Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: SyIVc3Hc0w+gMUssOfcaJ0Xk05HumYyVI86udKnH9ds=
Subject key identifier: 85:D9:8D:94:95:84:78:A7:39:4D:F1:E9:F2:18:7A:12:DF:5D:33:BC
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 019D37C0AF6A5FEE2ED67D4DE5AF4752DE1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 162D
Signing time: Sun 29 Mar 2026 04:01:07 +0000
Manifest this update: Sun 29 Mar 2026 04:01:07 +0000
Manifest next update: Mon 30 Mar 2026 04:01:07 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: 6Fvs6aI5INLkOGwz1aWCuj8BJNtCWTq5tTERfOyKVtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:af:6a:5f:ee:2e:d6:7d:4d:e5:af:47:52:de:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Mar 29 04:01:07 2026 GMT
Not After : Mar 30 04:01:07 2026 GMT
Subject: CN=85d98d94958478a7394df1e9f2187a12df5d33bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7f:75:3c:39:f8:d3:0d:f4:c4:1c:b5:2b:d1:
9d:4c:93:50:5f:3c:c2:83:9a:82:12:7b:8b:82:f7:
aa:f4:61:6e:90:11:c7:00:ca:90:66:f8:2b:a0:c4:
3d:08:5f:6f:2e:9c:6c:b1:7c:81:65:29:fe:d3:36:
bb:59:fc:36:cd:5f:39:32:a5:64:dc:52:01:e0:9a:
36:15:e5:b2:23:e0:30:c8:ca:05:67:03:77:6e:e2:
c8:25:9d:c3:24:0d:fc:96:b5:66:87:ca:3e:de:e9:
41:dd:07:5e:a1:dc:73:37:7e:34:50:3a:d4:b4:f4:
b1:51:56:3c:eb:43:cf:85:10:b3:08:c1:46:83:a5:
35:8f:7c:12:b6:89:be:3b:9d:62:4a:86:32:02:db:
32:2e:2b:07:71:20:8c:9d:d2:db:f8:74:4b:e1:23:
f7:84:c3:4c:5e:41:5a:6e:7f:d5:a9:2d:09:d8:70:
8a:18:ad:0b:ef:7e:97:ff:54:95:eb:3f:d6:11:05:
1a:2d:06:7a:42:68:8f:52:e9:56:84:4f:56:71:ce:
ce:b6:de:7b:36:9f:0c:1b:f5:f9:f1:14:7d:bd:2e:
03:15:b6:a1:df:b1:94:5c:8b:fb:bd:da:b6:6b:75:
b6:76:ed:86:44:c3:98:fa:19:cc:77:f4:14:04:cf:
30:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D9:8D:94:95:84:78:A7:39:4D:F1:E9:F2:18:7A:12:DF:5D:33:BC
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:6c:30:aa:df:ff:9e:e0:1f:63:07:62:f1:79:17:9b:46:ab:
74:80:85:b6:8d:55:10:6b:49:e5:d8:bd:63:85:34:29:df:2f:
09:46:ef:65:6b:bf:fe:1b:ce:bc:02:e1:8e:5c:24:42:3f:47:
83:fd:f1:c4:b2:6e:7e:31:4c:f5:a2:49:0c:19:96:be:15:63:
5e:16:5e:db:31:8a:9c:8e:4d:7d:49:22:7d:74:b6:f0:03:4a:
1d:5f:8a:d4:2c:77:38:a6:0c:bc:75:2e:be:9b:db:76:e6:69:
ba:61:c1:b4:7a:26:3c:fb:6b:e6:02:c3:c7:ff:f0:f2:30:8e:
d9:d9:7e:0e:83:45:b4:77:f3:c8:5d:31:60:a2:0d:f7:ad:b4:
1a:ac:c5:23:91:df:50:0f:eb:16:8b:c2:fd:14:e7:09:2e:43:
53:16:2e:ee:b8:7a:12:0c:8a:be:c9:41:b8:06:94:42:56:a9:
ec:fc:24:10:28:13:69:fd:50:f6:08:df:99:b1:a7:49:9d:40:
de:ee:cd:59:10:ca:78:14:43:e6:71:1d:35:47:5c:f7:e9:49:
5c:36:56:08:ad:4b:5a:9e:76:d5:30:32:0c:c5:7b:98:9c:d2:
6a:6b:47:58:51:5b:dd:a0:06:61:bd:34:48:f1:0f:d5:e9:5c:
36:fc:98:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:39:51 2026 by rpki-client