Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
File: l9nve9MDJN7fcLrOS72ldgwyaxo.mft (raw, json)
Hash identifier: 8H+O7KsMss3GVsl8KzmGbrhLiVGTljix7ESSyxeAW7g=
Subject key identifier: 76:A8:F8:74:E9:AD:89:E2:F0:D2:2D:75:C8:F3:87:0C:AD:1C:EE:9E
Authority key identifier: 97:D9:EF:7B:D3:03:24:DE:DF:70:BA:CE:4B:BD:A5:76:0C:32:6B:1A
Certificate issuer: /CN=97d9ef7bd30324dedf70bace4bbda5760c326b1a
Certificate serial: 019D2696307E50095B07630B57DA0DFF5368
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
Manifest number: 114E
Signing time: Wed 25 Mar 2026 20:01:10 +0000
Manifest this update: Wed 25 Mar 2026 20:01:10 +0000
Manifest next update: Thu 26 Mar 2026 20:01:10 +0000
Files and hashes: 1: l9nve9MDJN7fcLrOS72ldgwyaxo.crl (hash: YEJR0xAOIOPW43iEf22pASq8Nbwk3fJ5ob5NeXHkW/o=)
2: lJRouhsD89YwjETpjd4P5W7UKig.roa (hash: /VHTdnmw9oRohqnCjEDHZH7S7Q3gjl2OViU5nARXvlE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:30:7e:50:09:5b:07:63:0b:57:da:0d:ff:53:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97d9ef7bd30324dedf70bace4bbda5760c326b1a
Validity
Not Before: Mar 25 20:01:10 2026 GMT
Not After : Mar 26 20:01:10 2026 GMT
Subject: CN=76a8f874e9ad89e2f0d22d75c8f3870cad1cee9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0a:b2:2a:a7:23:f1:a2:d7:ba:e4:54:ee:d0:
c0:f2:d6:bf:44:6b:5b:8d:42:ee:5f:10:a4:76:f7:
ab:22:b6:86:57:f5:c6:71:f4:45:ed:3c:9e:9e:8a:
55:d0:2c:5a:d0:86:d1:15:34:0f:a1:41:bb:59:54:
5c:0e:ae:db:b5:f4:17:f7:d1:4f:1c:bc:ff:d7:6a:
38:40:38:eb:d8:4d:ec:aa:0d:b8:c8:dc:6d:b0:dc:
4f:4e:c7:b6:f1:df:98:11:d2:03:8e:98:fc:6f:41:
f4:a6:ff:6d:94:7e:93:bd:07:5d:f7:fc:30:fd:91:
3d:00:1c:0c:cb:0f:fb:e5:56:61:4c:57:3e:5b:75:
9f:7c:0e:ba:ad:28:db:20:da:a1:9e:79:8e:db:63:
bb:23:fb:c7:57:39:6c:c1:60:d6:ba:3c:12:5e:17:
58:25:f6:78:6a:02:6d:2d:a6:f0:37:35:0d:5d:28:
fe:9f:c3:71:36:67:2b:71:ce:d4:2c:62:74:88:f8:
68:2d:bb:00:c5:12:a1:d0:76:90:b8:aa:81:28:a5:
f7:fa:27:8a:75:c7:ed:e6:df:d0:54:1c:3f:61:de:
af:0a:3b:a8:44:87:c4:36:dc:83:36:41:9f:ce:54:
7f:37:e3:5d:3d:47:11:2d:c5:c5:56:44:0c:66:dd:
4f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A8:F8:74:E9:AD:89:E2:F0:D2:2D:75:C8:F3:87:0C:AD:1C:EE:9E
X509v3 Authority Key Identifier:
keyid:97:D9:EF:7B:D3:03:24:DE:DF:70:BA:CE:4B:BD:A5:76:0C:32:6B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:3d:01:9b:60:59:7a:ce:8e:53:6e:55:90:1b:57:9b:68:91:
bd:5f:07:66:0e:71:49:17:2a:ec:e4:91:4e:c2:8f:e9:0d:30:
73:15:70:21:55:86:ad:ae:76:91:65:7c:b3:61:bc:c0:d4:3c:
de:a8:7f:a6:97:ed:06:8b:0e:57:02:c0:76:40:8b:13:32:5a:
c5:e2:f7:27:fc:bd:11:d8:de:5e:8b:5e:ce:f9:85:f9:28:af:
7c:50:e8:08:4e:9e:a5:46:66:da:e5:bb:12:e3:8d:02:36:ec:
b8:be:69:c2:bb:f1:b4:f6:2c:34:f7:c4:7c:79:6d:9c:d9:8a:
77:d7:95:c2:34:01:8f:bb:9a:78:9e:2e:28:6e:51:06:cb:37:
4a:ff:69:63:95:83:ff:97:bc:eb:c1:16:ff:d6:df:7f:11:90:
a6:ac:a4:57:03:8e:28:3a:9f:6d:ca:ed:32:c8:55:c9:7e:d4:
2d:71:2f:d8:0c:fb:16:5c:46:e8:87:09:8d:76:46:e8:30:3f:
59:a3:fe:d5:e1:fd:79:68:d2:48:67:62:90:d0:61:d0:46:20:
19:4b:1a:1a:e4:c2:de:b0:70:97:84:ea:e3:b2:be:39:ea:8d:
7d:b9:94:3f:80:7b:8c:f6:b9:2f:dd:b8:4f:0d:b9:17:b0:2d:
81:26:a0:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:12:24 2026 by rpki-client