Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: ynBtILl6oqsEQe7GBI7Lheu4UxCJZkTj/7N+9X9FvN0=
Subject key identifier: 00:20:D7:14:F7:49:35:81:18:E0:27:7F:07:36:8A:2D:7F:35:40:99
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 019CB8B8D77DC5D12C715ABDD742E9000F52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 04BC
Signing time: Wed 04 Mar 2026 12:00:47 +0000
Manifest this update: Wed 04 Mar 2026 12:00:47 +0000
Manifest next update: Thu 05 Mar 2026 12:00:47 +0000
Files and hashes: 1: 349FQFd5GuBNHJ1XSdLWCNh7MgE.roa (hash: X07/rOHAvRnDnhTDeHpviTIJqNY8MhsZ5tUjK1kXVRQ=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: 766lINy9FTkRJNYFC2PyS4TP8QMEfN2lWIR7V4WdmwI=)
3: Ro9U9BJ6f0_Ri9pStBmjPzC3PAI.roa (hash: OME7cIqz4TyEQ9tHIazsSceKPyDQCFfwvggAogmMI2I=)
4: iRueGgNSFlYLf9RROG0f0rTAc00.roa (hash: S/n0OWxnW1sYVn1zOvkt5rV/05+3yi0pPUNZuVoiUaI=)
5: o8OOXMpbaFk_8-RmJyQxncgLVFQ.roa (hash: jB/RtTqOu46GTbqyk/NL/0jshQ8FkOf7LHzIj9jHQHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b8:b8:d7:7d:c5:d1:2c:71:5a:bd:d7:42:e9:00:0f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Mar 4 12:00:47 2026 GMT
Not After : Mar 5 12:00:47 2026 GMT
Subject: CN=0020d714f749358118e0277f07368a2d7f354099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:98:93:7a:0c:35:5c:0a:98:fc:e5:cc:f9:89:
13:96:0f:53:ba:6a:41:a5:04:49:b1:dc:60:7a:40:
74:0f:66:0e:72:96:95:fc:54:3e:f0:0b:ad:4a:2f:
5d:db:26:36:b4:24:9b:36:80:52:17:6d:67:ff:64:
40:d2:1c:33:57:4f:7d:78:c4:41:2e:28:98:e3:b0:
5d:6b:a3:cf:d6:1c:cb:f6:af:ff:ed:c1:e9:da:55:
6f:ef:60:56:61:1e:92:07:60:6c:95:df:26:ac:24:
eb:f9:cd:45:62:a0:b3:3d:a0:62:27:ec:9e:40:36:
ea:03:cd:33:05:64:e4:ed:ea:b3:b1:e4:5c:48:18:
44:7c:70:00:bf:2b:92:d3:e0:ff:dd:a5:f0:4e:91:
3b:db:2b:9a:81:15:51:42:46:5c:c4:c8:8f:0f:67:
46:1a:4d:83:09:ca:27:fd:69:76:89:3f:51:f9:7a:
f8:e9:29:72:70:d6:c6:14:12:3f:1d:8f:c6:1b:62:
1c:2b:a2:f7:25:07:2b:5e:16:61:59:e2:f4:2b:2d:
db:5a:15:03:c6:31:64:6d:7f:d4:9e:fd:16:57:ac:
9a:ab:7e:9d:52:9b:45:24:43:5e:3e:48:62:1d:76:
85:5e:6a:c9:b8:30:60:a0:83:a6:d4:8b:46:f1:f0:
f0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:20:D7:14:F7:49:35:81:18:E0:27:7F:07:36:8A:2D:7F:35:40:99
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:23:7a:9a:45:64:f7:5e:41:5f:93:8a:17:13:2a:a5:51:e1:
fd:81:01:e2:a8:00:50:36:98:4b:f1:66:c7:80:6c:24:34:e2:
6d:6f:5d:f4:20:a0:79:85:f5:e3:d7:04:2f:b9:4e:ed:7c:20:
c5:e1:a8:73:fa:01:7f:81:62:de:8a:ce:2a:61:c9:d7:2d:a1:
d8:2b:f4:8f:08:05:e0:9f:07:a9:ae:62:6a:7b:7e:3a:44:9e:
c0:9e:1b:6e:95:f4:1c:cd:82:be:f2:be:56:20:05:ed:9a:03:
09:63:58:ec:82:a1:a1:11:97:68:06:c3:02:ce:1f:ba:b7:82:
05:1d:96:17:8c:6a:6c:e5:dd:2b:35:69:9f:1d:7a:05:fd:52:
44:7c:f1:91:89:85:17:88:dd:c6:98:6f:21:12:48:d5:65:5c:
7d:85:4b:2e:19:a1:d0:11:29:64:80:9f:cc:51:77:42:7a:9f:
ee:33:a9:a6:44:a3:e3:91:97:b4:bd:e5:5a:f2:78:43:08:1e:
19:50:a7:ed:30:1f:7c:ef:94:6c:62:2f:bd:24:02:68:1e:55:
54:c5:33:bf:42:79:50:4a:17:b8:11:76:f5:6f:40:4a:c7:24:
ee:6d:7c:1d:36:cc:fe:5b:d1:ad:83:63:aa:a5:e8:27:58:55:
51:50:e8:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 16:05:49 2026 by rpki-client