Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: uwmdK70rDNBheuDk9md4+RTuZygH24nSz93QXlnEHuM=
Subject key identifier: 36:D6:43:08:A9:D6:86:48:D9:62:32:14:94:10:56:45:60:D7:37:EA
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 019E883560679D42303AA11749EA6645BC99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 05AC
Signing time: Tue 02 Jun 2026 12:00:59 +0000
Manifest this update: Tue 02 Jun 2026 12:00:59 +0000
Manifest next update: Wed 03 Jun 2026 12:00:59 +0000
Files and hashes: 1: 349FQFd5GuBNHJ1XSdLWCNh7MgE.roa (hash: X07/rOHAvRnDnhTDeHpviTIJqNY8MhsZ5tUjK1kXVRQ=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: 1AZ7syNFcZmsLtioLwSjydVS93dWmbNZnP0Oa24bMxc=)
3: Ro9U9BJ6f0_Ri9pStBmjPzC3PAI.roa (hash: OME7cIqz4TyEQ9tHIazsSceKPyDQCFfwvggAogmMI2I=)
4: iRueGgNSFlYLf9RROG0f0rTAc00.roa (hash: S/n0OWxnW1sYVn1zOvkt5rV/05+3yi0pPUNZuVoiUaI=)
5: o8OOXMpbaFk_8-RmJyQxncgLVFQ.roa (hash: jB/RtTqOu46GTbqyk/NL/0jshQ8FkOf7LHzIj9jHQHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 12:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:88:35:60:67:9d:42:30:3a:a1:17:49:ea:66:45:bc:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Jun 2 12:00:59 2026 GMT
Not After : Jun 3 12:00:59 2026 GMT
Subject: CN=36d64308a9d68648d96232149410564560d737ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f7:cc:2a:dc:fc:45:73:ba:74:9f:26:e2:8a:
5f:4f:e5:48:71:72:af:8a:aa:24:45:d5:de:5a:7f:
e3:77:58:74:59:e5:23:52:77:83:27:24:fa:e8:23:
4f:19:6c:54:95:b2:32:39:9f:62:fa:5a:71:bf:ff:
10:67:7b:ef:5b:a0:8b:ea:c3:9e:12:e7:6d:f9:a1:
07:5f:92:8d:02:98:18:1f:39:f0:b6:0d:3d:8d:5d:
a1:93:75:68:2a:84:63:27:9d:6c:ce:7c:6c:1a:f9:
61:d0:ac:1e:6d:6f:82:83:4d:f4:83:0d:2b:02:80:
fe:86:bf:79:36:70:36:da:40:1c:a0:38:c9:84:29:
21:e8:b3:f7:3d:2b:d8:59:d2:b7:80:82:94:f8:62:
f3:fa:a7:ac:fc:88:0d:d8:16:2a:68:77:1d:8e:69:
a7:46:85:56:8e:2d:37:51:38:79:80:0f:c0:4c:d8:
e1:f8:82:44:86:5c:45:73:97:ed:de:f1:bf:69:ab:
d3:da:f5:bf:a2:e0:0c:93:9f:53:18:b7:cd:98:a2:
98:b6:29:7e:be:ba:c6:a6:d5:a2:50:da:1c:24:54:
68:c2:84:2c:2e:60:e8:f7:7f:e2:4a:f9:b4:5c:8b:
a0:f8:21:31:ff:bf:ff:18:72:25:29:8c:75:d9:f1:
0b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D6:43:08:A9:D6:86:48:D9:62:32:14:94:10:56:45:60:D7:37:EA
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:9e:74:72:f5:ab:74:7f:4a:92:86:d0:ad:c1:e3:e3:da:f7:
a7:53:25:56:e1:ce:09:24:d5:b2:27:fa:7d:40:17:ce:7b:80:
bc:c2:76:f0:2f:49:f9:a8:49:d7:31:7e:87:cb:bd:14:4f:30:
f6:2d:9d:e8:6c:db:e0:49:98:02:80:1c:74:1d:55:00:a6:53:
4e:96:e4:c1:de:17:38:4d:31:fb:23:bd:ff:75:44:f1:e7:69:
2f:69:8c:60:bb:79:15:1f:69:a1:4d:c1:6a:72:cc:1f:81:4d:
bb:6a:ed:6d:37:1d:54:3c:fb:a4:c6:62:db:73:f9:cc:39:9b:
6d:97:5e:cc:c1:19:c3:5a:5c:71:22:83:a7:31:3d:9d:26:5f:
dd:ee:22:ef:53:38:9a:e4:2b:75:4c:24:bf:9b:f4:da:e5:de:
c2:3d:9e:b2:cb:b4:08:f3:37:22:92:83:bf:b2:0e:f6:cb:6a:
53:75:07:d2:1f:a9:33:4e:30:af:6c:0c:20:75:65:09:35:95:
e2:13:2d:7e:9d:ed:d3:79:5b:72:a7:f3:04:d8:86:b5:17:c6:
d3:3e:ea:30:bb:b5:1f:f2:d2:18:98:1a:e6:b4:ed:bf:43:91:
19:8e:b6:9a:a5:03:72:20:6f:21:54:ee:a4:9a:5e:5c:bf:c1:
91:8e:4c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 22:05:26 2026 by rpki-client