Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
File: lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft (raw, json)
Hash identifier: fkPkzToiO1Hd+HxFZ7ih+n6vGvniy9c+c9z4w+4kkxc=
Subject key identifier: 2B:AE:3C:CA:49:D7:91:3D:17:AC:63:6B:FD:49:6D:B1:87:0F:01:05
Authority key identifier: 94:28:2A:60:78:BA:98:FB:4A:6E:34:3E:76:03:A9:60:E7:A6:34:42
Certificate issuer: /CN=94282a6078ba98fb4a6e343e7603a960e7a63442
Certificate serial: 019D38D3C9D4E864F2F0D0128E1AC29E42B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
Manifest number: 184A
Signing time: Sun 29 Mar 2026 09:01:36 +0000
Manifest this update: Sun 29 Mar 2026 09:01:36 +0000
Manifest next update: Mon 30 Mar 2026 09:01:36 +0000
Files and hashes: 1: konyG3wRd-9i2JxpDmlDMCcy52k.roa (hash: 86FDIPp0O4UJXQA6vPE/wehrfqe3i/KwXCUD7kRjVEo=)
2: lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl (hash: 7+bXzgq+RMISkzpxt19e6F+vlTA4rwE+FWtj7mEzjyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:c9:d4:e8:64:f2:f0:d0:12:8e:1a:c2:9e:42:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94282a6078ba98fb4a6e343e7603a960e7a63442
Validity
Not Before: Mar 29 09:01:36 2026 GMT
Not After : Mar 30 09:01:36 2026 GMT
Subject: CN=2bae3cca49d7913d17ac636bfd496db1870f0105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:52:07:b3:e8:99:7e:ec:9e:6a:ce:de:00:7f:
79:31:40:77:9a:67:c7:f0:9e:fc:33:0e:4a:fb:a1:
be:16:a2:d3:ab:70:ad:1f:f8:3c:63:e9:e2:18:20:
49:e0:82:86:5b:bd:35:5d:23:45:ae:2e:8c:8d:e8:
23:8a:35:71:75:2a:d1:e6:ed:b7:ef:8c:e1:ff:ba:
4e:aa:82:02:43:75:5c:35:a6:11:97:d3:a8:89:e6:
30:3a:4c:ca:af:f1:37:00:f6:cc:e5:ae:5e:1a:80:
87:ea:cc:73:f4:64:0b:e4:71:c4:9e:aa:60:16:9e:
11:5d:81:c5:6e:62:c4:a0:62:02:85:f7:d6:f7:3d:
9c:8b:05:9f:41:b7:47:eb:7c:f2:d8:23:80:7a:4b:
25:70:b0:b2:8c:e7:94:a9:fb:8e:e7:cb:6a:72:8e:
2c:d0:72:81:ca:1c:3e:d2:f2:ff:f4:16:7b:04:90:
f7:38:7e:d6:5c:76:59:18:0a:0b:52:6a:5f:d1:b1:
2a:fa:0e:14:cf:d7:7d:01:ab:5f:f4:c2:6a:84:44:
01:7c:13:07:f0:c6:b9:6c:8c:fa:00:a6:6a:fd:68:
20:f8:f1:ef:60:5a:c1:91:d9:18:bd:7a:13:dc:d4:
2a:1c:d1:1a:cd:62:97:2e:0b:cf:ca:7a:f9:ba:0c:
c6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:AE:3C:CA:49:D7:91:3D:17:AC:63:6B:FD:49:6D:B1:87:0F:01:05
X509v3 Authority Key Identifier:
keyid:94:28:2A:60:78:BA:98:FB:4A:6E:34:3E:76:03:A9:60:E7:A6:34:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:05:c1:a9:9a:bc:1d:f8:71:a1:54:b0:5f:5f:76:1b:75:b9:
51:df:0e:d5:77:61:d1:b7:5e:03:ad:b3:c0:f4:c4:d0:58:fa:
bd:16:41:dc:ee:4b:f9:1f:68:f4:9e:e8:93:c7:73:23:d5:2a:
43:84:ec:11:e0:33:bb:b6:61:76:a0:0a:54:b5:35:66:27:70:
c3:22:be:b7:37:93:92:94:3d:61:fb:36:24:b3:4d:32:a7:62:
84:9c:5a:db:b5:51:8b:c7:0f:6d:db:94:d7:ce:9e:64:3a:1d:
15:92:ce:ec:26:fa:5f:86:e5:76:a9:5e:9c:96:ec:5e:61:cb:
29:97:2a:c6:29:10:9d:54:c0:9a:41:2e:54:4b:e8:cf:68:d0:
4f:29:d6:5e:12:8c:c6:dd:bc:87:24:69:4f:fe:87:c8:e9:65:
77:b5:e1:d4:a4:b0:00:56:df:4b:9d:21:c1:4c:d5:ce:0b:b2:
0e:0e:c8:f3:c2:82:1c:f0:c7:c1:40:1e:ba:8a:88:46:dd:76:
a1:87:a9:12:ba:b5:f3:70:7e:34:cc:25:bc:3e:b2:44:11:eb:
69:72:10:7b:a3:f9:bb:4f:43:8f:b7:51:a5:34:0f:c4:b2:6e:
80:1a:d3:60:77:2e:f7:c4:ee:31:60:b0:91:66:31:0a:5b:21:
50:28:7a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:15 2026 by rpki-client