Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
File: Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft (raw, json)
Hash identifier: bNsf8YmU7wn29ySwaJAwuxglA998dqBtXaNXgfqYTHM=
Subject key identifier: 68:7D:91:43:A8:CA:6D:B6:32:6B:4C:A3:CF:C0:14:13:F2:A6:7B:BE
Authority key identifier: 2D:EA:78:B1:2D:43:5B:97:DE:FB:F9:2C:74:26:5C:34:33:BB:D0:29
Certificate issuer: /CN=2dea78b12d435b97defbf92c74265c3433bbd029
Certificate serial: 019D2772C460BE94CC6888B7A7083D5381AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
Manifest number: 0CDA
Signing time: Thu 26 Mar 2026 00:02:05 +0000
Manifest this update: Thu 26 Mar 2026 00:02:05 +0000
Manifest next update: Fri 27 Mar 2026 00:02:05 +0000
Files and hashes: 1: 4j2l0R0oiX3sFLga6aYE81cIPxI.roa (hash: RzXR10l18GypZ8d4diV18s33YCTUu7qf7Qk1hWsnKR4=)
2: Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl (hash: nLlOL8vxdJ92OoqBj5uTrC9HZ7dxGGZIgtvkYv7M9Cg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:c4:60:be:94:cc:68:88:b7:a7:08:3d:53:81:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dea78b12d435b97defbf92c74265c3433bbd029
Validity
Not Before: Mar 26 00:02:05 2026 GMT
Not After : Mar 27 00:02:05 2026 GMT
Subject: CN=687d9143a8ca6db6326b4ca3cfc01413f2a67bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8d:80:db:71:51:00:d1:cb:64:f2:44:f8:f4:
0c:3b:f9:86:4f:af:38:8f:37:58:58:26:ea:6e:d4:
68:34:42:63:6d:a6:39:85:49:9f:e5:39:81:d9:ca:
d8:89:c8:1c:cd:6e:34:27:88:24:09:c9:45:1c:7e:
6c:9b:5f:f8:2c:88:0e:01:4e:6f:7e:3a:58:4a:de:
3a:87:e8:57:a9:36:66:fb:f8:d2:2a:f1:e5:37:58:
ab:00:75:e3:7c:d7:20:f8:7d:a2:a7:1a:43:bd:fe:
06:78:7b:fd:61:49:e1:58:93:8e:3b:d5:53:d7:93:
55:cc:b2:96:77:b5:f9:b7:ec:d9:ad:d9:37:eb:7b:
c8:b9:ac:a0:f5:9f:6c:25:45:56:b1:d4:a6:0c:df:
8c:b0:90:ee:ad:61:61:8d:97:e8:b3:20:cb:3a:c8:
5f:e1:4f:83:fc:f2:c7:9b:fb:8b:6f:60:04:ed:17:
a4:7e:93:64:87:38:2b:6d:8b:27:48:1e:03:26:e7:
61:59:63:14:43:06:9b:d1:03:67:c0:8c:26:0a:b5:
47:30:c3:c8:33:ee:46:7f:fc:bf:39:ac:ac:6e:65:
ac:43:96:22:cb:81:0b:0b:4b:41:f1:d8:5b:f8:b6:
1e:f0:35:bd:41:4a:ea:be:4a:63:83:ae:1f:74:aa:
33:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:7D:91:43:A8:CA:6D:B6:32:6B:4C:A3:CF:C0:14:13:F2:A6:7B:BE
X509v3 Authority Key Identifier:
keyid:2D:EA:78:B1:2D:43:5B:97:DE:FB:F9:2C:74:26:5C:34:33:BB:D0:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lep4sS1DW5fe-_ksdCZcNDO70Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/96faed-87c0-4b00-8178-a1dcc3fb9a4f/1/Lep4sS1DW5fe-_ksdCZcNDO70Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:6a:5d:6a:9e:9d:0f:83:40:e6:3d:dd:cb:f8:93:54:2a:da:
b4:33:53:e3:ee:1d:0e:61:e0:93:9b:67:c9:0d:da:64:b2:b8:
5a:68:07:0a:eb:67:c1:15:34:c8:5e:40:e9:f9:fb:34:bb:86:
36:92:7f:12:f7:0e:9f:b8:c7:df:cc:61:65:8e:9b:5c:5b:db:
a9:45:48:23:dd:98:b0:85:cb:4a:7d:78:e8:f0:58:95:86:6a:
1b:c3:d0:e7:75:88:69:ff:e0:79:5a:67:dd:9b:7a:8b:ec:d4:
62:be:83:48:c6:31:08:89:b6:96:0f:03:cf:07:ed:97:37:0d:
99:f0:ac:7b:24:f1:f3:05:7d:e2:7f:57:65:63:29:d8:2c:ce:
0e:b7:bf:70:b2:72:8f:b7:9e:3c:20:03:89:90:18:f7:0d:3c:
25:d4:be:71:7d:d5:d4:59:84:dc:6e:71:8d:24:94:16:b0:1e:
b1:95:04:18:f9:8d:94:d2:2c:dc:e3:4f:ab:62:1d:a2:1f:73:
83:d1:8b:63:5e:64:f6:31:6b:b9:ff:4e:22:e6:f5:9c:75:f7:
2e:f2:80:73:62:5c:e7:10:7c:df:77:46:29:b0:83:b2:fb:3c:
d0:21:34:d3:e4:9e:3a:2c:4a:59:e4:8d:ce:05:4a:23:25:c3:
3f:df:f9:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:16:27 2026 by rpki-client