Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
File: Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft (raw, json)
Hash identifier: wCLx+qOXQN5yXQKFf226dugu1uqG6TBvbIA6x5g0Vz0=
Subject key identifier: ED:68:B6:07:84:92:D7:AA:D5:87:7C:E8:E9:F6:D2:77:6A:68:C1:D4
Authority key identifier: 2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E
Certificate issuer: /CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e
Certificate serial: 019CE66D68995E4C4059099375CBDB66D414
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
Manifest number: 1868
Signing time: Fri 13 Mar 2026 09:00:55 +0000
Manifest this update: Fri 13 Mar 2026 09:00:55 +0000
Manifest next update: Sat 14 Mar 2026 09:00:55 +0000
Files and hashes: 1: Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl (hash: B0VIO4TggNPf6mTNkBBcaD//meYxBXMlSkT2Rtw7d9I=)
2: SdYBPf9hyZeCBZ0CXzRVluMGnGU.roa (hash: hgdsfyjTVsGnv4VajpzC0ZJUGOBghoLM7l+xd5EQZGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:6d:68:99:5e:4c:40:59:09:93:75:cb:db:66:d4:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e
Validity
Not Before: Mar 13 09:00:55 2026 GMT
Not After : Mar 14 09:00:55 2026 GMT
Subject: CN=ed68b6078492d7aad5877ce8e9f6d2776a68c1d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:22:09:6e:e5:d7:db:55:3e:13:10:9d:38:73:
77:f2:61:96:de:1d:e4:ea:c3:b4:dd:3c:f3:2c:25:
c7:85:48:c1:0c:aa:14:36:00:ee:89:ab:5a:9c:00:
0f:5d:62:e5:e1:9f:ff:b2:00:f5:a5:ee:53:f7:d7:
45:85:70:02:c0:a5:f5:8a:10:d1:1d:8a:a1:e9:cc:
e4:7c:be:14:25:ad:26:b8:ed:6d:95:6e:35:3a:45:
33:57:16:0a:9e:b0:fa:b9:db:fb:b8:cb:36:d4:03:
0f:09:b8:47:2e:82:bb:6d:3e:af:bc:d5:14:e4:8d:
15:b5:d2:00:56:13:9b:a1:77:db:db:d5:1f:25:01:
08:b8:5c:6f:7d:63:37:d4:a0:67:f8:6f:1d:8d:37:
92:4c:b4:7f:6e:67:c8:f9:42:6d:1f:97:35:33:32:
c8:31:36:05:7e:93:89:98:2c:82:22:1e:5d:4c:1c:
a3:01:e4:9d:dc:7d:b9:ab:32:ab:75:34:89:fb:b4:
9b:1f:75:30:2c:82:04:a9:f8:50:f5:56:a7:b6:75:
c7:a7:35:9d:f3:55:47:da:83:4b:1d:fc:a6:b0:42:
e0:96:57:91:e5:98:67:00:4f:cc:63:67:79:53:0f:
fb:1b:89:b3:4b:54:1f:72:6a:8d:9f:f3:98:4d:fa:
1b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:68:B6:07:84:92:D7:AA:D5:87:7C:E8:E9:F6:D2:77:6A:68:C1:D4
X509v3 Authority Key Identifier:
keyid:2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dc:58:4e:57:d3:d1:57:60:e8:7f:10:e7:cc:e2:c7:63:db:62:
ee:86:ea:b5:30:ee:32:eb:54:b5:b3:95:c4:72:06:af:17:e5:
7d:d7:75:0b:09:1c:97:cd:b3:e4:93:c6:60:61:6b:cb:c1:67:
d8:5c:4d:d3:d8:5b:33:98:3e:c8:2e:19:ae:9e:14:9f:bd:3a:
bc:c0:ed:73:89:c6:6f:61:a6:f4:8f:aa:6c:a1:e1:bc:6d:6d:
04:f4:c4:f9:6c:67:7e:bc:0f:c5:0a:b6:48:26:5d:03:cd:8b:
e4:18:13:3a:bc:45:83:b5:d2:f6:7e:48:fd:ac:5e:7b:66:93:
88:d1:68:ba:f1:9f:13:e5:7a:7a:09:c9:3f:5c:ad:09:75:0c:
9e:8c:fb:16:ac:ea:f4:be:ab:1c:19:1f:ca:8d:c0:cf:6a:55:
cb:f6:36:1f:06:2f:b9:18:40:ed:08:78:ed:8e:25:cc:32:80:
cb:ba:73:48:ae:e9:0a:ad:99:cc:bd:7c:d9:c2:d4:83:db:0c:
86:17:c1:b0:e7:c4:e8:47:93:e0:ea:96:ba:de:ae:af:df:2d:
06:ac:6e:d0:81:d0:50:dd:68:61:6d:a5:4f:46:e3:70:21:fb:
32:4a:fa:e7:d9:53:c5:cd:3a:0f:04:52:02:83:5c:39:89:cc:
68:77:64:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 12:29:35 2026 by rpki-client