Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json)
Hash identifier: vIsXgzO3r5dTCwzVoxDRbDcLZD02r09n9rWPtxRiyP0=
Subject key identifier: 46:C7:F4:4B:7C:EE:07:28:F9:E8:49:F5:D2:41:16:2C:AD:63:50:E8
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 019DA265157703937913B6C45F558A09FD45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
Manifest number: 0D48
Signing time: Sat 18 Apr 2026 21:00:26 +0000
Manifest this update: Sat 18 Apr 2026 21:00:26 +0000
Manifest next update: Sun 19 Apr 2026 21:00:26 +0000
Files and hashes: 1: kE66fhDE4xBKZgP00aDSZ5wUo8Q.roa (hash: Xz3m7rpESDDSay6iugLcdgSAsdxY3IOPYIq5I7x/X5M=)
2: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: SqNMBeziC1vV3UdTD6/fOCewcmMKymJAbvexyGvQFpk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 17:59:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:65:15:77:03:93:79:13:b6:c4:5f:55:8a:09:fd:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: Apr 18 21:00:26 2026 GMT
Not After : Apr 19 21:00:26 2026 GMT
Subject: CN=46c7f44b7cee0728f9e849f5d241162cad6350e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5a:04:55:17:fa:15:93:7b:17:f7:d1:76:10:
87:76:b8:b1:88:9e:97:10:1d:00:d6:11:70:10:b0:
70:77:2f:d6:21:9f:31:bc:a9:4c:10:27:e9:05:fd:
75:80:31:53:07:f5:80:89:d0:5c:d4:7b:02:26:56:
16:c9:9b:51:90:45:4f:61:62:0c:b7:9d:0e:7b:45:
d3:3d:a3:c6:df:59:f0:bf:06:13:89:87:e7:68:3b:
6e:4d:b3:8d:a8:57:70:dc:be:d2:c2:1d:6e:ab:d0:
e6:f6:c1:ec:c9:ee:dc:38:2b:e6:ae:0d:36:1d:30:
37:5e:60:fb:5e:56:72:9c:88:7c:2f:93:9f:86:32:
2f:d2:4f:c6:df:58:60:f6:cc:3c:11:d5:fd:d3:c8:
67:b4:cc:2c:a8:7b:62:4a:3f:9e:8b:90:cc:cb:15:
3b:a0:79:ad:3b:ae:59:9c:36:24:61:9b:84:c6:e2:
31:c6:8c:10:4d:d7:b6:05:fa:f5:7c:2e:45:84:ae:
ae:42:a0:db:c2:aa:53:eb:71:03:49:68:88:81:d1:
df:f2:a4:c9:fe:6e:32:85:7c:f5:52:97:6e:3d:f0:
71:c2:7b:32:0c:68:72:e8:8b:9c:e0:9b:f2:70:39:
0f:e8:3d:37:8e:58:8b:97:4f:2c:fe:1b:3f:ae:5a:
01:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:C7:F4:4B:7C:EE:07:28:F9:E8:49:F5:D2:41:16:2C:AD:63:50:E8
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:73:48:b4:33:7c:12:31:8f:49:ce:f0:a2:75:04:97:9e:e9:
63:3f:7e:e6:07:f7:17:f2:98:5c:03:88:cf:43:63:17:e4:af:
81:c7:49:44:b5:82:f9:47:c7:f3:56:4f:3b:70:c5:39:f8:1b:
01:c0:68:98:91:11:a6:6a:15:41:a7:c9:38:b6:f3:77:94:7a:
80:30:d0:f1:cc:04:46:2d:aa:53:85:3b:e4:ac:35:48:14:d9:
ea:39:d9:14:2b:af:d0:59:8c:d4:dc:35:4e:aa:44:f9:be:76:
6d:2c:74:4a:bc:b1:a6:2e:7f:79:dd:da:5c:2c:be:c7:62:11:
c7:33:2c:bc:e5:51:55:50:bf:02:db:31:58:0e:65:f5:cb:02:
4e:52:8e:2d:9f:19:b1:de:51:bf:78:25:95:10:97:29:df:32:
36:8d:ab:c1:2a:ef:34:fb:52:11:67:07:57:46:4a:aa:87:4e:
ad:b1:e9:52:54:e7:b9:c2:74:02:25:0f:5f:eb:cb:d0:55:a1:
ef:8a:fa:8e:ab:fc:c5:f0:4c:0d:5a:57:57:8b:07:35:e0:66:
d0:eb:eb:1f:0c:54:a6:90:f4:5a:ff:9c:a4:7f:a0:50:6b:c2:
4e:91:ba:02:f9:ef:da:b1:8b:d2:77:7b:21:a6:7b:98:fb:27:
da:20:e3:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 02:13:52 2026 by rpki-client