Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
File: Lg1AUXqHO33CrrKNDtai-ZOj100.mft (raw, json)
Hash identifier: 79EzFi1d8FW6E3HSCtxdUs7wlqI0A+rS/qd7Mmd8ppk=
Subject key identifier: C2:E4:6C:3F:4E:BF:A8:B3:BF:98:88:FA:C6:88:ED:28:1C:F8:61:19
Authority key identifier: 2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D
Certificate issuer: /CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d
Certificate serial: 019D3909976540B63E0D9DFCABF4D61F1B33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
Manifest number: 1576
Signing time: Sun 29 Mar 2026 10:00:22 +0000
Manifest this update: Sun 29 Mar 2026 10:00:22 +0000
Manifest next update: Mon 30 Mar 2026 10:00:22 +0000
Files and hashes: 1: Lg1AUXqHO33CrrKNDtai-ZOj100.crl (hash: 9E8d6lPVqpj0R4fZva/W0cAoI7OOg+bNqVRw0MjJT30=)
2: mgEpeI12MEc1I9Yl4CGTBmBk2bE.roa (hash: +I2yVa8SpbahJZG3cLdGFLaq+xiLLvaqsYXX2ZnSZ5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:97:65:40:b6:3e:0d:9d:fc:ab:f4:d6:1f:1b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d
Validity
Not Before: Mar 29 10:00:22 2026 GMT
Not After : Mar 30 10:00:22 2026 GMT
Subject: CN=c2e46c3f4ebfa8b3bf9888fac688ed281cf86119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2d:1f:ba:37:74:a0:c0:47:64:1a:1b:d5:db:
60:69:bb:3b:40:a2:b5:07:43:7f:d6:87:9e:a2:5d:
69:23:13:30:1a:90:c6:c4:3c:38:76:65:93:dc:43:
62:68:27:dc:b9:28:8a:17:ef:5f:64:5b:c1:66:46:
87:38:ce:ea:4a:1c:41:9f:d8:b7:88:c4:cd:59:ad:
08:3c:5b:2f:60:f2:7b:7f:f4:9a:4a:da:06:ef:8d:
89:e8:60:48:d4:98:4b:44:37:8c:be:2b:b2:0b:3c:
b5:cb:01:9a:6a:1d:19:54:19:62:32:e6:5c:d6:7c:
cd:15:3e:56:85:96:3a:6a:a2:79:fb:bf:2c:e1:e1:
02:bb:8c:17:56:78:16:37:46:33:0e:9c:aa:8e:98:
80:d5:4e:3c:d0:8f:f2:78:5b:2d:4e:50:4f:18:94:
ff:ae:50:1f:03:88:d1:ba:90:98:2b:bf:5e:f6:03:
97:c9:c0:51:3d:ef:b0:3a:b6:5f:4d:5d:70:69:03:
15:1e:f1:f4:98:c3:20:9c:59:54:e2:7d:09:3d:bf:
2e:2b:24:07:b5:5a:70:51:4f:7e:b2:af:f2:04:3b:
3e:0f:ef:b3:f1:5e:d3:6e:40:86:7c:e6:54:08:06:
ef:6b:4e:6f:ab:48:51:86:e4:6d:3a:a2:fb:e5:20:
6a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:E4:6C:3F:4E:BF:A8:B3:BF:98:88:FA:C6:88:ED:28:1C:F8:61:19
X509v3 Authority Key Identifier:
keyid:2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:ba:30:32:bc:0a:b5:8b:99:96:8d:8c:28:75:c1:9b:02:18:
a7:a5:29:aa:42:97:c8:a4:3d:22:06:9a:62:79:f6:bb:20:20:
30:42:33:46:8f:a2:55:75:af:e7:a2:e4:c7:3e:7a:76:ed:81:
bd:3b:4d:f0:5e:be:26:1e:77:2e:b8:b8:66:31:20:32:3c:57:
27:03:c6:41:32:da:98:60:01:4f:cd:2f:bb:be:46:ce:62:37:
cc:3a:52:8b:ca:82:9a:3f:3d:fd:d3:51:37:99:47:eb:70:07:
0b:ca:9b:97:49:3f:39:5c:a6:13:e4:88:1f:f4:0f:41:bc:e0:
33:52:e1:83:cd:e6:fc:34:b1:05:35:94:48:c9:d2:1a:b8:98:
47:ca:41:e8:0c:b3:dd:4d:76:61:d5:b4:2f:7a:30:f3:d5:4e:
38:25:d4:4b:e4:a8:2e:0d:ba:75:38:5c:0d:54:01:f1:9b:c4:
83:41:c9:2d:39:86:c3:fe:7d:53:cc:e8:a8:a3:59:c8:5b:8c:
7e:57:b3:71:d0:e6:28:c7:60:cd:cd:92:e8:7d:e5:c9:50:c8:
09:14:c7:d8:7a:af:df:d4:09:9b:07:f8:cb:bd:c5:39:d5:bc:
65:1b:fb:e0:0a:fb:e9:5b:43:c4:2d:1f:07:68:80:26:0b:d9:
68:33:a7:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:55:27 2026 by rpki-client