Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
File: 0LkE317sIhazQwFsXLJLuQpD06Q.mft (raw, json)
Hash identifier: X82VLa9eIsOtOXv7EeX6umPywzl8288wVhk2EGFW7HE=
Subject key identifier: B5:5A:94:20:3E:8A:32:2F:AE:E5:5C:EE:7B:24:22:41:60:4D:20:4D
Authority key identifier: D0:B9:04:DF:5E:EC:22:16:B3:43:01:6C:5C:B2:4B:B9:0A:43:D3:A4
Certificate issuer: /CN=d0b904df5eec2216b343016c5cb24bb90a43d3a4
Certificate serial: 019D389BBD0034F68CA7D8F4C17E19E4B10E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LkE317sIhazQwFsXLJLuQpD06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 08:00:23 +0000
Manifest this update: Sun 29 Mar 2026 08:00:23 +0000
Manifest next update: Mon 30 Mar 2026 08:00:23 +0000
Files and hashes: 1: 0LkE317sIhazQwFsXLJLuQpD06Q.crl (hash: eNvL7Fro3gQz3BnOtc4hrBYJO9JHogn1ltK9V7PeSz0=)
2: nqFedlELDT6btqVr2PyQaNO_Pfw.roa (hash: 8tqaPkj8LtydCchM9fMrH7we2nm/JziMXiNEi0lLF+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/0LkE317sIhazQwFsXLJLuQpD06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:bd:00:34:f6:8c:a7:d8:f4:c1:7e:19:e4:b1:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b904df5eec2216b343016c5cb24bb90a43d3a4
Validity
Not Before: Mar 29 08:00:23 2026 GMT
Not After : Mar 30 08:00:23 2026 GMT
Subject: CN=b55a94203e8a322faee55cee7b242241604d204d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:62:1f:1e:a3:d0:9e:23:b9:c1:dd:74:3e:87:
78:8c:be:68:b6:01:74:87:bf:9d:8e:ef:7e:f2:0a:
fb:0c:b2:91:9a:7a:a1:d8:bc:e5:1b:c2:d8:6a:0c:
2d:96:19:09:94:b8:b2:e5:df:a5:df:8d:f7:4e:1a:
44:c9:52:6b:a3:eb:19:8b:06:49:60:de:91:13:39:
ae:d2:c0:b4:a9:75:21:7f:bf:3f:69:17:eb:9f:6d:
d4:0a:14:5b:20:c4:53:25:72:b0:cb:ac:45:61:0a:
90:ab:f5:33:61:f7:36:09:a2:34:e0:0f:84:66:b3:
a2:7f:5a:9d:fa:32:1b:83:f5:19:ac:b3:09:d9:e2:
8d:00:80:6b:4a:fb:6d:6e:5d:f8:47:4f:37:71:5a:
45:c8:f7:b8:96:1c:ec:ae:9c:ad:bc:7d:36:b0:2f:
3b:64:08:32:8b:c0:d4:46:32:14:df:60:7c:ad:46:
de:6a:95:ea:9a:ea:39:31:8a:31:95:c4:73:e7:6b:
df:de:09:10:61:74:ef:d4:32:28:f9:81:c1:cb:97:
c6:78:93:82:5b:24:4b:58:4f:c2:a4:6a:8d:68:a1:
ad:1c:2b:ab:f9:23:ad:ca:b9:e8:67:31:b8:9d:d3:
02:09:9f:90:c2:1c:56:48:05:f9:c7:30:e0:6d:4a:
b5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5A:94:20:3E:8A:32:2F:AE:E5:5C:EE:7B:24:22:41:60:4D:20:4D
X509v3 Authority Key Identifier:
keyid:D0:B9:04:DF:5E:EC:22:16:B3:43:01:6C:5C:B2:4B:B9:0A:43:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LkE317sIhazQwFsXLJLuQpD06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6a7c93-87b4-4a4c-a21e-41a84f419ac5/1/0LkE317sIhazQwFsXLJLuQpD06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:8e:aa:11:cd:28:17:5f:3a:0b:49:62:0f:c8:5b:38:74:d2:
2a:7f:d6:f2:36:82:04:04:d0:33:30:bf:69:ce:c1:0a:de:25:
52:06:73:8f:d5:99:f7:1b:be:04:33:95:26:57:86:b9:11:cd:
fb:b4:94:c5:0f:0b:01:00:f1:1b:16:92:22:88:fd:c7:03:f6:
84:89:74:30:4d:2f:c7:89:76:64:fb:97:1e:8e:7e:cc:54:8d:
70:7e:af:30:33:f7:75:80:96:38:7d:7d:59:f0:6e:8a:36:b7:
4b:22:05:cb:56:1f:bb:67:98:66:ed:1c:88:97:6a:3c:f5:b8:
53:72:73:8b:dd:9f:3c:59:e3:b3:3e:f7:8b:0e:a2:ad:b9:f6:
5b:a4:f4:f3:3a:77:c1:5c:54:97:81:47:43:94:5b:e4:90:65:
b7:c4:14:7c:1c:38:01:31:1b:3f:b6:ee:26:21:a5:b5:8c:bb:
8c:4c:13:24:2a:39:fc:72:89:92:64:33:a7:41:78:b0:4e:f2:
2e:4f:06:19:80:d3:58:74:95:e6:ef:59:e4:13:f9:f0:11:39:
48:22:3e:63:28:ee:9e:38:d0:ae:c9:b2:f5:32:de:3a:34:a1:
d7:af:55:6d:fe:e4:25:04:1a:96:11:b1:d5:66:52:a8:83:9b:
cc:6b:23:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:36:19 2026 by rpki-client