
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: SHMXFpcATzn3CygWUjwnCTVTwzrXpHKPOCRq82hparc=
Subject key identifier: CF:76:64:9A:B9:E5:A5:5C:A2:9B:7B:F6:D5:DF:7B:A5:3F:E4:AB:B1
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 019F72194B5B66A156F4A620B86574BAAF81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 062A
Signing time: Fri 17 Jul 2026 22:01:27 +0000
Manifest this update: Fri 17 Jul 2026 22:01:27 +0000
Manifest next update: Sat 18 Jul 2026 22:01:27 +0000
Files and hashes: 1: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: /clNUNCZZuKKCCECy18CbXkNCALXJqP8ec809NVcQ2c=)
2: hkjYmI9X6VPWkUt8PYO3NITbvC4.roa (hash: 0Gr28HnkX+tfG0K6Zl50zhuF7TY2Uh15yYjcy9pJCmc=)
3: iRueGgNSFlYLf9RROG0f0rTAc00.roa (hash: S/n0OWxnW1sYVn1zOvkt5rV/05+3yi0pPUNZuVoiUaI=)
4: o8OOXMpbaFk_8-RmJyQxncgLVFQ.roa (hash: jB/RtTqOu46GTbqyk/NL/0jshQ8FkOf7LHzIj9jHQHo=)
5: tEGWV7uL1kkHXg1ce3d2Kqonfd4.roa (hash: H7F35wb/tEcv0crUOG6mGjm4GMsLSs07Lj956J4LD2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 17:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:72:19:4b:5b:66:a1:56:f4:a6:20:b8:65:74:ba:af:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Jul 17 22:01:27 2026 GMT
Not After : Jul 18 22:01:27 2026 GMT
Subject: CN=cf76649ab9e5a55ca29b7bf6d5df7ba53fe4abb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:60:c4:0e:89:e4:4b:ee:1f:39:5e:88:44:29:
f7:80:14:ae:6a:62:70:1a:dd:5d:50:a0:a0:de:a5:
6b:9c:38:e7:01:b7:b8:a3:0a:f5:ab:f7:95:5a:92:
41:5f:f6:49:d9:44:cc:fa:d6:d0:f2:dd:4e:8b:a1:
d9:41:77:c4:a0:cd:91:9d:b1:b5:a0:5b:e1:c9:ec:
f3:a6:be:92:b1:f0:24:42:a4:0f:3d:74:da:6a:46:
a9:4b:e0:aa:ff:67:54:f3:a5:8b:4c:54:57:31:18:
21:03:d0:67:36:0f:1b:79:96:bb:56:d2:93:c4:79:
86:9e:ea:fd:9a:15:e7:a7:eb:ae:63:3f:48:c8:38:
30:4a:e1:05:8d:17:7c:23:8c:99:89:8b:3a:2f:56:
f4:13:c2:ae:8c:03:19:41:bc:af:f4:b2:30:bb:e3:
84:22:80:0d:ba:9a:23:81:3b:2d:ae:4e:fd:34:5f:
be:33:05:fd:72:32:e6:71:15:01:9d:22:5c:ac:b2:
6f:67:2b:f6:1f:a0:51:06:65:df:d5:44:28:76:cd:
19:4b:a1:d4:2d:67:b5:cb:34:c0:67:45:b7:6c:55:
93:a6:70:aa:32:5c:f4:71:81:ce:0f:9a:5a:cf:ba:
88:03:6e:83:01:57:77:9e:cd:6c:08:19:0d:92:c8:
5b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:76:64:9A:B9:E5:A5:5C:A2:9B:7B:F6:D5:DF:7B:A5:3F:E4:AB:B1
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dc:e5:9d:8d:3b:a7:37:da:a1:91:3c:42:04:3a:c1:94:89:c6:
85:a4:4f:25:b4:e1:18:e3:87:20:4d:b6:1d:24:da:19:dd:9c:
2d:67:3a:6d:99:f0:aa:41:ea:5e:bb:e3:86:df:ae:a3:8e:ea:
7f:f8:92:9e:06:7a:fa:a0:4e:fd:8d:2f:20:69:9f:34:73:e1:
8f:52:29:c9:5d:bc:31:b1:65:8a:b4:fc:80:92:a0:30:a9:4a:
7c:c0:94:e6:17:32:24:a4:00:4c:ce:e9:e4:bc:e9:0a:ed:ed:
d1:4a:b1:de:fa:6f:84:68:a5:42:ae:f9:3c:bd:7c:71:eb:a8:
89:2c:00:1a:be:4b:4c:a1:0a:d2:ce:bf:89:c2:5b:9b:fa:3e:
b6:38:a8:8e:43:bb:4b:28:2b:d7:8d:1a:5d:9c:d0:1a:41:cc:
25:d5:75:62:39:57:bb:ac:22:17:bb:7e:d0:c7:3d:de:85:55:
a9:fb:33:32:e0:b7:ff:eb:81:e3:85:da:a3:ef:dd:d9:0c:5e:
31:c3:8a:75:18:cd:7f:51:10:d5:a1:90:53:67:e6:3b:0b:73:
c5:53:86:a2:aa:fa:9e:16:96:84:58:61:80:47:a5:ad:6a:c1:
41:56:b5:cf:99:b9:ba:5e:a7:07:fc:02:fa:48:d3:a5:71:b2:
af:da:7c:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:19:59 2026 by rpki-client