Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
File: lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft (raw, json)
Hash identifier: wCdhzs0CepjY9AnLjoo9QHVsij26bu5bYvinZ1lxXJc=
Subject key identifier: F4:F2:A2:3D:56:A8:5C:93:BF:49:BE:8A:B8:DF:C9:6F:D5:BB:E7:A2
Authority key identifier: 94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
Certificate issuer: /CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Certificate serial: 019CE892F5D1F1E39EA9022EB5ECC27089E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
Manifest number: 128D
Signing time: Fri 13 Mar 2026 19:01:11 +0000
Manifest this update: Fri 13 Mar 2026 19:01:11 +0000
Manifest next update: Sat 14 Mar 2026 19:01:11 +0000
Files and hashes: 1: XA0hanAouJl2ycFS_6jOkWOebDo.roa (hash: A3fTkPkEhBhccpT47iyF3/WYn8UVXxPajs9rFRIKGYs=)
2: lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl (hash: a81sfTieDrIGjKT1fNk9sf9B9DQ39Vr+wt7R4v6WELY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 18:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e8:92:f5:d1:f1:e3:9e:a9:02:2e:b5:ec:c2:70:89:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Validity
Not Before: Mar 13 19:01:11 2026 GMT
Not After : Mar 14 19:01:11 2026 GMT
Subject: CN=f4f2a23d56a85c93bf49be8ab8dfc96fd5bbe7a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:23:f1:dd:dd:2f:e9:c2:7f:bd:d9:c4:36:6e:
d2:ad:69:46:07:38:fe:a1:42:b7:40:57:3a:52:26:
47:98:5a:20:e7:97:aa:44:4f:1a:7f:e4:e9:32:e3:
68:c6:7d:df:86:88:62:2b:83:cb:f8:f3:07:fe:ba:
9d:4b:5b:79:ae:d5:03:da:33:14:15:b3:98:1f:da:
56:d3:59:a4:05:85:ea:6e:e8:5e:8a:94:44:36:10:
4e:0e:54:5e:50:23:53:57:dd:30:9c:7a:95:4a:2f:
83:eb:dd:9f:53:0b:68:8c:77:c4:dc:dc:2a:58:b4:
9c:d6:54:14:72:d8:de:44:54:e4:3b:1b:8b:69:94:
e4:dd:25:da:c5:9b:2c:65:9c:5a:b8:a3:37:0f:f4:
d2:c1:58:ac:6a:be:7a:6c:74:23:6a:11:49:a3:51:
9c:af:5b:74:45:c7:bd:a2:fc:06:16:b1:3c:aa:36:
5f:d1:ee:ca:75:01:ff:aa:62:20:4e:bf:e3:89:4a:
fb:03:32:69:42:bd:40:86:7d:6e:14:6f:75:e6:f3:
e6:68:9b:6d:25:56:2c:17:57:cd:b1:00:04:d2:94:
2f:ef:f7:c9:56:a6:15:4a:4a:86:b0:aa:89:d1:71:
58:65:79:80:36:e8:ea:21:f2:ca:08:40:67:68:aa:
98:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F2:A2:3D:56:A8:5C:93:BF:49:BE:8A:B8:DF:C9:6F:D5:BB:E7:A2
X509v3 Authority Key Identifier:
keyid:94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:be:46:11:b3:27:90:83:43:7a:ac:98:f9:e7:19:f3:00:88:
7f:a3:a0:ef:53:9b:c8:1b:a1:fc:96:eb:46:2a:5f:22:1f:fe:
08:e4:ca:1c:05:e0:64:e7:a2:f0:26:5c:74:ab:fb:22:d1:38:
85:e8:a0:85:30:71:51:b0:22:fd:42:ff:b7:10:d1:75:95:54:
25:64:55:45:c4:7f:0c:76:5a:d9:87:d9:78:57:39:da:e3:16:
03:f9:46:c8:53:04:d2:4c:e0:fc:92:f5:d8:d2:c8:3d:0d:73:
5c:4d:b9:af:2c:d7:8b:a2:e0:66:59:f1:a5:79:17:d6:28:28:
03:1f:4c:65:06:7e:db:88:c7:4d:fa:99:d9:52:1d:20:6e:72:
73:81:7f:80:6a:6c:3b:30:66:13:25:34:f4:d4:1a:4e:ea:84:
e4:21:08:f0:b3:86:75:0b:7c:c3:80:49:b8:47:fe:0c:7a:7b:
7e:cc:e2:13:39:d5:91:d5:2f:80:49:d2:87:50:ed:a2:9f:73:
ea:d1:f1:eb:8e:ed:40:69:34:90:d6:21:99:67:c9:31:db:b7:
f8:6d:b0:f9:6d:d0:22:a6:d9:4b:02:09:24:5d:aa:96:f1:74:
61:c3:02:e8:44:c3:d2:0f:5f:9a:4c:e1:2b:0b:15:d6:20:41:
29:ba:d8:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 00:04:58 2026 by rpki-client