Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
File: lb24W36o8fqvdR52xBR8gbYOmU0.mft (raw, json)
Hash identifier: Ap42Hglaznds0v9tob8KcdQ6+611u8nabe4+wCGaYtc=
Subject key identifier: 22:3C:59:1D:3E:A2:F1:16:61:97:1C:61:A2:98:7B:F6:F0:E6:A1:03
Authority key identifier: 95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
Certificate issuer: /CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Certificate serial: 019DCFE2EBD0DD2E1499CB9ED928E43607D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
Manifest number: 0291
Signing time: Mon 27 Apr 2026 17:00:48 +0000
Manifest this update: Mon 27 Apr 2026 17:00:48 +0000
Manifest next update: Tue 28 Apr 2026 17:00:48 +0000
Files and hashes: 1: X3R-floHCctncemlohut39fAAWo.roa (hash: HcALHXWtxViwkG5KOnEw6VMEEbxHOixZaFpjLNGdypY=)
2: lb24W36o8fqvdR52xBR8gbYOmU0.crl (hash: bnnxY+HPswBTXaJhvGNwC/uIkTqcPTuEZfhZb1fE1qg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:e2:eb:d0:dd:2e:14:99:cb:9e:d9:28:e4:36:07:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Validity
Not Before: Apr 27 17:00:48 2026 GMT
Not After : Apr 28 17:00:48 2026 GMT
Subject: CN=223c591d3ea2f11661971c61a2987bf6f0e6a103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e4:e7:3d:a4:45:93:bc:9f:8d:3c:66:7d:34:
7a:87:76:6a:85:6f:c4:2a:70:41:c4:d0:09:c3:6c:
e9:7c:44:d4:79:3a:df:c7:68:e1:db:88:9b:1e:a0:
4f:21:35:a5:fc:b4:d7:24:24:cb:c6:ad:a6:62:44:
c0:8a:c6:a2:c7:55:44:da:e5:ed:1c:da:90:ec:e0:
12:4f:f0:ff:cb:fd:4f:bf:ea:45:8f:5f:48:01:07:
ed:3f:aa:ab:f8:fd:99:f5:f0:9f:ac:a7:ba:21:d1:
5a:37:09:78:bc:14:fc:2c:90:60:48:c4:b7:2b:c3:
1a:86:39:bd:68:f9:d5:0b:84:fb:b0:bd:3d:be:b4:
33:29:cd:4b:bc:8c:83:7e:4b:f9:49:16:7a:ca:1d:
c7:39:61:82:31:a1:ac:b8:2c:88:78:dc:be:2c:9a:
93:05:41:14:6f:fe:9c:76:4e:83:5d:28:51:dc:61:
37:0c:d7:50:e2:0b:46:6c:9f:32:2a:e9:58:32:f5:
62:f8:c9:ba:5b:8f:b6:f6:d2:92:e9:df:8c:cb:43:
31:88:cc:95:f4:f4:95:30:15:d0:d5:d4:17:68:5e:
4a:17:9a:46:1b:a0:69:f5:2b:93:8c:8a:6c:cd:f7:
1a:6c:b8:1e:52:b2:54:da:f5:32:49:1e:93:d4:f7:
ef:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:3C:59:1D:3E:A2:F1:16:61:97:1C:61:A2:98:7B:F6:F0:E6:A1:03
X509v3 Authority Key Identifier:
keyid:95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
db:80:c9:2e:13:b8:0b:60:10:a1:78:d3:6f:9e:d5:f0:8a:f1:
ab:20:53:0d:86:83:aa:07:3d:68:79:4c:cb:bb:4a:5c:37:f6:
0f:6f:59:78:fe:50:32:8a:0b:97:40:4a:f3:2e:33:41:0b:94:
83:4a:7f:a2:ed:0e:99:00:e8:24:67:ef:7a:e2:ea:85:23:47:
4c:76:4a:f5:d0:1a:65:96:c4:7a:60:f6:88:41:ff:7e:b9:bf:
8e:bc:c0:65:b2:a9:cc:11:f0:8b:30:43:32:ef:ae:9f:79:87:
3c:65:86:fb:07:cc:c5:a0:e5:2d:a8:4a:33:de:de:37:94:8f:
f6:35:9c:20:44:eb:87:f2:29:e6:30:c8:87:48:73:22:a5:29:
1f:4d:20:c4:60:cb:a7:5a:18:fe:5f:1e:ce:ed:7a:2b:87:29:
d9:da:79:e6:f4:8b:79:76:8b:73:d8:15:f5:cc:4f:73:8f:6d:
01:87:8f:bc:92:ca:8d:67:ff:0b:a8:69:80:ba:81:02:db:03:
b1:43:d9:f4:5e:8a:c9:bd:09:f4:70:8c:10:34:52:c9:e5:92:
b7:bb:2c:b7:83:a7:8c:95:fe:b1:a2:16:70:56:74:06:74:2e:
ce:f5:80:f3:bf:cb:b1:e1:16:89:61:50:af:67:c4:42:ea:05:
12:53:82:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:14:31 2026 by rpki-client