Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
File: lb24W36o8fqvdR52xBR8gbYOmU0.mft (raw, json)
Hash identifier: Zqt41WluQ3HCMkYLVb5/tmtrdgk2fl7MjikTPlHaVsM=
Subject key identifier: 46:E6:B6:26:05:12:53:8A:E4:69:92:79:29:A7:17:3F:79:C7:8A:50
Authority key identifier: 95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
Certificate issuer: /CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Certificate serial: 019CE6365BCDFF0307BB622E868B66CB2FEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
Manifest number: 0218
Signing time: Fri 13 Mar 2026 08:00:48 +0000
Manifest this update: Fri 13 Mar 2026 08:00:48 +0000
Manifest next update: Sat 14 Mar 2026 08:00:48 +0000
Files and hashes: 1: X3R-floHCctncemlohut39fAAWo.roa (hash: HcALHXWtxViwkG5KOnEw6VMEEbxHOixZaFpjLNGdypY=)
2: lb24W36o8fqvdR52xBR8gbYOmU0.crl (hash: EPawDC4Yl1nX8M8rhnH2U6YHah2n8geVFkZ8ZWIPXBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 08:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:36:5b:cd:ff:03:07:bb:62:2e:86:8b:66:cb:2f:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Validity
Not Before: Mar 13 08:00:48 2026 GMT
Not After : Mar 14 08:00:48 2026 GMT
Subject: CN=46e6b6260512538ae469927929a7173f79c78a50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:11:e7:50:8f:dc:e9:4f:08:66:3d:42:fc:8c:
f9:5b:c2:24:7c:1c:00:19:97:63:fc:0f:78:05:0a:
b8:54:1a:0b:c6:e9:e8:20:d0:5c:08:1b:ae:d3:f2:
e0:5d:cc:ee:1a:35:09:85:25:7e:6d:1c:f4:7c:2c:
d3:25:b2:89:4e:e6:a6:01:d1:78:8c:9d:cd:36:d9:
a7:47:85:9d:3b:db:ae:87:c7:6e:06:a6:83:7d:5a:
6f:cc:84:a8:dc:8d:9c:4a:73:77:8a:42:38:a8:12:
99:6b:e9:4c:60:67:14:21:af:b4:5e:46:d3:d8:36:
3a:48:ac:16:10:99:0a:35:98:d9:e8:54:76:a3:45:
84:be:a5:09:d2:d1:82:c1:b3:cb:87:02:dc:3c:85:
ad:f1:04:29:44:b0:61:06:25:10:a2:eb:32:0e:b8:
0b:6d:31:28:45:60:1d:fd:b0:30:52:e6:05:2d:45:
6c:47:52:98:3f:8d:e2:d4:0b:ce:55:25:3f:d6:42:
a9:5b:3e:d9:44:00:f2:62:45:80:07:c1:15:88:70:
5a:3d:fc:05:da:8c:12:df:90:e0:ca:ea:5c:b9:24:
2f:05:26:1e:a7:0f:20:77:30:05:cf:92:c0:5c:d9:
52:d3:2a:f6:a3:86:8a:f9:ca:52:0c:2b:97:6c:5c:
d6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:E6:B6:26:05:12:53:8A:E4:69:92:79:29:A7:17:3F:79:C7:8A:50
X509v3 Authority Key Identifier:
keyid:95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:c2:0a:81:45:f1:d7:fc:d3:d2:ff:5b:c4:e9:00:d6:9f:19:
b1:f3:1e:15:e8:3d:ec:bf:c6:8f:69:e3:2a:b4:47:53:b7:87:
6a:30:22:c1:a4:c2:68:a8:ed:e8:46:d7:c6:3b:e9:4b:e2:4f:
f7:09:b8:9e:b0:84:cd:fb:df:b1:05:46:54:a0:4e:dd:6b:bd:
0b:d7:46:41:8c:8e:91:36:dc:12:4d:0c:34:4f:ba:53:1c:04:
6e:11:8e:9b:91:69:a2:94:23:a6:33:d8:7d:ab:f6:15:0a:01:
01:89:89:cd:5f:a2:49:75:32:ad:f1:65:db:02:a0:bc:7f:ad:
ec:4e:c7:0f:58:f8:50:f9:65:d0:e7:11:37:7a:8a:e6:89:b6:
bd:35:14:ff:6f:15:e1:37:e7:ae:c5:18:5c:e8:a5:b1:a8:93:
74:ad:39:a7:30:5c:9c:60:e0:e5:d7:b1:36:91:b9:d3:02:7d:
82:d0:76:ae:3c:81:e5:65:de:13:75:81:f4:f4:5f:15:32:87:
c4:44:f9:ed:9b:d5:79:d9:15:2c:b5:dd:be:42:8d:39:80:f1:
8f:74:61:e1:92:fe:a2:6c:40:c5:c0:3c:11:90:0e:6a:e5:b6:
6c:9d:60:70:ae:e4:49:a4:20:78:73:5e:a4:14:a5:90:82:e4:
1f:18:03:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 11:58:32 2026 by rpki-client