Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
File: L42NDO68zXW2BrpJaPXHlG6NR8A.mft (raw, json)
Hash identifier: eQ4NoKJWSuI7ToSdPb2hEGbZe2dvrjj1FHrMxWny/SA=
Subject key identifier: CA:EA:55:67:E1:86:75:AA:A8:74:F5:69:DD:09:EC:90:BC:D4:20:97
Authority key identifier: 2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
Certificate issuer: /CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Certificate serial: 019D2A04E44B9EDE664048511D5CFE148B35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
Manifest number: 0E75
Signing time: Thu 26 Mar 2026 12:00:56 +0000
Manifest this update: Thu 26 Mar 2026 12:00:56 +0000
Manifest next update: Fri 27 Mar 2026 12:00:56 +0000
Files and hashes: 1: L42NDO68zXW2BrpJaPXHlG6NR8A.crl (hash: +rYsIpseXG/gK/t7iabGLmrjl1dWDkKyxqmtLc/V40Q=)
2: uWpjW8EwvAg8xDTN_thfrhA4LAw.roa (hash: ymWyRdJuJht5zV2QVlIv93b0gP0KmipQqoXtKDEDweQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:e4:4b:9e:de:66:40:48:51:1d:5c:fe:14:8b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Validity
Not Before: Mar 26 12:00:56 2026 GMT
Not After : Mar 27 12:00:56 2026 GMT
Subject: CN=caea5567e18675aaa874f569dd09ec90bcd42097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e1:c3:3c:2c:74:75:c2:44:e2:b7:56:c3:2e:
26:48:d5:35:7f:af:c1:1c:ca:d2:11:a4:c3:6f:3d:
9f:d1:25:62:13:a7:9c:4b:4b:ba:58:c6:fa:a5:a6:
0a:70:89:e3:66:33:cd:10:4c:7d:94:7b:67:f2:99:
5a:50:43:8a:39:4a:f3:0e:fe:28:0b:c1:b4:09:e9:
20:72:b3:8d:f4:56:a0:b3:27:0b:0f:ab:da:82:92:
d4:2d:01:71:86:5f:b1:d1:52:79:8e:b7:6e:c9:fa:
7e:ec:9c:2b:59:d3:6c:dd:8f:83:c4:75:71:ed:db:
2a:61:4b:6a:3f:16:76:92:f2:07:e4:a5:20:fe:f8:
5e:d9:a1:5f:42:89:b7:9c:a7:77:f1:b3:fb:a1:ff:
61:79:3c:38:30:e2:15:41:6c:f5:6d:97:14:bf:61:
83:77:3e:33:fe:90:9b:a9:9e:54:f2:02:f6:e3:6e:
ba:a1:b8:a4:8a:cd:b3:15:2e:1e:52:b3:63:34:47:
5e:a7:86:dc:6b:be:9f:3c:29:7b:ae:bd:c9:9e:48:
95:c7:4f:f2:35:1a:83:21:44:ad:cd:c4:76:4a:a5:
a4:f7:6e:df:f7:b4:1b:37:f0:8b:95:89:56:45:24:
f2:e1:71:fd:2c:a9:6e:7a:03:6a:45:7e:cb:df:fe:
6d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:EA:55:67:E1:86:75:AA:A8:74:F5:69:DD:09:EC:90:BC:D4:20:97
X509v3 Authority Key Identifier:
keyid:2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:d9:a2:83:24:67:b7:28:ef:a6:0b:8e:83:e8:ba:96:84:ad:
36:68:41:6e:34:90:7e:18:ad:fd:65:bb:e4:d9:f5:a9:c6:ee:
06:0b:21:05:d0:c8:f2:f4:01:29:c6:df:83:66:2c:bb:c0:83:
ba:a4:ff:9f:da:b3:05:1d:c8:4c:b6:5c:0f:0f:e7:59:e0:13:
2a:ca:7b:4d:20:49:71:0a:aa:99:0f:47:27:33:1e:2c:45:f5:
9c:a5:0e:46:05:95:e4:0a:ff:92:bc:b8:a7:6a:41:8c:dc:76:
8e:49:dc:cf:97:3d:cf:d6:d2:98:eb:55:0f:67:f4:0f:7a:5c:
b4:d1:33:f1:5d:99:31:b1:d5:0b:b8:09:42:61:29:2e:b5:87:
c8:ae:9c:02:a2:6d:05:e6:ad:20:4b:4f:a0:97:fd:8b:a7:00:
7f:13:33:86:c6:7f:ba:ed:36:46:73:f5:88:d7:35:48:9e:00:
ec:a3:4d:1b:2d:f4:02:72:bf:90:82:a9:46:a3:d1:ad:88:49:
50:e3:47:02:21:1a:3f:fc:18:e7:f5:67:a1:02:c0:15:a5:65:
53:c7:7a:ff:ee:a4:02:db:2c:80:3d:07:3d:7e:49:b9:78:43:
8f:c8:45:aa:bd:c3:ec:fc:c2:c6:99:95:12:41:66:3d:0f:27:
50:49:1e:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qBORLnt5mQEhRHVz+FIs1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmOGQ4ZDBjZWViY2NkNzViNjA2YmE0OTY4ZjVjNzk0NmU4
ZDQ3YzAwHhcNMjYwMzI2MTIwMDU2WhcNMjYwMzI3MTIwMDU2WjAzMTEwLwYDVQQD
EyhjYWVhNTU2N2UxODY3NWFhYTg3NGY1NjlkZDA5ZWM5MGJjZDQyMDk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveHDPCx0dcJE4rdWwy4mSNU1f6/B
HMrSEaTDbz2f0SViE6ecS0u6WMb6paYKcInjZjPNEEx9lHtn8plaUEOKOUrzDv4o
C8G0CekgcrON9FagsycLD6vagpLULQFxhl+x0VJ5jrduyfp+7JwrWdNs3Y+DxHVx
7dsqYUtqPxZ2kvIH5KUg/vhe2aFfQom3nKd38bP7of9heTw4MOIVQWz1bZcUv2GD
dz4z/pCbqZ5U8gL24266obikis2zFS4eUrNjNEdep4bca76fPCl7rr3JnkiVx0/y
NRqDIUStzcR2SqWk927f97QbN/CLlYlWRSTy4XH9LKluegNqRX7L3/5tWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMrqVWfhhnWqqHT1ad0J7JC81CCXMB8GA1UdIwQY
MBaAFC+NjQzuvM11tga6SWj1x5RujUfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDQyTkRPNjh6WFcyQnJwSmFQWEhsRzZOUjhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni80ZjNiYmQtNGE2MS00MmM1LThiMDct
M2NiZDUyNTdiMDNlLzEvTDQyTkRPNjh6WFcyQnJwSmFQWEhsRzZOUjhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni80ZjNiYmQtNGE2MS00MmM1LThiMDctM2NiZDUyNTdiMDNl
LzEvTDQyTkRPNjh6WFcyQnJwSmFQWEhsRzZOUjhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR9migyRn
tyjvpguOg+i6loStNmhBbjSQfhit/WW75Nn1qcbuBgshBdDI8vQBKcbfg2Ysu8CD
uqT/n9qzBR3ITLZcDw/nWeATKsp7TSBJcQqqmQ9HJzMeLEX1nKUORgWV5Ar/kry4
p2pBjNx2jkncz5c9z9bSmOtVD2f0D3pctNEz8V2ZMbHVC7gJQmEpLrWHyK6cAqJt
BeatIEtPoJf9i6cAfxMzhsZ/uu02RnP1iNc1SJ4A7KNNGy30AnK/kIKpRqPRrYhJ
UONHAiEaP/wY5/VnoQLAFaVlU8d6/+6kAtssgD0HPX5JuXhDj8hFqr3D7PzCxpmV
EkFmPQ8nUEkeDA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 17:20:48 2026 by rpki-client