Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
File: lJQumzXZGQbREkXXO9WM3Y7KSdE.mft (raw, json)
Hash identifier: vhVyva9cHZsUeXDJNeI13lJSpt2Lh4UDHw19zj799Qk=
Subject key identifier: 0C:4B:04:67:BB:19:B2:F7:F3:FF:3D:CF:5E:65:57:27:63:7D:C8:F9
Authority key identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
Certificate issuer: /CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Certificate serial: 019D2884D1EA22CC70D1B3EC4D62FE0F7A16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
Manifest number: 17DE
Signing time: Thu 26 Mar 2026 05:01:26 +0000
Manifest this update: Thu 26 Mar 2026 05:01:26 +0000
Manifest next update: Fri 27 Mar 2026 05:01:26 +0000
Files and hashes: 1: lJQumzXZGQbREkXXO9WM3Y7KSdE.crl (hash: VNIsDdjQA/iL1KrgcIDXD7ENggRRNq2FnnNSh2LT8qo=)
2: lRB94ldr7rgqeGjPRMI9ABoba14.roa (hash: SLe56IHD80WuKPH4ey2PGtoGoV+VHvwhtrqQxiN+bUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:d1:ea:22:cc:70:d1:b3:ec:4d:62:fe:0f:7a:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Validity
Not Before: Mar 26 05:01:26 2026 GMT
Not After : Mar 27 05:01:26 2026 GMT
Subject: CN=0c4b0467bb19b2f7f3ff3dcf5e655727637dc8f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:18:b3:72:07:7a:cb:5c:ed:06:cf:38:02:ad:
57:76:97:d2:3c:6a:4d:30:de:a3:8c:47:47:a9:cb:
cd:ee:05:56:d8:35:5c:a5:a1:e1:7e:ee:b7:f6:90:
d5:e8:d3:55:18:30:cd:6f:93:5c:92:fc:f9:37:de:
d6:7b:37:d5:d7:17:61:91:ba:1f:d0:0c:79:9b:05:
2b:31:4c:19:55:7c:3e:a9:c7:2c:b4:d4:6e:13:ea:
46:45:b6:a7:3d:99:4a:9c:1d:74:0b:e5:d0:98:7e:
0a:9d:0e:28:54:47:2f:03:7c:62:a0:2b:4b:02:d7:
16:d9:bf:95:a8:fb:95:01:f1:f3:b5:f0:ea:78:36:
64:7c:1d:25:56:da:00:bf:e3:d4:91:b4:c0:db:d7:
74:45:2a:62:f1:e8:fa:c7:90:39:6d:f0:b4:12:0b:
3b:fd:00:50:fb:e6:a8:d2:24:62:e2:a8:5e:c2:38:
15:ef:da:5f:68:f0:33:cf:21:0f:be:1c:6a:08:ea:
cb:4f:38:f5:9e:2c:e5:3c:97:81:a5:31:d3:c7:91:
ac:cf:2b:81:ea:05:c0:d7:26:91:d5:f4:39:eb:0b:
0b:9a:e8:83:0c:77:4c:a6:2d:a4:2e:bd:a8:0d:db:
84:ee:8e:77:98:df:05:d5:d2:98:15:ab:fc:6f:c3:
3d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:4B:04:67:BB:19:B2:F7:F3:FF:3D:CF:5E:65:57:27:63:7D:C8:F9
X509v3 Authority Key Identifier:
keyid:94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:31:c0:cc:ed:6e:9c:43:3d:6b:ae:b2:f3:42:22:cf:67:0d:
1d:ec:5b:c2:ce:b0:ea:a8:23:34:c3:34:23:3c:5e:a8:a3:2b:
35:4a:0b:9c:71:27:4d:a1:ac:43:54:e3:12:42:58:ad:ea:cb:
0e:7d:01:ae:33:e7:49:cc:f6:c9:80:75:aa:89:56:8c:75:5a:
ce:f7:08:f7:ce:28:83:f9:ca:31:a1:6b:4a:66:fa:74:4b:5f:
2b:ca:55:b1:31:49:e9:d3:90:06:e9:9c:c4:59:11:c0:a9:17:
f1:cc:86:95:6f:e6:5c:2a:68:0a:8d:13:d3:49:6f:c9:df:a7:
61:ac:1b:9b:c2:d4:79:48:2d:9b:4f:40:3c:67:32:11:cd:c2:
e7:e6:03:52:66:a6:39:d5:3f:45:a5:23:2d:bc:11:ee:3e:a4:
fc:bd:a0:16:e2:33:06:ce:6b:94:5a:03:6f:8c:2e:de:21:89:
24:82:b3:f9:b7:bb:60:4b:13:14:d5:a5:b7:fa:1c:39:f3:26:
d4:9a:48:2a:79:23:e7:28:f8:e0:af:e3:b9:2f:4c:13:76:d4:
f7:db:f3:fa:5f:91:e3:a3:5e:3b:cc:2f:75:b6:ba:c0:da:b7:
fd:57:d7:83:11:25:85:cc:38:7d:e2:e4:2e:74:23:4f:e2:7c:
f4:e0:e0:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:16:51 2026 by rpki-client