Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
File: lRTVqEAEnUQt83dEU5TfcZIBp3M.mft (raw, json)
Hash identifier: WHoP292lhhFOg6wAlaG7fGXi2S2OxqESi8jmLIq4818=
Subject key identifier: D8:F8:3E:28:67:7A:1B:83:D6:2F:97:66:12:AF:74:8C:3D:74:0A:AB
Authority key identifier: 95:14:D5:A8:40:04:9D:44:2D:F3:77:44:53:94:DF:71:92:01:A7:73
Certificate issuer: /CN=9514d5a840049d442df377445394df719201a773
Certificate serial: 019D3789B73C27F3EAA41A71A569F7159526
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
Manifest number: 06D5
Signing time: Sun 29 Mar 2026 03:01:05 +0000
Manifest this update: Sun 29 Mar 2026 03:01:05 +0000
Manifest next update: Mon 30 Mar 2026 03:01:05 +0000
Files and hashes: 1: B5aZs_fb6H9CA7D2dUNN42FgKrA.roa (hash: vl+jWifF6DSv9Cx+Cj/2gMjcAyX+Gy1sgrTxm4Q+GFs=)
2: lRTVqEAEnUQt83dEU5TfcZIBp3M.crl (hash: WfI56MWnEm2Ipa54Yjl/lbqfQ+aDvg9ogYI+D8odOWU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:b7:3c:27:f3:ea:a4:1a:71:a5:69:f7:15:95:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514d5a840049d442df377445394df719201a773
Validity
Not Before: Mar 29 03:01:05 2026 GMT
Not After : Mar 30 03:01:05 2026 GMT
Subject: CN=d8f83e28677a1b83d62f976612af748c3d740aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c8:83:b6:b6:15:bb:12:f3:b3:c0:69:54:ef:
ae:31:75:6e:d1:b7:0d:7b:ce:8f:e1:53:7f:c3:ad:
61:cd:8e:b9:cb:e8:77:f6:3b:7d:9e:44:75:c2:e0:
d6:6c:ae:dc:80:be:3e:29:3c:b7:ed:1f:38:eb:36:
0f:92:a6:0d:7b:15:b5:67:0c:4f:92:5e:75:9c:24:
c6:86:7a:21:07:98:cc:4e:9c:63:d8:68:0b:c6:6f:
3c:73:cc:03:54:f1:b7:df:d8:17:21:de:22:f1:8f:
b8:bc:4e:8c:6f:eb:a2:20:b0:22:9e:4b:91:4a:50:
97:4d:05:60:dd:75:bc:fb:1b:71:6c:56:41:d3:d8:
0c:85:a4:d4:e1:9a:81:42:c0:ad:97:c0:26:80:41:
b4:8c:46:c6:b5:8d:21:73:f0:8c:07:c8:08:c1:37:
06:3a:6d:99:2b:c1:8e:08:ff:ef:4c:27:79:72:c1:
c1:2b:6b:80:da:70:bc:cc:e5:75:33:12:5f:f3:87:
26:a8:8b:72:21:c6:fc:fa:82:fc:4f:8e:2e:b7:a8:
5f:4f:c8:47:38:09:b3:9a:64:e0:3b:6e:6b:5c:ee:
e9:cf:0d:6a:c0:0c:c8:03:21:80:e8:33:46:48:d5:
24:13:5a:0d:df:c2:49:08:87:49:4b:2c:d6:8e:f2:
4b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F8:3E:28:67:7A:1B:83:D6:2F:97:66:12:AF:74:8C:3D:74:0A:AB
X509v3 Authority Key Identifier:
keyid:95:14:D5:A8:40:04:9D:44:2D:F3:77:44:53:94:DF:71:92:01:A7:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTVqEAEnUQt83dEU5TfcZIBp3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/81e242-e7d3-491f-ba65-57d15843f7f0/1/lRTVqEAEnUQt83dEU5TfcZIBp3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:36:37:bc:70:61:83:af:25:9a:ff:08:3e:6a:0c:6e:ca:80:
8c:c0:8f:26:d5:6d:b8:95:2f:04:31:cd:98:3f:43:58:c5:f6:
34:de:8d:b2:9f:5c:3d:16:1a:21:58:13:d3:64:70:94:f5:28:
57:8d:bc:5b:68:7c:d8:ac:c7:37:d0:3b:8a:22:2a:21:a4:ad:
b9:a9:21:f3:de:26:bb:43:55:2b:37:a9:22:07:ae:38:41:12:
53:f1:b7:1f:7d:f7:f6:be:ee:c4:d1:dc:4e:14:23:b3:a5:0a:
3f:9e:c6:1b:61:9c:43:70:94:de:74:2c:e7:9d:9d:28:ec:ff:
b8:c7:7e:a5:00:06:8b:8d:75:f9:f0:ee:05:a4:6a:72:ee:8d:
be:d1:5b:76:34:4f:1a:07:92:96:dc:93:81:75:0b:de:18:45:
ab:f9:a4:51:5e:00:f6:ab:89:6b:30:32:5c:d1:03:c3:f6:9e:
8c:53:37:ae:86:91:cb:a3:60:c3:fb:fe:61:49:e0:99:27:37:
24:a7:63:f6:2f:62:d4:cf:d3:62:b6:1b:93:97:f9:2d:98:11:
54:70:33:cd:a4:b5:f8:77:97:c7:d1:80:4d:61:b6:ae:b5:95:
6c:87:fa:21:8d:5d:4f:89:00:6f:d4:71:b1:e1:c5:02:9b:ba:
73:c8:79:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:48 2026 by rpki-client