Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
File: lKpBiudwvajvBRax0cYzpn6R84s.mft (raw, json)
Hash identifier: QPXUmjVJsbPB/+vVORwE2EYQNDEjZFRwe2aMJ84w0KQ=
Subject key identifier: 0F:DD:04:2F:63:D8:B9:A1:A3:A0:10:29:EE:BE:DC:0D:A9:46:B9:12
Authority key identifier: 94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
Certificate issuer: /CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Certificate serial: 019D273B1E22E476C0C7D277DC9753E79226
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
Manifest number: 124F
Signing time: Wed 25 Mar 2026 23:01:18 +0000
Manifest this update: Wed 25 Mar 2026 23:01:18 +0000
Manifest next update: Thu 26 Mar 2026 23:01:18 +0000
Files and hashes: 1: F0X0Kldz9ZbWiCYe5dgOuGe8cE8.roa (hash: l3MXfi0HIHId22Sz44wGoyo4bnLBnE9WiSKYA9yuZAM=)
2: lKpBiudwvajvBRax0cYzpn6R84s.crl (hash: VXwkHUeDmgTTIfjkFyLk995zTtDnMi12x7dzyqLdOyI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:1e:22:e4:76:c0:c7:d2:77:dc:97:53:e7:92:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94aa418ae770bda8ef0516b1d1c633a67e91f38b
Validity
Not Before: Mar 25 23:01:18 2026 GMT
Not After : Mar 26 23:01:18 2026 GMT
Subject: CN=0fdd042f63d8b9a1a3a01029eebedc0da946b912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:93:69:51:08:0b:2f:a5:04:3f:1e:2d:35:c6:
4b:ee:79:90:0e:f5:0a:0a:94:c8:ad:4d:6d:49:2a:
ef:d3:02:a6:be:38:00:0a:a1:90:f2:ed:a6:5d:bb:
1a:c6:52:9b:f0:cd:0b:17:f9:17:bb:e3:af:52:e8:
be:b7:eb:94:17:46:c8:7f:6e:8d:91:d5:28:56:d8:
b0:54:32:22:45:f8:b7:9c:5e:37:9f:7d:e2:d7:47:
3a:06:31:3e:d6:ed:1c:fb:b9:95:12:aa:e4:1e:ab:
99:1b:86:b6:eb:ee:f4:62:f5:f2:70:17:04:96:2d:
d5:76:03:0a:12:eb:f7:8a:9f:53:b5:f5:be:9f:be:
3c:b5:e5:5b:c3:d1:01:b5:d0:2f:cf:f6:21:6e:e0:
f9:73:78:c3:09:b5:08:08:a9:1c:50:01:1e:90:26:
7a:d8:d6:2a:7a:03:7e:53:72:3f:f8:a4:82:c1:29:
69:f8:8b:59:00:fb:86:48:2e:45:b9:af:be:18:5d:
17:e9:85:2e:b9:1b:d8:c2:e4:57:b9:e5:39:23:d8:
4c:ef:a0:ca:e2:e0:39:ad:63:41:49:70:16:82:32:
3f:d7:e8:9d:11:43:a0:82:04:d6:31:f6:a6:70:a5:
92:82:ba:5e:80:17:4f:9d:8e:20:23:3d:4d:48:62:
6b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:DD:04:2F:63:D8:B9:A1:A3:A0:10:29:EE:BE:DC:0D:A9:46:B9:12
X509v3 Authority Key Identifier:
keyid:94:AA:41:8A:E7:70:BD:A8:EF:05:16:B1:D1:C6:33:A6:7E:91:F3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lKpBiudwvajvBRax0cYzpn6R84s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/09e2f7-e650-4f38-a745-c396200fe0bf/1/lKpBiudwvajvBRax0cYzpn6R84s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:76:fe:58:a4:89:7a:f2:c0:2f:2d:b1:5e:ad:99:5d:16:b5:
b1:1e:ea:5f:de:30:50:9b:39:29:41:ce:18:bc:54:d7:f3:4a:
a4:8d:f7:91:66:38:d6:ef:68:ab:0f:17:d8:b3:61:f0:61:b2:
b5:f1:5b:48:7e:e4:fc:da:e6:71:8a:8e:bd:ea:1c:99:54:e6:
45:42:43:60:ee:58:1f:6f:46:de:97:5d:de:2c:4f:c8:1a:3a:
f9:24:e0:7e:e4:f1:27:9f:4c:de:78:3a:bd:85:ef:32:c9:16:
31:bf:14:01:b3:ce:07:a4:3e:ea:6a:ff:a8:0b:a0:12:31:7f:
25:61:cd:28:9b:ba:f2:ad:2b:e8:45:80:34:b5:98:38:9f:71:
0b:d0:c0:7c:37:c9:0f:c0:97:93:93:cd:1f:77:f0:af:93:1c:
fb:4f:f0:0d:3c:a9:da:82:70:fa:1b:b4:04:30:b6:ee:93:d5:
e2:c6:83:2f:51:2e:a6:e2:30:f8:fe:bd:c1:63:3a:ea:ed:9f:
7b:b3:d1:a3:b5:cf:2e:fe:40:c8:43:85:05:c4:f1:a8:ab:b6:
cc:87:79:02:df:ce:bf:c6:4a:b9:42:57:a2:4e:0b:ae:18:40:
74:50:5e:d2:37:c6:2e:12:8c:d2:f4:b4:cf:02:a9:d5:ee:3b:
3d:f0:b9:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:57:45 2026 by rpki-client