Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
File: legTEe8dNuzG0SXjbILCb5FbDfc.mft (raw, json)
Hash identifier: qx3xFBHZ4QYnzzAQM+4Mn6W8kPQq1TNoSeteSF4ZUIo=
Subject key identifier: 7C:02:D7:7D:08:D2:69:D0:FD:4F:F2:A0:A9:C3:10:78:B3:32:1D:C2
Authority key identifier: 95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
Certificate issuer: /CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Certificate serial: 019D2A3B935A4DD1DE0B1963A750602D843C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
Manifest number: 13EA
Signing time: Thu 26 Mar 2026 13:00:40 +0000
Manifest this update: Thu 26 Mar 2026 13:00:40 +0000
Manifest next update: Fri 27 Mar 2026 13:00:40 +0000
Files and hashes: 1: _C6lyxoQMU5yOrfGf8iAi-Sl_ow.roa (hash: p2xyfl4wigqQ6in3fdRR4OWjfDysBXxdWoA57WsF6ho=)
2: legTEe8dNuzG0SXjbILCb5FbDfc.crl (hash: l0V8+/P1x3v3tvVAxd6KKytkCQowRZKY8bhMzpm3+Kk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:93:5a:4d:d1:de:0b:19:63:a7:50:60:2d:84:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Validity
Not Before: Mar 26 13:00:40 2026 GMT
Not After : Mar 27 13:00:40 2026 GMT
Subject: CN=7c02d77d08d269d0fd4ff2a0a9c31078b3321dc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ce:95:fc:90:ec:81:a6:dd:20:55:ae:57:54:
05:1a:47:39:59:d6:de:33:38:6f:0b:a9:2f:1b:a0:
38:71:e1:14:6b:db:ae:60:f4:93:32:a7:88:37:73:
49:1d:07:55:db:4a:31:eb:47:16:07:45:dd:78:f1:
cf:88:9f:01:da:d0:0f:66:85:59:dc:2e:6d:a8:31:
24:bf:00:ec:75:eb:a2:55:61:3f:ac:0f:7c:46:25:
09:ff:a5:88:6c:b4:1f:df:37:82:80:57:d5:87:00:
1f:0b:f9:1c:f9:25:4b:93:d6:d0:15:76:86:ea:c0:
3f:9d:26:87:56:e5:ca:65:8f:9f:cc:d2:08:1c:f6:
cb:93:c8:50:9a:d3:cf:6c:11:04:33:36:5e:8e:e9:
57:ca:22:a4:89:de:ad:a8:ed:e1:3f:13:bf:03:0f:
c1:9b:8d:4a:b3:2a:98:9f:cf:43:53:5b:39:c7:59:
2f:44:02:75:e9:8c:fe:c2:71:18:8f:b2:d9:e4:95:
44:74:3e:64:d0:d4:96:d3:05:a4:2e:4d:22:be:aa:
9b:8c:26:75:12:e1:5a:dc:82:d1:81:cc:78:23:90:
a3:ce:b7:9a:6b:46:74:fd:cc:34:e1:cc:eb:30:82:
23:69:bb:39:8d:a1:75:58:95:98:6d:6c:dd:f8:44:
a1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:02:D7:7D:08:D2:69:D0:FD:4F:F2:A0:A9:C3:10:78:B3:32:1D:C2
X509v3 Authority Key Identifier:
keyid:95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:2b:06:dc:ac:37:2d:74:33:51:44:6f:b6:61:33:c5:b8:07:
c2:b3:e7:e6:10:1c:30:d7:cc:3e:6a:b6:b9:80:8d:04:f0:a1:
f8:09:84:11:31:7d:0b:f0:5c:7d:df:26:22:cf:b7:08:a1:a6:
c7:4b:e8:9d:5a:1f:a5:bb:02:39:26:43:89:9f:11:20:7e:42:
18:47:9d:5c:1f:4d:5f:5f:ee:da:ce:2e:5c:67:ea:b8:50:cc:
bf:20:24:5e:f6:bd:a6:8d:3c:8e:f3:01:e4:6a:b5:05:04:7b:
20:c0:94:68:b5:52:a3:ac:a4:29:01:6b:34:d8:bc:09:04:d3:
47:cd:39:65:72:e8:2c:72:2d:b9:b6:54:83:5d:26:10:c6:f0:
78:d6:ce:3d:71:d8:b1:cd:70:e3:91:78:d2:d2:d9:31:6e:37:
93:7f:3d:85:c8:ec:d4:55:78:6b:88:df:9a:1f:08:9d:0b:cc:
37:53:41:b3:c8:d5:4c:e5:bf:85:76:60:f5:ba:b0:4f:aa:92:
49:25:03:81:bd:be:a2:3d:cd:da:5a:8f:74:de:7e:6c:92:f8:
42:d8:26:3d:f7:21:3d:e4:b7:39:26:18:db:89:fd:b9:bd:90:
3a:8f:55:3e:b2:a3:e6:12:de:51:02:b3:33:2c:95:a0:90:5a:
a4:33:38:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:40:33 2026 by rpki-client