Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
File: lsgslDmkFHsuorWXz_xRALqNMnw.mft (raw, json)
Hash identifier: 7oocfWHTJcO/Pi5e3dQ4RrwPD9bQ36FQ7GXVSqoUMAg=
Subject key identifier: FF:08:CB:68:AA:FC:F8:F2:BC:62:06:C5:55:36:CE:8B:01:B1:53:CE
Authority key identifier: 96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C
Certificate issuer: /CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
Certificate serial: 019D38669DE69370D74AA5930DAB48F70761
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
Manifest number: 144F
Signing time: Sun 29 Mar 2026 07:02:22 +0000
Manifest this update: Sun 29 Mar 2026 07:02:22 +0000
Manifest next update: Mon 30 Mar 2026 07:02:22 +0000
Files and hashes: 1: lsgslDmkFHsuorWXz_xRALqNMnw.crl (hash: W+Ys37X5MHX3fChASUEh8s/hrC0AAVeoBR6C72yvz2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:9d:e6:93:70:d7:4a:a5:93:0d:ab:48:f7:07:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
Validity
Not Before: Mar 29 07:02:22 2026 GMT
Not After : Mar 30 07:02:22 2026 GMT
Subject: CN=ff08cb68aafcf8f2bc6206c55536ce8b01b153ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:61:78:5c:d4:14:25:f1:c6:31:64:eb:51:66:
f4:5a:0f:0e:ad:7b:87:59:56:de:14:c8:00:9b:bc:
a0:8f:d8:a7:f1:f0:1f:c4:49:61:17:28:d8:b5:da:
e5:48:74:f6:0e:0e:a7:99:b3:19:28:c9:82:8e:c7:
05:93:2c:c4:9c:b2:d2:8d:0a:ea:5c:e4:67:ab:b5:
6b:c0:07:08:17:39:d0:16:df:c1:86:5a:93:35:5e:
20:98:d1:46:cc:2a:e1:2f:6a:a2:a9:d8:c7:6a:a8:
45:b3:2c:32:d3:42:fd:ad:27:b7:02:8b:aa:6c:bc:
74:59:04:ab:3d:82:b5:b7:4a:e9:14:ac:9d:01:60:
11:2e:b0:9e:9c:09:c8:9c:9a:b4:74:47:fb:8c:b3:
90:df:61:d1:01:6a:cf:cc:d3:cc:ab:e4:82:44:57:
6d:c7:da:b3:d3:61:77:ee:ca:b5:04:56:b2:b7:93:
af:b8:29:76:0f:57:3f:50:64:40:fe:97:9c:95:5e:
74:35:5e:2a:5d:f1:52:62:54:00:0b:2e:c3:d5:52:
76:fb:4f:2a:f3:ea:08:e4:ab:97:18:30:58:92:b3:
c8:ee:62:1d:46:72:fa:75:b5:bf:92:14:19:63:98:
c4:42:3c:f7:00:80:a8:de:45:b0:70:0a:23:69:0c:
66:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:08:CB:68:AA:FC:F8:F2:BC:62:06:C5:55:36:CE:8B:01:B1:53:CE
X509v3 Authority Key Identifier:
keyid:96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:0a:11:00:8f:4d:4e:65:a8:06:cd:12:c0:53:8e:cf:88:2b:
44:91:88:d0:3b:ff:f7:ab:ba:64:8d:a8:7d:b8:d1:0c:75:fc:
3b:df:d2:0b:15:57:7c:df:1c:0a:24:d1:f0:be:93:d3:20:da:
32:f4:49:eb:5e:00:28:4f:c7:42:dd:45:b7:f8:c5:0b:88:57:
20:fa:b0:63:e3:fa:65:63:91:ef:92:a9:b9:46:d4:bc:12:f8:
af:40:02:a5:db:27:48:fd:ba:06:ea:3e:e2:fa:5a:01:01:84:
c5:0d:f8:e7:9c:94:95:c6:d1:c1:dc:90:96:b4:4b:d2:11:4e:
69:5d:9d:f8:66:70:b7:99:25:d0:3f:47:70:c9:ad:ed:c6:1e:
f4:cd:a2:85:ff:67:a5:71:18:63:7d:36:d0:dc:c4:f3:20:56:
46:f8:8e:4b:3b:d2:76:1d:8b:73:92:4b:83:43:74:af:86:b7:
f6:99:3d:73:66:a7:7f:2f:52:30:b2:c6:a8:c5:b0:cf:d3:ba:
61:c1:89:6c:5c:05:a9:01:c2:60:ad:d6:24:45:90:c2:02:9d:
10:40:2f:d2:6a:24:d4:42:bc:69:23:39:be:dc:2a:e7:dd:ee:
83:7e:99:c4:c3:13:cc:e6:cf:1c:ba:3b:4a:76:6f:19:db:ca:
5b:cb:c1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:23 2026 by rpki-client