88:3e:da:31:
65:48:63:af:1d:5e:4f:fc:fe:99:70:9e:fc:c9:cc:ee:13:f4:
d5:99:8f:32:ad:64:f6:86:6e:88:22:a4:35:ed:d6:a8:20:31:
31:bd:81:f4:53:1e:fc:5c:bf:0f:e5:40:98:ab:6e:4d:ba:48:
b2:5a:05:f6:53:f9:0d:ca:41:d1:1e:eb:3f:16:3a:12:4e:31:
cb:14:e4:b2:b4:ce:e4:33:30:a2:8c:55:c3:26:c2:7f:95:5d:
09:03:9a:5e:c9:0a:6e:c0:e8:03:f0:e0:81:95:f1:40:08:f2:
ee:7e:5c:63:1b:5e:08:6e:4d:67:97:aa:cb:a6:2d:79:8a:d5:
74:4e:6c:e0:c7:ba:80:21:79:a7:41:4f:e8:af:17:43:dd:e4:
20:e3:8e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:57:21 2026 by rpki-client