Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
File: lb24W36o8fqvdR52xBR8gbYOmU0.mft (raw, json)
Hash identifier: QWHRva9BbhF4q0jrH157lI17hfJjzbGKqxOVx8oFopU=
Subject key identifier: BE:1B:A4:A4:87:8B:E5:88:62:4F:D5:0E:DD:8A:F7:FB:DA:B5:20:AC
Authority key identifier: 95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
Certificate issuer: /CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Certificate serial: 019D29CDCF086EF2C298C57CE68BB1505A2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
Manifest number: 023B
Signing time: Thu 26 Mar 2026 11:00:46 +0000
Manifest this update: Thu 26 Mar 2026 11:00:46 +0000
Manifest next update: Fri 27 Mar 2026 11:00:46 +0000
Files and hashes: 1: X3R-floHCctncemlohut39fAAWo.roa (hash: HcALHXWtxViwkG5KOnEw6VMEEbxHOixZaFpjLNGdypY=)
2: lb24W36o8fqvdR52xBR8gbYOmU0.crl (hash: T4iN7SyqcqIR0ZoVXcHFmtl/F7eoOQbt5jtdor6Sn+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:cd:cf:08:6e:f2:c2:98:c5:7c:e6:8b:b1:50:5a:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Validity
Not Before: Mar 26 11:00:46 2026 GMT
Not After : Mar 27 11:00:46 2026 GMT
Subject: CN=be1ba4a4878be588624fd50edd8af7fbdab520ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:dd:c3:29:48:52:2b:61:21:96:df:55:8b:54:
e3:ce:c0:5d:35:45:b0:7e:e1:7b:9a:ba:87:5f:a5:
39:b0:48:d1:fd:3d:fa:a6:33:1d:2d:3b:42:87:3c:
d1:b4:90:56:82:23:96:63:9f:a9:43:17:c8:52:4d:
62:c0:69:8d:76:82:08:04:a0:fd:42:80:87:77:c8:
4f:db:11:04:79:bb:77:2d:8f:da:e2:f2:ea:bf:05:
58:1a:63:b9:48:b1:31:8e:19:d2:26:c9:76:ec:2b:
c8:eb:d7:05:02:95:7f:b0:06:14:20:f4:2e:e3:0b:
9a:b2:c8:c0:bd:37:8f:b2:c5:4c:61:45:81:ff:d1:
85:0e:7e:30:01:18:34:f6:0e:0f:02:4b:23:5d:c1:
8f:e9:d6:dc:6a:33:a1:ea:b0:98:25:60:94:db:fb:
af:da:01:67:ff:3e:a7:0a:b4:d0:7a:c2:f8:dd:d4:
a2:68:af:48:97:d4:48:ed:ae:38:21:09:de:6d:2e:
ff:b9:e5:67:7e:02:d1:6f:c6:32:b3:31:13:05:78:
59:22:3a:b1:2c:c6:bd:09:68:99:6b:5e:9f:df:22:
d4:a0:1f:97:13:1d:41:ae:29:e6:67:ae:00:7b:14:
08:2b:de:f2:21:ce:2e:82:fd:57:1d:3a:ed:f6:8a:
a9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:1B:A4:A4:87:8B:E5:88:62:4F:D5:0E:DD:8A:F7:FB:DA:B5:20:AC
X509v3 Authority Key Identifier:
keyid:95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:78:5e:58:b2:64:3b:2a:8f:e9:99:cc:e3:3e:bb:18:6f:a6:
46:1f:65:c0:16:a9:59:29:22:fb:a9:b6:0c:15:bc:91:80:9e:
46:2a:5e:6d:37:31:02:44:29:b1:90:38:ab:24:24:0c:39:e8:
0f:83:dd:05:8a:1a:8b:05:bc:b4:29:da:83:c8:9a:18:d3:35:
f1:53:34:45:00:b2:45:c0:ea:d5:53:3c:ea:94:25:c0:d8:00:
fc:95:b9:25:e2:d0:9b:26:34:2f:44:29:0e:23:ef:69:68:ff:
71:73:f8:0c:ad:94:fa:2c:17:c2:40:ae:43:1e:e3:99:7d:3c:
f4:75:49:ec:b2:dd:76:c0:ff:b0:f1:93:c7:b1:06:b5:7d:0b:
3c:c6:56:e2:bd:fb:01:eb:e7:db:fd:3d:1a:16:94:e1:72:27:
f3:ad:2a:ae:f8:bd:c4:3f:9d:6e:9c:51:82:79:b2:27:3d:1b:
a7:10:35:cf:91:54:2a:7f:86:e7:8f:71:ec:36:80:ca:cc:92:
f9:94:e5:ff:cb:d8:be:37:1d:4f:47:00:fb:05:bc:f4:da:b6:
b8:31:39:ea:97:52:2a:81:ae:5f:9d:88:02:df:bb:0e:89:cf:
6c:94:6c:da:f5:6a:21:fc:72:c8:98:5f:87:b6:5e:1a:99:17:
dd:c0:65:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pzc8IbvLCmMV85ouxUFouMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1YmRiODViN2VhOGYxZmFhZjc1MWU3NmM0MTQ3YzgxYjYw
ZTk5NGQwHhcNMjYwMzI2MTEwMDQ2WhcNMjYwMzI3MTEwMDQ2WjAzMTEwLwYDVQQD
EyhiZTFiYTRhNDg3OGJlNTg4NjI0ZmQ1MGVkZDhhZjdmYmRhYjUyMGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn93DKUhSK2Ehlt9Vi1TjzsBdNUWw
fuF7mrqHX6U5sEjR/T36pjMdLTtChzzRtJBWgiOWY5+pQxfIUk1iwGmNdoIIBKD9
QoCHd8hP2xEEebt3LY/a4vLqvwVYGmO5SLExjhnSJsl27CvI69cFApV/sAYUIPQu
4wuassjAvTePssVMYUWB/9GFDn4wARg09g4PAksjXcGP6dbcajOh6rCYJWCU2/uv
2gFn/z6nCrTQesL43dSiaK9Il9RI7a44IQnebS7/ueVnfgLRb8YyszETBXhZIjqx
LMa9CWiZa16f3yLUoB+XEx1BrinmZ64AexQIK97yIc4ugv1XHTrt9oqpCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL4bpKSHi+WIYk/VDt2K9/vatSCsMB8GA1UdIwQY
MBaAFJW9uFt+qPH6r3UedsQUfIG2DplNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGIyNFczNm84ZnF2ZFI1MnhCUjhnYllPbVUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8wMzM3MDAtZjkwNC00MjJmLWE0YWMt
MTAyNDBjYTBiMTgyLzEvbGIyNFczNm84ZnF2ZFI1MnhCUjhnYllPbVUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy8wMzM3MDAtZjkwNC00MjJmLWE0YWMtMTAyNDBjYTBiMTgy
LzEvbGIyNFczNm84ZnF2ZFI1MnhCUjhnYllPbVUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATHheWLJk
OyqP6ZnM4z67GG+mRh9lwBapWSki+6m2DBW8kYCeRipebTcxAkQpsZA4qyQkDDno
D4PdBYoaiwW8tCnag8iaGNM18VM0RQCyRcDq1VM86pQlwNgA/JW5JeLQmyY0L0Qp
DiPvaWj/cXP4DK2U+iwXwkCuQx7jmX089HVJ7LLddsD/sPGTx7EGtX0LPMZW4r37
Aevn2/09GhaU4XIn860qrvi9xD+dbpxRgnmyJz0bpxA1z5FUKn+G549x7DaAysyS
+ZTl/8vYvjcdT0cA+wW89Nq2uDE56pdSKoGuX52IAt+7DonPbJRs2vVqIfxyyJhf
h7ZeGpkX3cBlEg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 19:59:12 2026 by rpki-client