Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
File: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft (raw, json)
Hash identifier: ZNUBBgZ+lCaG8znLQ8GD/Ay82w50T1TU/VD1WHPI+lQ=
Subject key identifier: 2F:13:E1:C3:40:F0:7E:67:E5:10:CC:56:0F:D0:8C:6C:1F:93:26:B9
Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Certificate serial: 019CE55A17E5BD08096E69EFA51533E0AAA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
Manifest number: 094E
Signing time: Fri 13 Mar 2026 04:00:12 +0000
Manifest this update: Fri 13 Mar 2026 04:00:12 +0000
Manifest next update: Sat 14 Mar 2026 04:00:12 +0000
Files and hashes: 1: 2-4ZrGQpT0KhwdAqEtwr7VvBLF4.roa (hash: ZZxmDsOTlkFKhz+gwa9Ymw4vgOjq/wRy+P8gUBbGFBY=)
2: CNW3k6cV5qMFfGeO7DCzp4az4dk.roa (hash: eEtgT8pDcDhVSbny7WGDB2FnSEmCUTl8gLtOm3YCkbI=)
3: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl (hash: qv4DOgupQtfc4pGkLZMMbpvaW3xMnymhq5DdjobiyY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:5a:17:e5:bd:08:09:6e:69:ef:a5:15:33:e0:aa:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Validity
Not Before: Mar 13 04:00:12 2026 GMT
Not After : Mar 14 04:00:12 2026 GMT
Subject: CN=2f13e1c340f07e67e510cc560fd08c6c1f9326b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c6:7a:eb:1e:92:53:6c:c5:7a:ce:60:e8:81:
fe:d3:f5:9e:c4:1d:34:93:78:d6:a4:4d:39:1c:f9:
be:95:21:66:5b:5f:3c:df:50:6b:1e:c7:e9:7c:76:
58:c6:b2:b3:6e:5a:dd:0d:85:ed:7c:d3:03:a9:ec:
fe:26:f6:e5:93:a1:09:ac:21:39:b9:24:87:0c:e7:
1d:c2:36:09:63:92:4b:6a:e2:d5:a0:af:01:ae:ec:
0a:a6:9c:e7:2d:91:42:2a:42:a5:cf:49:31:be:b4:
b1:35:c5:8a:2d:a1:7b:d6:3e:a1:0c:fb:8e:d9:54:
a0:66:b8:49:d5:bd:de:93:51:36:e5:2b:79:3f:51:
d8:bd:19:27:77:39:02:c7:6c:23:db:f9:8d:4b:2d:
2c:57:13:9b:c4:67:fe:2f:02:e0:04:36:22:44:bb:
7c:e9:8e:15:5c:83:18:21:91:8f:05:45:c4:e1:7d:
95:f0:6d:ec:f6:d4:8d:7a:4a:e5:42:fb:98:db:bd:
6d:c7:a5:38:59:e2:81:89:c5:c8:f0:fe:26:ed:51:
a9:58:4a:87:d8:a1:ed:c9:32:11:f2:9d:0b:f4:63:
e7:42:bd:0f:83:f1:21:7b:b6:e1:ae:d8:4c:57:9d:
f2:ca:f2:72:c9:da:39:7e:b3:df:5d:41:ee:be:86:
d1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:13:E1:C3:40:F0:7E:67:E5:10:CC:56:0F:D0:8C:6C:1F:93:26:B9
X509v3 Authority Key Identifier:
keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:a9:2f:9f:22:3c:a5:f0:a5:d7:57:01:fe:fc:7c:31:91:83:
1a:c8:75:84:cc:2a:79:60:e9:e4:df:79:82:b0:02:d8:99:e8:
09:81:63:f0:21:e3:d6:70:2b:50:7f:79:de:82:58:29:f3:00:
24:93:17:30:f4:e4:3e:a4:b0:2a:d5:a5:6d:64:7b:f7:3d:1e:
1a:5e:3c:01:23:da:5c:62:d8:15:ee:02:1c:c1:48:37:21:b7:
4a:a1:22:e2:db:0e:69:4c:37:94:a5:80:cd:11:4f:b0:7a:39:
6e:c9:1b:a1:6e:7a:4f:c5:20:66:d2:38:30:9e:38:db:23:98:
49:ca:bd:d2:20:18:ef:95:7a:ce:ad:f1:77:06:60:94:2d:b9:
d3:e5:dd:32:ce:05:ba:bf:7b:a3:a0:e9:d1:30:f8:3e:bb:96:
32:5d:03:fc:4f:97:6b:55:32:86:86:89:91:7d:54:05:8a:28:
7e:67:43:13:e0:f4:62:9f:e1:64:7b:74:20:56:96:90:f9:77:
58:b9:52:4c:8b:fd:33:dd:13:15:f7:6e:57:04:5d:b9:af:d7:
54:c2:92:4a:af:28:d8:43:b5:b2:8f:89:5d:0a:c7:83:88:1b:
16:86:ab:8c:e5:bb:5a:88:31:c4:25:80:d5:79:2f:23:8a:6f:
62:98:d8:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 07:24:40 2026 by rpki-client