Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft
File: ldcL-AoHyf_L7wzYRltFjWE9zIU.mft (raw, json)
Hash identifier: IuBZNPs1w7K8ImhRLE+SA02aIZ9PmnQaR+tJx/YakmE=
Subject key identifier: DF:93:D4:18:B8:F3:1B:8E:5E:53:1D:0E:62:8D:CC:63:BB:0E:91:FF
Authority key identifier: 95:D7:0B:F8:0A:07:C9:FF:CB:EF:0C:D8:46:5B:45:8D:61:3D:CC:85
Certificate issuer: /CN=95d70bf80a07c9ffcbef0cd8465b458d613dcc85
Certificate serial: 019D3940875C8124632C71363E272EC25249
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ldcL-AoHyf_L7wzYRltFjWE9zIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft
Manifest number: 0B70
Signing time: Sun 29 Mar 2026 11:00:23 +0000
Manifest this update: Sun 29 Mar 2026 11:00:23 +0000
Manifest next update: Mon 30 Mar 2026 11:00:23 +0000
Files and hashes: 1: ldcL-AoHyf_L7wzYRltFjWE9zIU.crl (hash: I4WnQ00G6rEBK5BlW6YY0gpCUB/etE1o9dAEzhJ0o+w=)
2: u4ERWMg82PqTVt7Gef_SWK-cZGQ.roa (hash: RjVOex1KtOTitdhI4w1UNBYIq1OmgpAnHu9XT16yu5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ldcL-AoHyf_L7wzYRltFjWE9zIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:87:5c:81:24:63:2c:71:36:3e:27:2e:c2:52:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95d70bf80a07c9ffcbef0cd8465b458d613dcc85
Validity
Not Before: Mar 29 11:00:23 2026 GMT
Not After : Mar 30 11:00:23 2026 GMT
Subject: CN=df93d418b8f31b8e5e531d0e628dcc63bb0e91ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3b:57:9c:0d:08:dd:56:e2:2a:43:78:34:90:
92:d6:63:43:e7:16:12:d6:d1:0f:d9:c3:38:33:58:
fd:87:f3:ab:c4:27:9d:7d:f7:79:99:be:67:cf:fe:
21:0a:f3:36:5c:05:07:16:9e:57:10:93:40:a5:bd:
9a:a0:6d:71:13:eb:43:ad:7c:1c:1c:35:13:b1:8f:
02:d4:08:d9:ea:19:a5:7b:14:d5:ef:c1:ca:a1:88:
ba:72:b4:17:5d:8f:0b:87:f1:60:07:7f:84:f4:c0:
c4:2e:56:e4:67:27:ea:ff:70:ed:3e:99:3f:14:a0:
b8:0a:67:7c:0f:b6:77:e2:95:4d:16:1b:01:52:05:
27:2c:02:08:df:dc:f8:62:a5:f7:f3:f9:40:37:04:
14:8c:38:6e:70:8e:02:0e:a2:a8:8e:21:6d:e9:3c:
62:36:b6:48:51:c3:73:89:4c:44:c6:58:01:79:59:
01:58:95:c9:bf:0e:59:74:be:53:f6:d2:67:b7:2a:
99:39:d0:74:37:89:9f:8a:1f:34:18:fe:be:47:c0:
35:2b:e2:0b:bf:49:2f:23:6f:19:6c:39:63:b3:fc:
25:8f:f6:24:ed:37:39:e8:a1:90:15:71:57:db:74:
ca:c3:74:3a:2c:c6:88:70:b8:bd:69:ae:a8:08:2c:
0a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:93:D4:18:B8:F3:1B:8E:5E:53:1D:0E:62:8D:CC:63:BB:0E:91:FF
X509v3 Authority Key Identifier:
keyid:95:D7:0B:F8:0A:07:C9:FF:CB:EF:0C:D8:46:5B:45:8D:61:3D:CC:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ldcL-AoHyf_L7wzYRltFjWE9zIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/2b0e11-f18d-4757-9011-6678eb81b8b0/1/ldcL-AoHyf_L7wzYRltFjWE9zIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:4e:c7:a3:63:59:16:bd:bf:a9:6e:5b:97:40:07:1c:4d:ad:
9b:e8:e2:17:63:04:bc:7e:f2:a1:50:9b:fd:96:d3:44:b7:7c:
ed:da:47:9d:6d:02:6e:29:79:b6:ed:0c:d9:b5:f1:b5:36:01:
24:35:c0:0c:9c:26:ab:ca:aa:fd:58:d0:c9:9d:06:88:f3:b0:
44:d3:02:cb:b3:4f:3e:57:f6:59:ca:89:ef:f1:2a:8b:c9:b4:
57:b6:a9:f3:db:88:db:5e:64:fe:d8:d0:49:2c:4e:69:10:8b:
ec:9e:76:27:c3:03:59:0a:6a:7a:ce:2b:a5:af:fb:df:b8:8c:
dd:1c:b5:57:59:51:b1:b8:05:a7:ec:f9:53:f7:d1:34:ac:48:
40:36:43:df:8b:c6:52:ff:bb:e4:95:95:52:06:89:90:ba:14:
52:d6:ab:2e:ca:61:14:1b:48:c6:4a:98:01:5c:08:21:28:dc:
88:3e:23:a1:97:95:fb:0d:45:8a:ee:41:25:97:b3:22:60:f8:
f5:df:16:08:75:ee:ce:9f:f5:ec:88:22:9b:52:c9:8f:59:fc:
9f:ce:22:54:52:fc:2c:12:0d:84:ad:e1:61:17:3b:49:86:e0:
42:80:13:a4:33:1d:27:35:72:41:cb:e8:a2:d0:ab:e6:8d:80:
67:36:e0:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:29 2026 by rpki-client