Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
File: lJgy8CXL76HqG8oMOQtjwXaUjNI.mft (raw, json)
Hash identifier: m90bv+X1GzWXkPoOgUpWyw2txwkfC5fd0kH77oaeo3k=
Subject key identifier: 1B:62:7F:47:86:E4:88:AB:37:E3:4C:45:40:54:B2:A0:93:07:D2:A3
Authority key identifier: 94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
Certificate issuer: /CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Certificate serial: 019D224B910DA8D31A5D59B5505520AADFAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
Manifest number: 06FE
Signing time: Wed 25 Mar 2026 00:01:10 +0000
Manifest this update: Wed 25 Mar 2026 00:01:10 +0000
Manifest next update: Thu 26 Mar 2026 00:01:10 +0000
Files and hashes: 1: cb-mqGrD9TdvPSnuiFKPTNSp4k0.roa (hash: 3D9GKzTfBklRbCdmXiO06QWtVtwBT318N1GZYxQn0ZA=)
2: lJgy8CXL76HqG8oMOQtjwXaUjNI.crl (hash: MIYC/MlIRcWF0NTfhx9SgzZY2IU0lpga+UxBTCrunNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:22:4b:91:0d:a8:d3:1a:5d:59:b5:50:55:20:aa:df:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Validity
Not Before: Mar 25 00:01:10 2026 GMT
Not After : Mar 26 00:01:10 2026 GMT
Subject: CN=1b627f4786e488ab37e34c454054b2a09307d2a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f1:2e:6b:50:fa:0a:ca:da:6b:f5:4c:b3:22:
43:7d:9b:75:c1:d6:67:db:83:8e:22:5f:b8:fd:15:
5b:28:ad:8a:18:50:22:06:8b:96:d3:c5:c6:9a:8f:
78:90:0b:92:96:3b:a0:64:9f:48:fc:32:42:22:fa:
6f:51:e2:42:91:6c:60:e2:19:90:89:05:9e:d2:83:
4e:ea:45:64:7b:78:a9:63:8a:8a:b9:18:d8:7e:86:
c7:7f:32:65:a2:c3:23:7f:ba:d6:17:d1:dc:75:46:
97:a8:44:87:9e:f1:79:0b:c1:9f:81:42:b8:3d:9b:
49:5b:2c:24:f6:68:50:80:53:8e:13:55:f4:e2:cb:
39:2c:b3:e6:ac:a7:2d:a7:cf:20:05:e9:7c:1c:90:
2b:84:a5:f6:fb:b5:46:2d:d4:95:b6:40:7e:e3:de:
72:32:8f:50:1b:b8:83:db:67:8a:cd:4a:2b:ce:75:
f1:1c:70:32:73:e3:b4:0d:53:28:72:15:ed:ec:c8:
13:35:0c:d2:5a:96:f1:98:8e:9c:7e:82:28:10:81:
e1:5a:2b:0b:01:0d:18:c1:a1:d7:a2:d9:0c:82:3b:
6c:6f:8a:20:9e:3c:b5:8a:14:db:a9:e3:9e:e1:d9:
34:b5:94:7e:7b:f3:16:0f:d0:24:6e:0d:81:8e:f3:
b0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:62:7F:47:86:E4:88:AB:37:E3:4C:45:40:54:B2:A0:93:07:D2:A3
X509v3 Authority Key Identifier:
keyid:94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:d1:e3:b0:12:53:67:9a:fa:ff:2b:08:e7:c0:17:3f:a3:5f:
e6:ed:b4:8b:f1:9a:db:ef:6d:5a:51:f0:2e:f9:8e:2e:92:9c:
80:b2:ab:2c:de:3d:16:41:ea:69:14:25:bd:74:10:55:08:3a:
61:b0:20:5c:9d:d4:4a:81:51:1b:2b:2e:04:eb:92:99:f8:d7:
4f:01:a1:97:2b:5e:95:50:a5:c7:38:99:de:72:11:a8:d1:f1:
18:db:19:ac:0f:6f:77:9e:e3:73:52:f7:64:5d:e0:8f:39:90:
88:b5:bf:7c:8e:2c:9c:03:c8:3d:3f:b3:5a:90:21:8b:f6:30:
64:c3:47:d7:ea:36:f0:c4:d9:9c:29:0e:70:13:63:13:5c:4b:
f7:c3:bb:33:5d:22:da:79:1e:50:90:79:9e:15:f8:1e:f1:bd:
49:62:b4:00:d1:9c:ec:4a:20:6a:ba:d9:cc:bd:75:e1:9e:7a:
d7:fc:42:53:8c:bb:e6:68:ce:39:81:6f:e8:e1:11:f6:55:0a:
8e:10:e3:a0:d8:36:56:d5:14:b4:8d:64:c7:fb:9b:51:c8:2a:
7f:8d:22:3a:84:51:0d:f8:64:24:23:54:da:15:71:e0:bd:41:
17:ef:08:90:30:e3:ad:b5:fd:75:84:85:c2:41:ea:11:6b:90:
cc:d3:6a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 09:44:14 2026 by rpki-client