Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
File: lFtz335v4RAPHROgfBjVmvIoQow.mft (raw, json)
Hash identifier: HaOdiBZZqOA4CKJLw9JmduoG9E1LQEDo0fGkhFp4T5c=
Subject key identifier: 40:A8:EB:49:53:DE:38:6F:BD:5D:BF:39:9A:C3:FF:18:F0:D3:40:68
Authority key identifier: 94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
Certificate issuer: /CN=945b73df7e6fe1100f1d13a07c18d59af228428c
Certificate serial: 019D3789DC5849C8D8C8A76AFAE30CF14A1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
Manifest number: 1736
Signing time: Sun 29 Mar 2026 03:01:14 +0000
Manifest this update: Sun 29 Mar 2026 03:01:14 +0000
Manifest next update: Mon 30 Mar 2026 03:01:14 +0000
Files and hashes: 1: lFtz335v4RAPHROgfBjVmvIoQow.crl (hash: 9Arq5Mpkf1HOgHjGk/DwkyfsqJZRrIYG1nDjY1CE/64=)
2: mc0V-dqblb2LS7X-Me9ToDZupDo.roa (hash: TgiXuLIZXRQWoQtj5JAJxLB0Ph8I4D6iEUTij0gXzCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:dc:58:49:c8:d8:c8:a7:6a:fa:e3:0c:f1:4a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=945b73df7e6fe1100f1d13a07c18d59af228428c
Validity
Not Before: Mar 29 03:01:14 2026 GMT
Not After : Mar 30 03:01:14 2026 GMT
Subject: CN=40a8eb4953de386fbd5dbf399ac3ff18f0d34068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a9:a5:04:71:c8:20:f7:82:56:f8:76:12:e1:
3c:76:45:d4:8c:56:e6:a9:23:2b:43:a5:99:71:68:
cc:88:76:19:ce:36:be:1d:41:12:93:e8:ac:a6:02:
1e:fa:5f:11:3e:95:8d:8b:82:c6:db:4a:80:a6:6e:
c7:1e:79:30:41:05:63:09:02:f4:8b:39:7d:0b:6b:
09:3c:f5:e4:74:b7:db:d0:99:01:cf:fa:32:72:1d:
ec:00:61:95:28:bf:49:3e:e5:27:09:54:7a:2b:d6:
98:eb:aa:cc:0b:ae:e8:83:f0:d3:a1:9f:a1:77:9a:
0f:b7:bc:a6:54:6d:21:e7:9c:f0:c0:7a:6b:1e:ef:
f9:cb:78:ea:dc:4d:bc:70:6b:fe:79:3b:08:4c:8d:
04:f4:31:39:b1:11:05:eb:53:ee:11:57:7b:2f:0a:
6c:2b:64:d0:39:1b:4e:04:5c:05:c7:44:4e:4c:e3:
7f:29:1f:e2:1b:91:06:b8:2b:cf:41:ed:b2:92:96:
51:49:4e:fa:c2:52:94:cd:e4:38:3a:33:b3:86:d5:
fb:b0:46:86:46:1d:14:cc:3c:ea:70:8f:ae:0a:7c:
23:df:23:1c:18:0b:02:73:79:70:ca:aa:89:c6:7d:
c6:ef:e9:24:26:a2:db:08:50:04:ac:1b:03:d6:12:
da:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A8:EB:49:53:DE:38:6F:BD:5D:BF:39:9A:C3:FF:18:F0:D3:40:68
X509v3 Authority Key Identifier:
keyid:94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:74:a8:75:1a:a3:d1:5a:96:54:33:88:a4:8f:2b:de:cb:69:
09:18:0b:e9:48:ac:72:df:a2:f7:f5:51:17:1f:1c:22:8d:86:
18:80:e1:07:ba:fc:2b:26:4a:db:72:01:67:87:aa:64:1f:d2:
44:73:f2:8b:33:04:72:da:0f:3b:d0:8f:d9:09:0a:71:81:08:
b8:52:f9:12:87:8a:72:e7:e8:9f:30:a8:22:c8:af:be:0b:7c:
f6:6a:fa:ba:6d:0f:eb:5b:23:44:5d:c1:eb:8e:5b:72:51:b7:
a5:83:0d:83:0b:05:a9:e7:2c:28:b6:1f:d9:72:be:63:da:18:
6a:da:a9:ac:43:3e:c7:0f:5e:26:85:47:96:42:cb:92:cf:ae:
0c:a1:e5:58:ba:fc:0c:17:84:d2:d4:18:85:4a:de:2d:4c:d8:
ba:50:a8:9d:a5:8c:39:f6:14:61:ab:0f:ae:74:90:d5:96:71:
61:34:89:53:a5:05:e3:ba:51:78:d0:2d:93:6a:2f:b8:f8:ad:
a2:8d:2a:b2:10:82:ae:20:93:53:45:16:7b:b5:3e:02:11:d5:
b2:e4:07:3b:eb:52:6d:c7:7e:d0:2f:7f:51:47:33:88:04:e9:
28:a9:cf:6c:7a:1e:64:9b:a6:e2:05:79:6a:63:61:7f:96:b4:
e2:4e:e3:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:56 2026 by rpki-client