Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: Y/1cCTlZ9MhYSKvorsKJ0p0crDtqDXE8LmXQmgMJxzg=
Subject key identifier: A5:C7:8D:F8:CC:E2:38:E7:9F:45:66:C1:17:17:4C:6E:7F:69:0D:2F
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 019CE4B5827EBDF6705FE2ABE290F1930B49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 1875
Signing time: Fri 13 Mar 2026 01:00:26 +0000
Manifest this update: Fri 13 Mar 2026 01:00:26 +0000
Manifest next update: Sat 14 Mar 2026 01:00:26 +0000
Files and hashes: 1: 1-zEgOYWTHaiqMcDqGEot8D9hfIE.roa (hash: jVaMeN32gu4WLb8RXEU7QtT8NJ8As10+YaSSTQDJyMM=)
2: 77UuERyh3Z3AUcULCIiJEdc-fQo.roa (hash: DnHBthnf/STbIAi1O3tZFh2P5fMOYtzdif9FPjsRkXU=)
3: I74vLo5CklRsbzCPNYnKrvIvLj4.roa (hash: ylSWG2wfgpUMhcZpBHxBahFVE1pyuX6ebVuzOtGSKVo=)
4: OA8Bk3tPUiZSmiAzbm0eBXa4nuE.roa (hash: oWNPNPjgcKmmhmYQ0/KR/N+7+UQanOVovcIMTSyV2uo=)
5: hYxTxK4AHKTY1TwSA43oGaIbwvI.roa (hash: pXMygWt3Q3zIvm4RuMnURnfNgvmTHNGm+Wsjn0P2p18=)
6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: nkRgC+Lbc7uOjemyCb5wBi5W54Ttzav056bSK+T9T6M=)
7: nS-qR-87gGJ6pBf2l7_HCJOIeHM.roa (hash: uHfPOVPyEDve9s1ba9V4RroyQ1/pD8S/mdaAMdEB9is=)
8: pxTDDl8HD6hZo5qJKIkeKUT3PHY.roa (hash: FICr2xp4vd+7n3rWeWvKoKoWXhNvU50pS0gZxwPllVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:b5:82:7e:bd:f6:70:5f:e2:ab:e2:90:f1:93:0b:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Mar 13 01:00:26 2026 GMT
Not After : Mar 14 01:00:26 2026 GMT
Subject: CN=a5c78df8cce238e79f4566c117174c6e7f690d2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:59:27:5f:91:15:cf:ed:e5:84:30:7d:32:d5:
4c:17:96:a2:60:0c:a9:5a:2b:e0:7f:c5:a9:29:a6:
83:b7:13:98:ad:8c:77:1f:96:ba:c3:52:57:aa:3b:
e6:98:a3:83:cd:4a:79:e2:c8:8a:da:de:0a:5f:88:
8a:04:28:54:ca:80:19:fb:93:79:1c:f3:b8:79:f7:
72:c3:fc:4f:a1:fb:a5:0a:51:a3:d9:10:3b:50:18:
97:b9:a5:09:09:f1:32:ef:78:da:20:e6:1b:96:d9:
c4:75:8f:8a:40:ef:57:bb:ae:b0:d6:d1:50:3f:34:
7e:e8:bf:d1:e8:30:b2:37:5f:f1:f0:f9:a1:65:6b:
2f:3a:da:38:1e:41:0e:ac:51:5f:66:af:de:02:5c:
af:c3:44:f9:69:1e:b3:4e:0f:91:f9:17:c2:b7:2c:
ae:bb:32:6e:78:58:25:cd:e1:5f:dd:d4:3a:43:1b:
07:19:ac:b2:7b:87:bf:c7:1a:1b:f3:57:38:b3:48:
df:2c:46:ed:a5:fe:8c:2c:59:a1:fb:f7:31:c5:cf:
be:1f:48:14:3f:5b:72:ee:75:d5:31:4d:09:ec:f3:
23:e6:84:73:20:fc:e6:ac:16:8c:d7:35:54:ca:68:
b4:79:15:33:12:05:f1:ad:de:c4:51:56:32:74:16:
05:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:C7:8D:F8:CC:E2:38:E7:9F:45:66:C1:17:17:4C:6E:7F:69:0D:2F
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:9f:51:fa:fc:d0:c8:8c:bd:17:31:e2:63:3c:55:64:2f:80:
f7:41:36:fb:62:4b:7e:18:41:f4:fd:73:51:38:6b:66:c5:42:
7a:a5:30:c1:91:5a:c7:f3:e2:8c:1a:5a:f7:e0:04:03:46:8b:
3d:35:c6:91:1b:a8:ef:46:71:5c:de:63:07:19:56:41:e5:31:
3b:78:8b:f2:9f:e4:49:ce:cc:26:de:2b:86:80:04:46:67:70:
46:81:ca:cc:04:7e:ee:da:52:41:90:e8:be:bf:00:a9:11:44:
8b:da:b1:cf:31:a9:f7:73:5c:c7:9e:27:f6:d5:b3:46:38:6b:
d4:b5:ec:37:21:48:83:c0:51:7e:16:f3:ab:0c:09:ef:b3:d2:
72:93:83:52:23:80:03:24:83:3c:b1:be:c9:00:ee:16:6f:c7:
d9:24:4f:8e:0a:32:88:55:8c:ff:1b:6e:d6:7d:be:28:43:c0:
fd:d6:0d:60:1d:65:20:0d:b7:7c:72:02:22:dc:4f:b5:ad:b4:
eb:bc:d8:58:b8:52:e9:be:c2:00:50:95:0d:a7:9d:5a:98:7d:
bb:9e:58:66:03:bf:73:6b:07:a5:09:9f:32:49:62:c2:75:14:
b2:f9:ef:15:bb:5b:3f:b0:65:ee:d4:81:51:0a:bc:bb:e7:98:
1c:08:4b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 05:00:17 2026 by rpki-client