Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.mft
File: lYBh2AAMuD07iWfmb7ikwn6RImI.mft (raw, json)
Hash identifier: 3VDGMCrW1RKBGvEFkLekOuydaj7L0nIAH6uWsy8Bh0Y=
Subject key identifier: DC:F5:46:FB:C1:AF:61:BE:35:3A:B2:9A:41:25:B9:B2:9F:21:91:8C
Authority key identifier: 95:80:61:D8:00:0C:B8:3D:3B:89:67:E6:6F:B8:A4:C2:7E:91:22:62
Certificate issuer: /CN=958061d8000cb83d3b8967e66fb8a4c27e912262
Certificate serial: 019D284E11739B7E8268094C01C758EF64F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYBh2AAMuD07iWfmb7ikwn6RImI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.mft
Manifest number: 29
Signing time: Thu 26 Mar 2026 04:01:38 +0000
Manifest this update: Thu 26 Mar 2026 04:01:38 +0000
Manifest next update: Fri 27 Mar 2026 04:01:38 +0000
Files and hashes: 1: lYBh2AAMuD07iWfmb7ikwn6RImI.crl (hash: hJrVRn43jpaBaFz34YDxLz5ObEvqkUGN7XbLIC0I8/U=)
2: tV5_l1JoTOlyn1gV75xG7F66I9I.roa (hash: CQ36UA0MMoJmpBpprrqKcSAebezNWRbVUaxNQ4W1kY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYBh2AAMuD07iWfmb7ikwn6RImI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:11:73:9b:7e:82:68:09:4c:01:c7:58:ef:64:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=958061d8000cb83d3b8967e66fb8a4c27e912262
Validity
Not Before: Mar 26 04:01:38 2026 GMT
Not After : Mar 27 04:01:38 2026 GMT
Subject: CN=dcf546fbc1af61be353ab29a4125b9b29f21918c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:57:ec:d7:2d:9b:82:fd:59:90:75:c0:6f:de:
ef:9e:e8:89:ad:8d:87:09:b4:0d:a4:e5:90:9a:30:
f1:f1:61:1b:bc:24:c5:2f:4e:94:91:7a:dd:78:3a:
3d:00:03:73:7b:19:15:d6:e5:05:72:e0:37:70:03:
11:20:8e:13:74:01:cb:76:d7:22:c1:ba:85:15:00:
b8:e9:eb:b4:6b:28:23:7d:18:2d:30:f3:be:0d:32:
d6:ba:61:87:18:f6:4e:8a:18:11:ca:0c:2b:13:25:
7c:1f:bb:d8:e6:c8:b6:7d:5f:d2:82:97:f5:cf:8d:
15:38:6f:32:ac:2a:cb:bb:bb:51:a7:6a:29:55:f3:
c2:ec:79:74:a2:77:e9:36:9f:b5:29:f3:87:28:88:
42:1b:9a:09:6b:6e:da:82:9f:dd:f6:22:94:27:ff:
fa:42:91:f2:12:56:29:1f:74:17:f6:41:c4:87:df:
72:52:06:5b:e4:8a:16:12:62:29:f8:33:51:bc:9c:
6d:1e:84:3b:fd:76:20:c0:e3:1d:60:34:e9:00:cc:
33:be:7f:d0:5b:f4:b7:69:ba:71:68:20:a1:87:8b:
b3:0d:8c:1d:c9:c8:b8:ee:7f:7d:ef:7e:b7:59:9a:
62:11:e0:ef:b3:14:bf:1e:29:20:e5:8c:e2:06:3a:
89:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F5:46:FB:C1:AF:61:BE:35:3A:B2:9A:41:25:B9:B2:9F:21:91:8C
X509v3 Authority Key Identifier:
keyid:95:80:61:D8:00:0C:B8:3D:3B:89:67:E6:6F:B8:A4:C2:7E:91:22:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYBh2AAMuD07iWfmb7ikwn6RImI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:60:1d:00:e4:ed:15:3c:ca:e1:89:e3:59:e1:a5:74:73:ab:
d1:6b:5d:27:6b:88:9d:23:e5:89:88:4f:8d:57:b4:78:6a:2e:
5b:94:3f:f9:d5:88:c7:44:26:bb:0e:dc:12:76:4e:7a:1a:ab:
b4:2b:22:37:a8:dc:4a:54:a3:fd:e0:5d:c5:30:f9:3a:7f:3c:
c4:de:1c:31:59:0a:2a:74:d2:44:09:91:24:87:12:d1:c5:88:
94:da:0d:ca:dc:b6:a2:e5:78:40:af:79:0c:e2:ca:6e:c9:28:
23:1c:24:ff:09:a2:21:02:99:be:9e:fc:8f:99:60:d1:5a:cb:
b5:6e:11:86:4e:86:93:c4:2c:5c:66:4d:53:c8:8e:6d:70:e1:
97:2e:30:86:4a:e9:8e:75:e4:56:c2:6b:7e:89:30:70:41:7a:
f1:d5:c3:9f:9f:24:fc:a9:87:41:6d:4b:0b:bf:ad:ac:88:71:
e4:6b:67:c1:a5:72:31:8f:49:35:4b:5c:3c:2d:e8:6a:66:46:
fd:40:04:4d:87:3f:17:92:a1:50:7a:3b:41:2b:90:dc:ed:51:
b8:10:06:29:30:d1:2a:48:d4:37:68:89:7e:b6:05:f5:39:1d:
29:59:a7:ef:9a:89:d2:f6:d7:8a:c1:65:5f:6e:bd:db:62:40:
59:04:4d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:48:33 2026 by rpki-client