Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
File: lJgy8CXL76HqG8oMOQtjwXaUjNI.mft (raw, json)
Hash identifier: WZ/7hEaE7hzy9bou12lba2RFe0S5sDr2GAx+fvnOgJ8=
Subject key identifier: 27:86:0F:F8:96:34:9A:3B:38:BF:B1:96:DB:E9:28:6F:9F:95:1C:DA
Authority key identifier: 94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
Certificate issuer: /CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Certificate serial: 019F129CACDCBB742FEB4FA33177DF8C64B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
Manifest number: 07FF
Signing time: Mon 29 Jun 2026 09:01:25 +0000
Manifest this update: Mon 29 Jun 2026 09:01:25 +0000
Manifest next update: Tue 30 Jun 2026 09:01:25 +0000
Files and hashes: 1: cb-mqGrD9TdvPSnuiFKPTNSp4k0.roa (hash: 3D9GKzTfBklRbCdmXiO06QWtVtwBT318N1GZYxQn0ZA=)
2: lJgy8CXL76HqG8oMOQtjwXaUjNI.crl (hash: o83vdG5+/nhzBoXrGuomw4WIaKDC/oBPvVVX76k4QTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:9c:ac:dc:bb:74:2f:eb:4f:a3:31:77:df:8c:64:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Validity
Not Before: Jun 29 09:01:25 2026 GMT
Not After : Jun 30 09:01:25 2026 GMT
Subject: CN=27860ff896349a3b38bfb196dbe9286f9f951cda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:85:d0:93:79:49:7e:aa:e0:4c:6e:f1:9f:c4:
4d:6a:86:3b:30:f2:ee:9c:4f:fa:76:8d:09:b5:2c:
70:e0:29:ca:ed:07:bb:bf:e5:9e:f6:4b:bd:25:36:
a7:16:98:c2:b6:d3:e4:13:3a:49:2b:de:1d:db:a0:
08:d0:61:b7:48:25:12:d6:06:42:dc:e4:a5:90:14:
07:ee:9a:5d:67:7e:29:33:69:87:db:38:58:42:b7:
04:1f:13:50:af:a2:88:50:12:55:45:c2:a7:80:4e:
1d:c4:54:fb:30:4e:a4:5a:59:d7:cd:d3:d0:ab:1c:
d2:ac:c6:03:0c:13:02:07:07:39:40:51:00:72:cf:
35:ce:d4:ca:3a:66:2b:f0:a8:ef:8b:9a:f0:9c:f0:
38:3e:15:b5:09:b9:54:4f:af:21:26:25:7b:41:7a:
71:a2:2d:9a:71:19:ec:49:26:a1:b7:64:14:8e:86:
45:8a:79:fa:b6:f2:df:dd:04:25:4a:b0:61:3d:ec:
0c:81:9d:33:27:df:2a:98:f4:55:55:30:27:d0:6d:
93:d4:dd:66:a7:39:fa:cd:99:de:70:43:08:b8:c0:
10:65:68:fd:a6:8e:af:a3:b3:82:13:ee:8e:83:38:
b7:15:df:41:2f:ab:72:d6:6e:fb:7c:7a:54:dd:1a:
a9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:86:0F:F8:96:34:9A:3B:38:BF:B1:96:DB:E9:28:6F:9F:95:1C:DA
X509v3 Authority Key Identifier:
keyid:94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:86:85:33:9f:93:4d:6d:06:f5:19:98:fe:96:09:4b:d1:a1:
47:3b:76:9a:53:6f:ee:78:c1:18:53:dc:bf:cc:cd:0f:7a:d2:
33:2e:07:d1:ac:68:13:14:37:73:52:06:d4:06:0e:c3:c1:61:
5a:43:9a:13:99:be:cf:61:91:07:80:2c:9d:1b:f5:7c:f1:09:
09:e1:04:5b:9f:3e:6f:c8:8f:70:61:e4:f6:41:1a:22:94:d1:
c9:48:04:ef:2f:6b:9d:89:62:52:5e:03:04:fb:f1:2f:37:41:
85:90:64:ce:6a:c1:7d:4a:e8:b4:4b:ae:a0:02:4d:6e:ca:fa:
1d:3a:f8:01:99:4e:a6:f3:18:ea:d5:aa:9a:6f:c9:fd:25:17:
cc:51:d0:c4:23:fd:f5:b9:3a:d1:80:53:26:24:22:90:18:7a:
a2:78:56:1b:a9:bd:1f:5c:3c:97:e6:cb:61:95:bf:92:5a:0d:
a7:66:b2:5e:8f:8e:1e:f0:97:37:ae:72:30:ae:bb:6c:ac:23:
c8:3e:fa:21:21:8b:9f:50:3d:c8:9c:ed:34:9a:67:7d:c7:fd:
1e:03:7d:22:cf:b1:9f:cd:f4:e4:4a:58:be:d8:c1:78:cb:39:
ab:a9:39:d3:6c:80:b4:bb:50:15:9e:c8:8f:54:b0:ef:b7:5a:
aa:57:de:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 12:41:07 2026 by rpki-client