Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.mft
File: 1LkIqddLShCqH0wOiu1qhKO3kAU.mft (raw, json)
Hash identifier: LDEm94sGNzZAwF4Tjljvfss2L2AcPNeOU6f9jFuUGNg=
Subject key identifier: 56:C4:59:0E:7F:B8:B1:39:15:E7:AB:83:A7:59:1B:E5:6D:8E:1D:81
Authority key identifier: D4:B9:08:A9:D7:4B:4A:10:AA:1F:4C:0E:8A:ED:6A:84:A3:B7:90:05
Certificate issuer: /CN=d4b908a9d74b4a10aa1f4c0e8aed6a84a3b79005
Certificate serial: 019D37F73BD1A480BC074C3590AC06D7756A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1LkIqddLShCqH0wOiu1qhKO3kAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.mft
Manifest number: 20
Signing time: Sun 29 Mar 2026 05:00:42 +0000
Manifest this update: Sun 29 Mar 2026 05:00:42 +0000
Manifest next update: Mon 30 Mar 2026 05:00:42 +0000
Files and hashes: 1: 1LkIqddLShCqH0wOiu1qhKO3kAU.crl (hash: 8++WE6gpEv0pJNZq36DWMXLCdYDTggLe7u75ZqOZVzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1LkIqddLShCqH0wOiu1qhKO3kAU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:3b:d1:a4:80:bc:07:4c:35:90:ac:06:d7:75:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4b908a9d74b4a10aa1f4c0e8aed6a84a3b79005
Validity
Not Before: Mar 29 05:00:42 2026 GMT
Not After : Mar 30 05:00:42 2026 GMT
Subject: CN=56c4590e7fb8b13915e7ab83a7591be56d8e1d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:00:ff:d7:db:a8:1c:d9:89:4e:b4:2e:a9:70:
f1:d0:43:4a:b7:0e:6f:77:fa:a5:ce:0f:2c:02:41:
d5:7c:57:d9:a2:7c:a5:f5:ff:58:a1:e5:32:00:13:
df:20:8a:cf:44:16:32:87:3e:f1:fa:62:d3:4b:57:
76:51:a6:46:00:15:ed:27:8e:61:a5:b8:7c:30:a1:
05:f9:64:88:40:70:d4:82:42:71:12:10:ea:dc:0b:
50:a1:44:f2:53:4b:e8:3d:42:61:2e:7e:d9:ff:87:
94:74:7a:03:13:2e:44:a9:52:f1:9e:36:ba:44:21:
ad:52:f7:d4:a1:cf:44:84:1f:98:ff:c3:2a:e3:80:
83:26:3c:ce:64:56:0f:40:d2:4d:13:c2:ef:5a:62:
fc:22:3d:95:82:d7:20:9b:be:b7:26:b1:6a:9d:26:
03:d9:ad:97:0e:1b:a6:9d:bd:c8:e5:17:b4:aa:93:
6d:4b:8c:88:84:50:e3:ce:85:0c:26:f4:b7:24:59:
6d:d6:43:e5:3b:93:32:6a:c5:1d:62:22:30:7d:64:
ce:6e:54:20:75:30:6e:37:6d:2f:e9:fd:11:82:ed:
40:f3:fd:9b:9d:84:67:a8:aa:a6:65:d2:83:c8:ef:
9b:c7:40:f7:93:ea:2c:67:44:00:ff:5a:f5:8a:35:
07:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:C4:59:0E:7F:B8:B1:39:15:E7:AB:83:A7:59:1B:E5:6D:8E:1D:81
X509v3 Authority Key Identifier:
keyid:D4:B9:08:A9:D7:4B:4A:10:AA:1F:4C:0E:8A:ED:6A:84:A3:B7:90:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1LkIqddLShCqH0wOiu1qhKO3kAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:56:26:e6:20:81:b1:53:e1:04:82:d8:00:01:4b:a1:cf:1d:
0f:d3:50:a4:7d:d7:0f:bf:a7:59:2a:d3:5f:a7:73:c0:89:ba:
ca:ac:c8:8f:a3:91:d6:32:da:45:fa:31:fe:78:97:22:b9:95:
93:cc:69:0d:3c:66:44:d1:ea:1c:b2:e3:0e:3f:8d:0e:c0:4a:
8e:e5:ea:a9:c1:17:a1:68:18:a5:ec:4a:84:15:34:95:89:fc:
77:dc:f7:3b:4e:41:ba:cb:b8:79:b2:50:48:8b:aa:e1:e9:47:
09:b3:06:85:b0:2d:f5:91:18:77:17:28:87:ae:37:fd:89:89:
9b:f3:8d:7a:71:53:5c:c3:c3:eb:f9:09:6a:e1:1d:db:0d:31:
3d:ea:36:5c:24:8a:b2:b4:40:5b:36:a4:0d:ab:ef:49:8c:1b:
56:19:18:09:a5:1c:70:3e:cd:06:37:00:c5:01:a9:3f:7a:c1:
b5:07:42:ca:4e:b0:ed:af:12:ce:8c:59:4f:dc:f8:07:15:21:
f0:e9:b5:90:ee:b8:12:92:92:b9:38:33:24:ef:63:45:86:35:
4e:11:4b:03:6a:b9:08:0f:7e:4f:e8:f3:0d:5d:36:7b:a3:bb:
13:6b:79:82:d4:83:1d:32:73:87:8c:71:bb:1c:c1:4d:f3:55:
41:50:ae:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:07:18 2026 by rpki-client