Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft
File: _ltNUIvcIUFbR1LuvESNSqrGNdk.mft (raw, json)
Hash identifier: 2gOrH8wpSDNo4qMg6QgOIauJC9UDnFdgERZuU1Cn7sU=
Subject key identifier: E1:EE:C0:F4:62:E3:09:30:AF:EE:D3:64:FA:83:DB:D0:99:58:B4:AB
Authority key identifier: FE:5B:4D:50:8B:DC:21:41:5B:47:52:EE:BC:44:8D:4A:AA:C6:35:D9
Certificate issuer: /CN=fe5b4d508bdc21415b4752eebc448d4aaac635d9
Certificate serial: 019D284DA978D8D981DB44806D480F261906
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft
Manifest number: 0303
Signing time: Thu 26 Mar 2026 04:01:11 +0000
Manifest this update: Thu 26 Mar 2026 04:01:11 +0000
Manifest next update: Fri 27 Mar 2026 04:01:11 +0000
Files and hashes: 1: 9J2k_v-AhLXeWsx0gyZ7MSycihA.roa (hash: KdEABeI7OUulamOMnpjJAOHhCOTUaC4bju9UuYK4BXI=)
2: _ltNUIvcIUFbR1LuvESNSqrGNdk.crl (hash: Uqo4fIyF4eiNdJiHFRLvZQpu2W2tRWMDMsA9+bYMnXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:a9:78:d8:d9:81:db:44:80:6d:48:0f:26:19:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe5b4d508bdc21415b4752eebc448d4aaac635d9
Validity
Not Before: Mar 26 04:01:11 2026 GMT
Not After : Mar 27 04:01:11 2026 GMT
Subject: CN=e1eec0f462e30930afeed364fa83dbd09958b4ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:da:74:d2:b6:c5:35:a2:33:0c:67:88:5f:88:
ed:d7:38:bd:5c:8b:e1:6c:50:49:3d:c6:a0:d1:e3:
29:50:94:57:45:05:c3:fe:58:ea:ee:34:69:16:c0:
33:f1:6b:4c:5b:a8:63:ed:cc:b2:8d:0d:b5:d6:71:
b8:15:a6:74:bc:aa:b2:61:ef:68:9d:ed:e4:d4:54:
3a:eb:69:c0:80:93:8f:5d:c3:65:a3:09:ec:9b:7d:
ee:86:c1:b9:d1:c7:b6:7c:3e:51:ac:91:29:5e:77:
51:1f:1e:b6:2c:58:79:c6:9c:f6:e7:51:23:2f:3f:
bf:0f:1f:f3:7d:70:7b:c7:93:bc:a9:91:8a:e6:77:
ab:a1:d0:fd:c6:39:5a:5c:ed:1f:42:55:44:52:99:
63:3d:8e:da:f8:af:45:cf:81:ad:d0:cc:d1:cf:f0:
be:2d:73:9e:eb:7c:4b:89:b1:01:f3:15:5e:bc:a7:
ee:c3:29:00:94:03:38:ba:f2:1d:cb:36:b5:76:2e:
51:3b:40:08:77:23:96:6a:e3:d6:3f:05:6f:d7:ca:
33:4d:8c:df:00:db:2e:48:75:16:7b:ce:98:e5:d8:
a0:22:b5:d7:0e:0b:15:b0:58:b7:cc:48:38:49:96:
bd:49:26:5a:2a:cd:31:42:6c:55:b0:ba:76:e9:98:
29:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:EE:C0:F4:62:E3:09:30:AF:EE:D3:64:FA:83:DB:D0:99:58:B4:AB
X509v3 Authority Key Identifier:
keyid:FE:5B:4D:50:8B:DC:21:41:5B:47:52:EE:BC:44:8D:4A:AA:C6:35:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:a1:4c:b9:52:ac:3b:a8:bc:64:d5:7f:2d:fe:f1:08:cf:6b:
6b:d1:66:88:e8:f9:93:2c:69:de:90:eb:a9:95:65:33:54:2d:
86:7a:c0:85:2b:c1:6a:60:ac:be:83:b4:40:c2:58:c1:27:76:
78:c0:2d:3d:54:7c:6d:c9:4c:40:ff:69:a1:72:94:7f:16:aa:
df:cb:c5:50:29:dd:b0:5d:2c:f9:dd:11:a1:0b:9d:16:ba:b1:
70:25:94:5b:c4:bd:f8:b0:2d:f3:82:ab:3c:f0:24:97:85:c8:
c9:a2:4d:40:61:ab:65:ce:b8:e1:59:be:c2:60:f0:bb:8e:be:
85:1f:9e:b6:62:de:77:6b:21:0c:be:52:c1:b1:b4:cf:8a:f1:
f1:82:58:65:85:f2:18:c2:c2:80:a1:b9:76:33:97:e0:5a:78:
0b:24:68:aa:9e:bf:88:f7:86:bb:46:2b:fa:f6:89:19:b0:dc:
c8:46:0c:db:c6:34:c5:52:35:d2:02:56:19:da:95:39:da:ee:
60:c8:5a:a4:34:3e:7e:0a:73:69:a7:2a:91:3d:ba:3d:02:4c:
10:64:b7:57:39:b6:1a:04:d1:d3:1c:00:e5:87:03:b0:bc:12:
75:ea:f1:dc:b2:52:4c:f2:fc:40:5b:cb:4f:80:fd:12:5e:1e:
41:45:bb:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:23:36 2026 by rpki-client