Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
File: lQSgmkWW2BV9pp3DNGxavOTOThM.mft (raw, json)
Hash identifier: 1dWn+rNWieXqZWj7pali2nU/4vYDJl8oHt/kOdNszj0=
Subject key identifier: D9:81:8E:03:17:11:33:37:49:9A:77:AF:C8:F3:4A:19:AD:F2:98:53
Authority key identifier: 95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
Certificate issuer: /CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Certificate serial: 019D29CDEDF84CBA18BFC5A8DCC942356756
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
Manifest number: 04E6
Signing time: Thu 26 Mar 2026 11:00:54 +0000
Manifest this update: Thu 26 Mar 2026 11:00:54 +0000
Manifest next update: Fri 27 Mar 2026 11:00:54 +0000
Files and hashes: 1: lQSgmkWW2BV9pp3DNGxavOTOThM.crl (hash: IoC++W/mWJh8n68seqNij1frEjUkAbZrDVdklsGuntw=)
2: sZJjT_2snQotK3ftEGw_d9sZrf0.roa (hash: ZP0upJCIf42M9db5/txOE5l9C4b/LsGAyR1WtYBipm0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:cd:ed:f8:4c:ba:18:bf:c5:a8:dc:c9:42:35:67:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9504a09a4596d8157da69dc3346c5abce4ce4e13
Validity
Not Before: Mar 26 11:00:54 2026 GMT
Not After : Mar 27 11:00:54 2026 GMT
Subject: CN=d9818e0317113337499a77afc8f34a19adf29853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:56:6e:bd:28:db:99:85:fd:57:46:b9:1e:77:
d9:4d:26:b7:98:95:9b:88:51:2d:a6:48:bd:dc:b9:
09:a6:b7:4e:25:7c:75:95:c9:dc:86:8b:94:8a:42:
25:db:62:46:9c:d2:39:6c:1d:fa:20:78:9b:e2:c0:
94:de:8f:bc:d9:99:d5:04:ec:24:5b:7a:78:be:9f:
b7:bf:53:5b:bb:d6:d5:6e:5a:72:44:4b:88:bb:70:
5d:1e:59:59:13:38:38:9f:37:82:9b:90:16:a5:d9:
93:ad:31:6c:1c:8c:47:4a:f4:36:0d:6b:9c:1c:0a:
42:76:ad:07:a0:f3:90:d8:6a:7b:d5:35:de:85:e9:
a0:38:9e:67:30:cc:31:09:db:b1:45:eb:75:5e:b2:
32:a9:46:38:a3:76:4c:af:a4:e3:84:09:8c:6f:82:
fb:03:52:ab:bc:ea:2b:a2:31:4f:7c:8a:b3:4d:9a:
ac:b0:f7:bc:ff:41:9b:cb:36:cb:16:7d:2b:cd:3f:
38:af:11:31:8d:b9:05:8c:6b:89:2a:41:a4:ba:e9:
35:08:0f:3c:84:77:bf:74:b6:aa:21:7f:05:3e:60:
6f:f4:65:ef:9a:94:8d:c2:c5:de:8c:2e:25:ce:06:
5e:fa:1f:19:7f:cf:da:80:ae:9d:50:72:35:b7:43:
30:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:81:8E:03:17:11:33:37:49:9A:77:AF:C8:F3:4A:19:AD:F2:98:53
X509v3 Authority Key Identifier:
keyid:95:04:A0:9A:45:96:D8:15:7D:A6:9D:C3:34:6C:5A:BC:E4:CE:4E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQSgmkWW2BV9pp3DNGxavOTOThM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/9eaf5c-8c54-45ed-bfc4-673c3889161d/1/lQSgmkWW2BV9pp3DNGxavOTOThM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:d9:2e:c4:97:c2:ca:a3:a6:51:7d:f2:6d:02:4a:50:59:e8:
f4:c0:56:1c:6f:43:c6:21:7c:02:8d:2e:79:b2:30:32:0c:7f:
cd:c0:39:5b:bb:79:45:57:c2:84:a2:6d:8f:35:f4:b1:36:f2:
98:9b:9c:96:fd:98:58:f1:6d:33:c2:45:2e:dd:a7:66:9d:48:
7d:ab:82:c3:95:09:56:47:c7:73:f0:53:29:c1:4f:33:33:1b:
05:07:66:80:fe:6d:2d:09:25:2f:a9:1c:86:e2:b6:5f:73:ff:
d0:85:c7:14:a8:91:96:37:31:c2:92:d4:6f:2c:95:3f:ba:6e:
55:0d:02:9a:13:81:ff:9b:1c:04:6c:d9:29:dc:e3:2f:30:e0:
81:f0:34:39:cc:b3:27:f0:7c:32:cb:7a:4b:4d:be:92:60:b5:
e3:c0:d1:2f:1e:96:53:b4:c0:36:35:28:40:69:d5:6a:3b:1d:
b4:31:fc:8c:60:5b:08:a4:d1:2b:b1:97:f0:7c:5a:76:38:ef:
8a:99:a1:50:89:ac:1b:48:35:b6:4c:9e:43:6a:95:7a:16:03:
ac:30:09:44:3a:23:5e:3c:8b:6d:46:07:f7:12:55:56:df:c0:
43:06:fc:25:f0:b1:28:db:56:ad:4c:85:c7:86:84:da:a0:91:
a4:f7:63:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:00:40 2026 by rpki-client