Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
File: lf0DtfNbMXtNMv8aSywXuzdsIeE.mft (raw, json)
Hash identifier: iFdAJs/uTs1VhuTovyqSq4dznF1U3YWp90qlyEBySts=
Subject key identifier: FA:9D:D8:D6:97:2C:25:0B:AA:E3:C0:A7:FA:A1:AB:EB:CD:BE:6C:E7
Authority key identifier: 95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
Certificate issuer: /CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Certificate serial: 019F190C6D5A827BEA897851B8B72A386C27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
Manifest number: 1595
Signing time: Tue 30 Jun 2026 15:01:12 +0000
Manifest this update: Tue 30 Jun 2026 15:01:12 +0000
Manifest next update: Wed 01 Jul 2026 15:01:12 +0000
Files and hashes: 1: lf0DtfNbMXtNMv8aSywXuzdsIeE.crl (hash: 80W9MJqIsrK1H0HYgIV1xtsBDlN4XxbpFYhmW67+3Nc=)
2: lkOGQ8G7v7KQ2Y0qWOrKVoZYTms.roa (hash: d0roMsqX9vnomDLuPDxCBkqVZxb8IXHny4aGCS66Mnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:6d:5a:82:7b:ea:89:78:51:b8:b7:2a:38:6c:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95fd03b5f35b317b4d32ff1a4b2c17bb376c21e1
Validity
Not Before: Jun 30 15:01:12 2026 GMT
Not After : Jul 1 15:01:12 2026 GMT
Subject: CN=fa9dd8d6972c250baae3c0a7faa1abebcdbe6ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7f:c9:ab:0f:47:3f:85:30:87:f9:b4:fb:7a:
82:1d:68:1c:98:47:9d:2f:7b:9f:e0:d9:38:23:8a:
10:4a:df:e5:53:bf:16:39:81:d6:47:ba:bf:8c:18:
80:db:bc:55:f8:af:fb:c6:7f:00:ec:d6:1b:d7:1b:
3a:c0:5e:d8:4f:5a:52:70:b0:7a:d9:dd:c9:44:ad:
62:90:6c:7c:79:06:54:d6:d5:97:bc:3c:cb:3a:e7:
aa:2e:43:c6:24:0a:82:9d:54:d7:20:40:4a:85:fd:
55:42:29:49:8b:9d:e5:b2:27:c5:6c:82:90:a9:7a:
4d:b2:c3:6f:37:50:9b:e0:8e:8e:3d:c3:6c:eb:35:
5d:5f:d7:be:e1:2b:ea:72:d0:89:ca:59:5e:08:19:
37:ea:c5:10:ed:53:aa:4d:fc:bc:22:7f:a3:fd:c1:
e0:fb:82:24:19:8d:9a:9a:4e:22:09:a5:45:ac:63:
bf:0a:73:9c:57:34:a5:2e:16:29:a1:54:c1:ee:dd:
60:f5:e8:58:23:f0:11:f5:1d:bf:00:39:42:69:ac:
2c:d7:4c:ae:ab:a4:9b:a1:5e:37:8f:cf:73:d9:72:
21:29:48:59:a2:58:e2:64:38:53:dc:fb:08:7d:7a:
37:ac:84:4c:26:fc:3b:ea:bc:8d:29:27:df:09:5f:
88:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:9D:D8:D6:97:2C:25:0B:AA:E3:C0:A7:FA:A1:AB:EB:CD:BE:6C:E7
X509v3 Authority Key Identifier:
keyid:95:FD:03:B5:F3:5B:31:7B:4D:32:FF:1A:4B:2C:17:BB:37:6C:21:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lf0DtfNbMXtNMv8aSywXuzdsIeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f9d0e9-bda4-42b2-8e7a-d60f44a934b1/1/lf0DtfNbMXtNMv8aSywXuzdsIeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:f4:be:c0:64:22:ee:4d:6d:ca:4e:bb:7c:df:7e:1b:7f:ae:
d1:69:ed:d7:6b:6e:a5:30:36:64:27:2e:9e:6b:52:99:af:f1:
2c:07:e5:4e:b6:19:0b:cf:32:e7:03:ff:46:02:91:c3:4f:9e:
e3:cc:60:92:39:d6:bd:28:da:35:92:d3:e7:26:08:4e:e3:fb:
da:9f:54:3e:2f:1d:42:a7:4e:d8:25:d8:cb:51:f3:16:e2:da:
81:b6:b1:fa:78:5d:e4:d8:8a:73:47:46:bb:56:76:d5:96:4f:
41:5d:f7:3c:eb:23:30:c1:1a:ec:7e:7d:30:f3:6c:e1:48:6e:
7e:78:8e:50:9a:ee:c7:ce:ee:66:b3:d7:f0:10:8a:42:b1:d6:
58:c5:16:58:13:ab:08:75:8c:64:10:1f:27:c1:c9:38:96:3c:
aa:83:06:87:28:07:59:68:f1:a7:75:6a:6c:c9:62:7e:0c:3a:
cf:2e:ce:19:9e:1f:c0:dc:49:39:41:ce:e3:46:d9:11:7b:e0:
4e:5d:13:b9:89:98:cd:b7:4f:2a:e3:9b:96:ef:68:85:05:95:
26:de:fb:9e:fa:e6:66:5f:f5:6e:ac:0b:3c:c7:50:e5:d4:c3:
f1:96:7f:4d:da:b6:d5:b3:3f:83:8c:1f:c5:ac:18:e3:ea:5b:
f0:0e:cd:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:15:28 2026 by rpki-client