Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
File: O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft (raw, json)
Hash identifier: N9L+14PEOw9pW1i+bnLH1xfWsg/KNoM4csnQsafaLA8=
Subject key identifier: C1:7A:77:11:83:B4:B6:DD:F5:A7:A1:96:E0:99:0B:D8:F4:2D:86:AC
Authority key identifier: 3B:F2:C2:0D:A4:D6:30:18:2E:EE:33:45:AD:9D:1C:4A:D9:17:0D:50
Certificate issuer: /CN=3bf2c20da4d630182eee3345ad9d1c4ad9170d50
Certificate serial: 019D284DC2B8C6719415B47BDF690E59C89C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
Manifest number: 12C5
Signing time: Thu 26 Mar 2026 04:01:17 +0000
Manifest this update: Thu 26 Mar 2026 04:01:17 +0000
Manifest next update: Fri 27 Mar 2026 04:01:17 +0000
Files and hashes: 1: O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl (hash: dmmFEq+60RcQ7vzrgZYdDaCcuy2gMyDpe2R2iB35w+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:c2:b8:c6:71:94:15:b4:7b:df:69:0e:59:c8:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf2c20da4d630182eee3345ad9d1c4ad9170d50
Validity
Not Before: Mar 26 04:01:17 2026 GMT
Not After : Mar 27 04:01:17 2026 GMT
Subject: CN=c17a771183b4b6ddf5a7a196e0990bd8f42d86ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:95:9d:d8:b8:0b:f2:2f:4d:d5:8c:74:20:f1:
cf:44:00:e6:3e:fb:b1:76:b5:94:7b:eb:87:96:02:
92:a5:ce:f2:10:8a:e3:9d:3f:1b:67:ca:a8:d7:9e:
76:b2:fe:12:4d:88:7f:e8:57:b5:b8:ed:f7:a5:72:
f5:f2:23:8b:84:0d:1c:51:94:c9:0b:4e:17:70:7f:
32:a9:01:89:12:c7:b7:9d:69:6e:de:e7:2a:5c:bd:
3a:50:b5:9b:a5:50:a6:10:4d:8d:84:06:17:d2:8b:
97:d0:bf:05:1f:5d:c1:a8:4c:13:76:52:78:56:fc:
e1:3d:a4:87:5b:69:bf:52:f8:f4:b4:d9:af:c2:f5:
7f:37:a9:b8:c2:d6:f3:0a:d2:87:87:50:92:26:65:
62:30:59:b6:3f:72:53:15:2d:6a:32:e9:23:d3:ce:
3e:ed:4a:12:2f:ca:54:4c:d6:d7:b3:61:a9:38:7e:
94:2d:61:0c:bd:0f:9f:c9:da:4b:37:ca:71:7c:0c:
ed:43:34:f4:f3:10:52:02:60:36:eb:a0:8a:1c:71:
ab:26:71:93:03:9b:1a:57:d8:b8:4b:2b:85:0b:e6:
23:fa:81:44:91:c4:bb:71:10:72:6b:f1:a0:7b:66:
90:eb:76:30:3a:10:a3:4b:41:3c:b4:78:37:7b:50:
01:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:7A:77:11:83:B4:B6:DD:F5:A7:A1:96:E0:99:0B:D8:F4:2D:86:AC
X509v3 Authority Key Identifier:
keyid:3B:F2:C2:0D:A4:D6:30:18:2E:EE:33:45:AD:9D:1C:4A:D9:17:0D:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_LCDaTWMBgu7jNFrZ0cStkXDVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/072b46-0da1-42d2-899c-a0bda8af756a/1/O_LCDaTWMBgu7jNFrZ0cStkXDVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:6c:ad:3e:04:78:5f:7a:74:ad:65:11:af:90:14:fd:71:6b:
ea:ba:27:ff:0d:a0:cb:fc:fc:b4:98:7d:b8:a2:08:fb:81:e8:
46:e0:2c:88:62:e4:13:76:5f:12:ac:6c:fd:33:b4:bd:d6:cc:
de:0e:64:db:ed:58:38:12:35:69:6c:bd:8d:78:39:f0:f3:1e:
ea:2c:11:e5:23:9e:54:4e:07:79:7c:d6:5a:97:86:b5:02:25:
84:d7:d6:ce:02:ba:cb:e4:86:84:04:35:86:e2:9e:4a:9e:4e:
80:15:72:6f:ec:60:aa:69:e2:f2:d7:71:83:25:04:f3:f4:ee:
fb:bb:b4:f4:2c:bb:c9:2c:8c:7c:cf:56:b5:75:12:f3:53:41:
f4:cf:d7:aa:e4:c9:14:e0:c9:52:e2:68:eb:69:98:d9:36:9f:
87:80:99:06:09:b5:43:93:66:01:6b:bb:10:89:da:48:41:33:
39:16:56:97:53:47:e4:04:d7:e5:d8:f3:71:11:20:77:eb:56:
f9:16:92:07:c3:7c:b4:47:ae:b1:c8:37:49:45:a0:74:37:61:
33:b5:99:28:62:fd:50:b4:a6:65:04:5e:9d:3d:56:4f:20:65:
6e:5e:01:04:05:ec:6e:ef:0d:1b:37:c1:2c:33:96:13:2a:77:
6f:d6:b0:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oTcK4xnGUFbR732kOWcicMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZjJjMjBkYTRkNjMwMTgyZWVlMzM0NWFkOWQxYzRhZDkx
NzBkNTAwHhcNMjYwMzI2MDQwMTE3WhcNMjYwMzI3MDQwMTE3WjAzMTEwLwYDVQQD
EyhjMTdhNzcxMTgzYjRiNmRkZjVhN2ExOTZlMDk5MGJkOGY0MmQ4NmFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpWd2LgL8i9N1Yx0IPHPRADmPvux
drWUe+uHlgKSpc7yEIrjnT8bZ8qo1552sv4STYh/6Fe1uO33pXL18iOLhA0cUZTJ
C04XcH8yqQGJEse3nWlu3ucqXL06ULWbpVCmEE2NhAYX0ouX0L8FH13BqEwTdlJ4
VvzhPaSHW2m/Uvj0tNmvwvV/N6m4wtbzCtKHh1CSJmViMFm2P3JTFS1qMukj084+
7UoSL8pUTNbXs2GpOH6ULWEMvQ+fydpLN8pxfAztQzT08xBSAmA266CKHHGrJnGT
A5saV9i4SyuFC+Yj+oFEkcS7cRBya/Gge2aQ63YwOhCjS0E8tHg3e1ABUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMF6dxGDtLbd9aehluCZC9j0LYasMB8GA1UdIwQY
MBaAFDvywg2k1jAYLu4zRa2dHErZFw1QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT19MQ0RhVFdNQmd1N2pORnJaMGNTdGtYRFZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8wNzJiNDYtMGRhMS00MmQyLTg5OWMt
YTBiZGE4YWY3NTZhLzEvT19MQ0RhVFdNQmd1N2pORnJaMGNTdGtYRFZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny8wNzJiNDYtMGRhMS00MmQyLTg5OWMtYTBiZGE4YWY3NTZh
LzEvT19MQ0RhVFdNQmd1N2pORnJaMGNTdGtYRFZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABWytPgR4
X3p0rWURr5AU/XFr6ron/w2gy/z8tJh9uKII+4HoRuAsiGLkE3ZfEqxs/TO0vdbM
3g5k2+1YOBI1aWy9jXg58PMe6iwR5SOeVE4HeXzWWpeGtQIlhNfWzgK6y+SGhAQ1
huKeSp5OgBVyb+xgqmni8tdxgyUE8/Tu+7u09Cy7ySyMfM9WtXUS81NB9M/XquTJ
FODJUuJo62mY2Tafh4CZBgm1Q5NmAWu7EInaSEEzORZWl1NH5ATX5djzcREgd+tW
+RaSB8N8tEeuscg3SUWgdDdhM7WZKGL9ULSmZQRenT1WTyBlbl4BBAXsbu8NGzfB
LDOWEyp3b9awSA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 14:52:31 2026 by rpki-client