Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
File: lQ8oTPXDnybd0jUufyrfeo3GD44.mft (raw, json)
Hash identifier: qaNu6VMlLp3o0lJdf4J+8NqtI2sHeZNO2gkMCcw6FvQ=
Subject key identifier: 70:BD:A9:3F:AC:D6:24:05:CC:F3:0C:22:E2:43:5D:B4:60:0F:E6:17
Authority key identifier: 95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
Certificate issuer: /CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Certificate serial: 019D27DFB79EA3BD9C3471F139E66C332E23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
Manifest number: 0E82
Signing time: Thu 26 Mar 2026 02:01:05 +0000
Manifest this update: Thu 26 Mar 2026 02:01:05 +0000
Manifest next update: Fri 27 Mar 2026 02:01:05 +0000
Files and hashes: 1: lQ8oTPXDnybd0jUufyrfeo3GD44.crl (hash: WlyG1i5ljZhHHEal7HrNf+/8Bgl3VTyFVVSHt+NYjbA=)
2: yB6M8ezFHQHag23503sXzkmX4yQ.roa (hash: epvHA2OWGmIXHjeNZ2bPshcPm5dCsn8VP6Fq2wrQdO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:b7:9e:a3:bd:9c:34:71:f1:39:e6:6c:33:2e:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Validity
Not Before: Mar 26 02:01:05 2026 GMT
Not After : Mar 27 02:01:05 2026 GMT
Subject: CN=70bda93facd62405ccf30c22e2435db4600fe617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4d:da:b1:2c:0c:94:8a:39:8c:bb:58:86:52:
25:62:42:6a:6a:17:f1:2b:13:b3:54:40:38:60:6e:
f0:2b:ac:23:d7:a1:11:e5:30:dc:4f:01:7f:5c:f8:
19:9d:34:95:08:5b:02:2d:ce:64:7f:d7:38:6d:9a:
2b:c6:79:ef:07:39:72:0f:ae:c6:92:07:53:6b:1c:
b8:6f:55:96:1a:2b:f0:f8:31:7a:94:3a:da:18:3e:
5a:b7:36:28:f5:88:e7:08:4b:c5:1a:5c:25:e4:03:
0c:8c:98:7f:a6:f1:53:e0:d4:e6:f2:e3:71:8a:b9:
90:77:fb:11:4f:d9:e0:9b:34:47:4c:8f:b4:e0:32:
7c:13:51:74:a5:fe:6f:bf:ec:60:b5:67:cb:ba:d9:
00:ba:6a:8a:8e:51:0a:73:52:bc:53:88:08:d9:61:
c0:c3:4f:ea:d2:ae:30:cd:0c:5d:6c:ed:84:14:3a:
b2:be:6a:b6:42:82:a1:36:7e:eb:76:b0:66:a4:9c:
37:b3:95:a4:98:4e:10:15:0a:fc:83:3e:e2:7d:5b:
92:5a:ab:ce:58:68:5e:d6:76:38:cc:0a:68:46:d4:
f4:08:ae:e2:ce:b3:aa:54:4b:9b:08:72:82:5f:03:
33:e2:9c:ab:dd:86:5f:4b:c3:6b:54:06:69:90:6e:
75:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BD:A9:3F:AC:D6:24:05:CC:F3:0C:22:E2:43:5D:B4:60:0F:E6:17
X509v3 Authority Key Identifier:
keyid:95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:25:22:96:81:2c:ff:6d:ad:5a:7e:9a:24:16:bf:8f:a8:04:
52:83:43:f0:bf:16:93:1c:4e:30:9c:b3:96:3e:b9:6a:b6:77:
6b:1c:46:e4:bd:c4:ad:7e:ee:84:26:6c:01:f7:ac:ab:d0:fe:
ea:9d:da:81:f0:a8:20:59:d8:9f:d3:e5:0e:26:8a:39:c8:58:
d5:9d:c8:aa:20:d8:3b:95:71:5e:aa:5e:b9:ea:e9:18:43:68:
d4:db:60:75:44:ae:e1:72:90:0f:0a:1f:48:f5:17:de:79:5a:
28:5b:fa:c0:bb:c6:82:dc:20:d9:59:b8:c2:c3:56:53:e6:96:
4a:ae:e5:bf:f1:d4:84:7b:da:c0:93:80:a4:88:62:c1:08:c1:
8e:d9:f6:61:ff:b2:67:76:39:a2:7c:e6:5e:24:1c:78:a5:90:
37:d1:93:5d:73:bf:56:b4:20:45:a6:d3:06:ad:27:d3:f0:33:
d7:42:8d:4e:6e:d7:52:81:9d:a4:18:12:d8:5d:af:53:dd:40:
5e:7a:77:3d:f2:1e:30:c6:b7:60:f5:53:ff:3d:82:80:b8:ca:
6e:3d:d1:44:11:c5:01:06:2e:63:a9:b4:b2:16:25:a3:eb:3f:
cf:ae:ee:a9:92:ee:14:6c:bd:87:cc:c6:98:05:cf:3e:a3:ba:
57:9e:2f:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n37eeo72cNHHxOeZsMy4jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MGYyODRjZjVjMzlmMjZkZGQyMzUyZTdmMmFkZjdhOGRj
NjBmOGUwHhcNMjYwMzI2MDIwMTA1WhcNMjYwMzI3MDIwMTA1WjAzMTEwLwYDVQQD
Eyg3MGJkYTkzZmFjZDYyNDA1Y2NmMzBjMjJlMjQzNWRiNDYwMGZlNjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqE3asSwMlIo5jLtYhlIlYkJqahfx
KxOzVEA4YG7wK6wj16ER5TDcTwF/XPgZnTSVCFsCLc5kf9c4bZorxnnvBzlyD67G
kgdTaxy4b1WWGivw+DF6lDraGD5atzYo9YjnCEvFGlwl5AMMjJh/pvFT4NTm8uNx
irmQd/sRT9ngmzRHTI+04DJ8E1F0pf5vv+xgtWfLutkAumqKjlEKc1K8U4gI2WHA
w0/q0q4wzQxdbO2EFDqyvmq2QoKhNn7rdrBmpJw3s5WkmE4QFQr8gz7ifVuSWqvO
WGhe1nY4zApoRtT0CK7izrOqVEubCHKCXwMz4pyr3YZfS8NrVAZpkG51qQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHC9qT+s1iQFzPMMIuJDXbRgD+YXMB8GA1UdIwQY
MBaAFJUPKEz1w58m3dI1Ln8q33qNxg+OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFE4b1RQWERueWJkMGpVdWZ5cmZlbzNHRDQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8xOTc0ZWUtNDA4Zi00MTIwLThmMTkt
ZmEyZjBkNTRiMWQxLzEvbFE4b1RQWERueWJkMGpVdWZ5cmZlbzNHRDQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8xOTc0ZWUtNDA4Zi00MTIwLThmMTktZmEyZjBkNTRiMWQx
LzEvbFE4b1RQWERueWJkMGpVdWZ5cmZlbzNHRDQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADCUiloEs
/22tWn6aJBa/j6gEUoND8L8WkxxOMJyzlj65arZ3axxG5L3ErX7uhCZsAfesq9D+
6p3agfCoIFnYn9PlDiaKOchY1Z3IqiDYO5VxXqpeuerpGENo1NtgdUSu4XKQDwof
SPUX3nlaKFv6wLvGgtwg2Vm4wsNWU+aWSq7lv/HUhHvawJOApIhiwQjBjtn2Yf+y
Z3Y5onzmXiQceKWQN9GTXXO/VrQgRabTBq0n0/Az10KNTm7XUoGdpBgS2F2vU91A
Xnp3PfIeMMa3YPVT/z2CgLjKbj3RRBHFAQYuY6m0shYlo+s/z67uqZLuFGy9h8zG
mAXPPqO6V54voQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:21:03 2026 by rpki-client