Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: D441ubbvqPOgNG5mdsfVqO5la8U4I/RugcJN6HYerys=
Subject key identifier: 7A:70:16:E3:98:CB:A8:9E:CD:DB:3D:E9:FD:FA:26:EA:1E:7C:A1:59
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 019D371BA690371C551C8BBFBA5EDE592447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 01:00:52 +0000
Manifest this update: Sun 29 Mar 2026 01:00:52 +0000
Manifest next update: Mon 30 Mar 2026 01:00:52 +0000
Files and hashes: 1: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: bNKZwFMvYt4KhT/81F7iaaX6jHXuJ4Q9S8aDoDxVC+w=)
2: tz4P9nF3Ei3wUS8VYP6Gfwtlguc.roa (hash: WI+TvaMT1Y9cC04iUl0U1l9xEwrwqSAkBoEDvp55Sj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:a6:90:37:1c:55:1c:8b:bf:ba:5e:de:59:24:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Mar 29 01:00:52 2026 GMT
Not After : Mar 30 01:00:52 2026 GMT
Subject: CN=7a7016e398cba89ecddb3de9fdfa26ea1e7ca159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d1:cf:e7:7f:27:b6:19:64:b0:b1:8c:9a:73:
6e:8e:b3:4f:10:b1:48:3c:1d:5c:27:a4:f0:6b:97:
e9:a6:69:73:90:3c:47:4d:81:0e:16:9a:a2:47:32:
64:65:00:87:82:78:fd:d1:08:8c:eb:b9:18:78:26:
c3:4b:fb:7a:27:c4:90:27:48:1e:42:38:6a:e5:97:
1c:3c:f1:d4:a4:ec:aa:57:37:18:07:38:b2:48:b2:
aa:dd:ef:0c:40:d0:26:f3:c8:f1:81:8f:bd:dc:74:
8c:31:83:d1:4d:f7:75:d8:c1:2f:bb:dd:59:5e:36:
84:a7:26:8f:d3:6e:80:64:cc:93:77:3f:04:87:df:
d7:85:0b:4d:fb:72:ca:55:9a:51:a3:44:27:70:66:
07:d0:6f:90:0c:d3:93:85:32:82:78:5e:bf:8a:12:
df:c8:df:f7:2d:1d:8b:da:bc:e1:8f:8c:3d:35:a4:
f1:22:5a:bb:1d:dd:66:33:a3:6f:91:84:ed:25:9e:
f5:f1:0c:a8:55:4f:15:2e:bc:7d:a0:a9:f0:71:01:
dd:cf:ca:f1:31:21:23:47:47:9f:1e:18:80:fe:51:
0e:84:ba:55:a8:5e:0c:72:66:9c:18:bb:3c:63:76:
72:ef:d6:dd:e0:1e:87:be:34:df:ff:c3:b0:45:1e:
83:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:70:16:E3:98:CB:A8:9E:CD:DB:3D:E9:FD:FA:26:EA:1E:7C:A1:59
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:3f:af:9f:26:6e:7e:8b:18:48:09:98:bb:07:be:5a:d7:79:
3a:d1:05:45:a8:c0:5a:c5:73:10:5a:26:81:48:e8:47:4f:3e:
49:76:70:06:2e:35:1b:17:6c:24:58:46:9c:72:1d:1a:89:9c:
f7:1e:65:a4:65:60:6e:69:c3:e6:15:82:cb:ce:f1:61:5b:40:
fc:cd:e1:8a:c4:1d:b0:a1:a2:1b:6b:ec:6f:8e:c7:5e:81:1c:
d5:bb:78:df:67:54:02:61:94:4d:11:b4:9e:7d:be:c6:7c:4a:
29:c2:3f:02:cb:bb:0c:a3:da:b7:0a:30:84:23:b7:f6:43:e5:
33:a8:c8:c6:ae:ce:7f:b7:31:d7:49:be:20:c1:55:4b:f2:a8:
1b:ea:25:10:aa:ec:ce:d3:84:c7:d9:99:bf:06:19:61:b8:f7:
0b:5b:00:70:af:a7:9d:17:e2:20:7c:08:af:e1:29:61:57:fc:
ed:56:26:e2:87:1e:54:23:10:e8:c2:b9:0d:2b:51:3d:59:f4:
ea:bf:3d:13:97:27:ff:e7:87:b9:af:e7:aa:90:75:51:51:c6:
73:f9:cc:df:6f:c4:d0:0e:7f:82:a8:9a:d6:04:69:02:92:d8:
42:18:95:2a:60:38:cc:50:7c:ba:e1:61:3f:4b:19:af:f9:ed:
77:02:ad:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03G6aQNxxVHIu/ul7eWSRHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0Yzg2YzliMzVkNzgyMTE2YjJjZDg1ODNhMjdjZWI0MDNi
OGY2MWEwHhcNMjYwMzI5MDEwMDUyWhcNMjYwMzMwMDEwMDUyWjAzMTEwLwYDVQQD
Eyg3YTcwMTZlMzk4Y2JhODllY2RkYjNkZTlmZGZhMjZlYTFlN2NhMTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvtHP538nthlksLGMmnNujrNPELFI
PB1cJ6Twa5fppmlzkDxHTYEOFpqiRzJkZQCHgnj90QiM67kYeCbDS/t6J8SQJ0ge
Qjhq5ZccPPHUpOyqVzcYBziySLKq3e8MQNAm88jxgY+93HSMMYPRTfd12MEvu91Z
XjaEpyaP026AZMyTdz8Eh9/XhQtN+3LKVZpRo0QncGYH0G+QDNOThTKCeF6/ihLf
yN/3LR2L2rzhj4w9NaTxIlq7Hd1mM6NvkYTtJZ718QyoVU8VLrx9oKnwcQHdz8rx
MSEjR0efHhiA/lEOhLpVqF4McmacGLs8Y3Zy79bd4B6HvjTf/8OwRR6DzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHpwFuOYy6iezds96f36JuoefKFZMB8GA1UdIwQY
MBaAFJTIbJs114IRayzYWDonzrQDuPYaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMt
MzViMGM5NjUyNGZhLzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9mZGQ2ODgtM2UyMy00NmY0LWEwNzMtMzViMGM5NjUyNGZh
LzEvbE1oc216WFhnaEZyTE5oWU9pZk90QU80OWhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAED+vnyZu
fosYSAmYuwe+Wtd5OtEFRajAWsVzEFomgUjoR08+SXZwBi41GxdsJFhGnHIdGomc
9x5lpGVgbmnD5hWCy87xYVtA/M3hisQdsKGiG2vsb47HXoEc1bt432dUAmGUTRG0
nn2+xnxKKcI/Asu7DKPatwowhCO39kPlM6jIxq7Of7cx10m+IMFVS/KoG+olEKrs
ztOEx9mZvwYZYbj3C1sAcK+nnRfiIHwIr+EpYVf87VYm4oceVCMQ6MK5DStRPVn0
6r89E5cn/+eHua/nqpB1UVHGc/nM32/E0A5/gqia1gRpApLYQhiVKmA4zFB8uuFh
P0sZr/ntdwKtYw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:59 2026 by rpki-client