Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
File: L45RIlad5SzVCux5NJS_HOfCX8g.mft (raw, json)
Hash identifier: hD82v99wHSR5aMRrRni7ifsEAsyTENafXmUu9qOH6+Q=
Subject key identifier: 0D:09:DC:0C:1B:9D:54:F4:1B:7E:AE:14:99:DE:C4:C3:A1:98:88:13
Authority key identifier: 2F:8E:51:22:56:9D:E5:2C:D5:0A:EC:79:34:94:BF:1C:E7:C2:5F:C8
Certificate issuer: /CN=2f8e5122569de52cd50aec793494bf1ce7c25fc8
Certificate serial: 019D37F6FD89AF2EE82D9F5DE58933864934
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L45RIlad5SzVCux5NJS_HOfCX8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
Manifest number: 0F43
Signing time: Sun 29 Mar 2026 05:00:26 +0000
Manifest this update: Sun 29 Mar 2026 05:00:26 +0000
Manifest next update: Mon 30 Mar 2026 05:00:26 +0000
Files and hashes: 1: L45RIlad5SzVCux5NJS_HOfCX8g.crl (hash: FCBzFmllg98W+Y3jyx+MKAitiKf58o7iAeobhyRE+QE=)
2: MebPMP4MKMDRPcWsqA1RWlWN-u0.roa (hash: EdSN3u2MFCBqnyk+W6CQKHBVKlUmG8nORx98tAwp5Qs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
rsync://rpki.ripe.net/repository/DEFAULT/L45RIlad5SzVCux5NJS_HOfCX8g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:fd:89:af:2e:e8:2d:9f:5d:e5:89:33:86:49:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8e5122569de52cd50aec793494bf1ce7c25fc8
Validity
Not Before: Mar 29 05:00:26 2026 GMT
Not After : Mar 30 05:00:26 2026 GMT
Subject: CN=0d09dc0c1b9d54f41b7eae1499dec4c3a1988813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9c:d4:70:1f:c2:62:c5:24:b6:93:2e:df:4d:
c3:14:2e:8d:28:a2:4d:2b:6d:e3:23:c2:56:b3:7f:
b3:43:30:8c:5a:08:3e:46:11:46:b1:23:03:fb:82:
47:55:dd:71:af:36:85:bb:37:25:7f:f8:4d:14:4f:
2d:fe:ff:5e:0f:16:97:97:4b:9d:3f:02:fc:b1:e2:
8a:13:13:fd:e6:d5:14:d1:49:2a:cf:89:32:03:eb:
a2:f1:ed:8d:fe:d4:3e:53:f9:b9:ad:40:f1:69:18:
25:0c:7d:51:46:39:f5:7f:e5:a4:f2:ea:c4:a8:fe:
1d:ed:b2:9a:b2:12:e4:fa:72:b4:29:f7:2e:4c:7f:
f1:0c:48:4b:ac:f4:5f:be:25:22:2e:22:30:9c:f8:
5e:19:8f:22:bd:68:18:e0:cf:9f:8d:52:2e:1a:18:
a3:1b:9a:4a:a9:0b:a8:ed:70:bd:b0:cc:b1:cf:cc:
5c:9f:f0:04:e6:86:54:29:2c:f7:f2:ce:88:69:ba:
c3:9a:a1:b0:a3:5b:25:45:bd:52:23:11:06:1f:fd:
8a:11:9e:7d:d8:46:be:0a:29:a7:3e:69:3d:99:ef:
e2:2f:0d:f1:b4:13:43:21:4c:05:30:77:94:29:97:
af:dc:6b:e8:ba:97:38:6e:bf:5a:3d:e1:9a:85:51:
34:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:09:DC:0C:1B:9D:54:F4:1B:7E:AE:14:99:DE:C4:C3:A1:98:88:13
X509v3 Authority Key Identifier:
keyid:2F:8E:51:22:56:9D:E5:2C:D5:0A:EC:79:34:94:BF:1C:E7:C2:5F:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L45RIlad5SzVCux5NJS_HOfCX8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/356e78-dcf8-4625-87ca-8688b1e53571/1/L45RIlad5SzVCux5NJS_HOfCX8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:e2:5d:43:fa:07:cf:d8:8b:4d:33:fc:cf:84:22:74:fb:69:
11:2c:40:8f:ae:ba:5e:99:c0:b1:89:b7:c3:f0:c1:ce:46:14:
be:da:39:1b:85:4d:1c:27:68:bf:c7:07:b0:0e:bd:8e:e1:aa:
35:25:b3:90:77:90:e6:96:78:59:d6:48:55:4c:f8:f0:fa:9d:
04:39:28:4b:f6:88:a8:6a:64:00:fd:37:21:0d:53:f9:d3:cb:
9b:f3:ee:af:a2:93:2a:ab:88:e9:a2:d2:8a:0c:ee:32:71:c8:
11:12:1c:06:35:ba:a9:bf:03:01:5b:f7:75:41:56:32:f6:3a:
03:71:02:bf:d7:9c:b9:7c:c8:09:5c:e2:a1:b5:c1:e6:3e:76:
83:5e:d1:0a:bc:9e:49:2c:21:d4:0c:76:51:38:8b:b6:5b:e5:
58:49:1c:81:8e:42:ee:a5:a2:1f:01:23:06:9d:1e:3e:6e:7d:
a0:ce:d9:11:81:b5:55:40:ff:9e:ec:df:19:fc:b1:8a:3a:62:
43:5a:59:41:2a:8d:19:a2:52:8c:d1:a2:7c:af:7d:3e:c4:33:
77:fa:39:22:53:0e:11:be:93:24:de:88:70:ce:4c:c7:00:77:
d1:dc:5c:0a:0e:d2:61:84:d3:ef:5d:90:81:07:05:64:9d:b5:
07:28:42:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:01 2026 by rpki-client