Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
File: lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft (raw, json)
Hash identifier: 4GgdIehrNuHLB9fKhqDQfOLfot69+3DiQxPDekqExl0=
Subject key identifier: F1:76:3F:06:5C:0B:7D:7B:6C:22:26:6B:F6:73:8E:6A:E1:10:72:A3
Authority key identifier: 94:F8:BF:9F:30:55:27:52:15:08:69:7E:2E:AA:3B:E1:C7:A1:84:54
Certificate issuer: /CN=94f8bf9f305527521508697e2eaa3be1c7a18454
Certificate serial: 019CAFECECF902A62C28EA30A250A541374D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
Manifest number: 02D4
Signing time: Mon 02 Mar 2026 19:01:05 +0000
Manifest this update: Mon 02 Mar 2026 19:01:05 +0000
Manifest next update: Tue 03 Mar 2026 19:01:05 +0000
Files and hashes: 1: P3bBBi_YBaE4cV_VtfNF8i696oo.roa (hash: y1a/3A3vOIwmjOY1TgiM92LxR/aRkfoi3hKdkrKBG6Q=)
2: ZXdyEyK3SaId4Xur9UCKxGCjI8c.roa (hash: zQ+cgbxBxeFyJgysTpnSUkOVuSjMGCgEsR1NJ1pLGCk=)
3: h-YNMPYuWy1o5GqwyMkM1NJmUSM.roa (hash: us18JsIOMphnH0kNot1ftkzW7XzyNG9dxD+IeSBCYOM=)
4: lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl (hash: icG8taIQhDSIyEyUot7QxgVi6svb6uQG1lMrdT2IAq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 19:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:ec:ec:f9:02:a6:2c:28:ea:30:a2:50:a5:41:37:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94f8bf9f305527521508697e2eaa3be1c7a18454
Validity
Not Before: Mar 2 19:01:05 2026 GMT
Not After : Mar 3 19:01:05 2026 GMT
Subject: CN=f1763f065c0b7d7b6c22266bf6738e6ae11072a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cd:e6:1b:08:86:3b:af:3d:8f:0d:8e:a4:7a:
7b:67:cd:4a:9a:07:05:54:23:73:61:93:58:7e:89:
0e:b9:4a:13:d4:2e:86:6c:9d:62:8d:99:a9:44:9b:
76:ff:a8:02:10:a0:8b:b5:20:3f:48:72:b5:55:b9:
17:11:31:af:d2:e0:84:c4:f0:a3:39:0f:37:61:43:
df:95:bd:2a:76:fe:e8:96:ed:a8:8d:46:3d:36:65:
28:1d:ba:de:94:d4:e0:ee:6c:06:6c:5a:7f:12:7e:
64:a3:f8:f7:bc:c1:16:77:27:f8:fc:bf:2a:a0:cf:
8c:49:fa:57:99:17:a0:c8:de:f6:4f:47:0d:83:35:
f0:4a:7e:03:30:ab:df:c2:38:6a:55:d4:3e:32:cb:
a3:dd:24:7e:b9:99:99:6f:83:f9:de:a4:13:2e:da:
5a:47:40:c1:2c:50:37:d7:05:7e:5a:d6:7a:12:98:
23:56:f1:ed:20:a8:1c:32:b6:7a:99:ac:43:1b:45:
78:52:3c:97:9d:9a:d0:18:3d:08:d6:e1:24:80:c0:
1a:6c:3e:b1:95:a5:3e:4d:3c:97:ae:80:be:b3:bb:
a3:30:ed:cc:1f:5a:00:b7:77:41:df:ba:34:84:20:
e1:2f:6b:e9:0a:16:54:ce:be:6d:08:03:93:87:75:
0d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:76:3F:06:5C:0B:7D:7B:6C:22:26:6B:F6:73:8E:6A:E1:10:72:A3
X509v3 Authority Key Identifier:
keyid:94:F8:BF:9F:30:55:27:52:15:08:69:7E:2E:AA:3B:E1:C7:A1:84:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:a5:f0:f0:78:57:4b:7c:51:66:b0:c9:9f:98:f8:a7:2d:13:
14:4e:4f:d8:74:34:d4:f2:d6:01:90:ab:5e:cf:c3:6d:bf:a8:
d0:1f:02:e0:81:94:6f:7d:a1:00:0a:81:8e:9f:46:c0:3a:fa:
ff:b2:b5:b1:bc:d2:51:65:71:ac:66:11:f3:af:ef:e4:bb:59:
13:91:99:61:84:57:1f:ab:1c:cf:2e:43:5b:0e:d7:bf:fe:b6:
a0:0a:a7:c0:54:a6:b3:5d:1c:88:b6:37:6c:3a:3c:a7:f4:24:
50:29:fc:a4:ae:ae:d7:1b:08:55:6f:d7:c5:2c:d8:be:ca:83:
23:67:d4:c1:ad:f9:0a:fa:cb:08:66:e2:d3:b3:36:81:80:17:
d7:23:82:8d:55:9e:e5:7c:8a:dc:36:57:a0:75:aa:96:b6:da:
9f:af:3f:b0:d6:3e:62:f9:10:17:89:b4:96:11:52:85:89:b0:
48:da:48:4f:2c:d6:a1:16:f8:ce:62:93:3f:51:b4:fd:14:9d:
ee:97:df:5f:82:76:7f:43:21:c2:d1:5c:14:3d:b7:2b:5c:48:
83:9c:96:c6:76:73:fa:fb:c6:30:51:d0:a0:9f:6e:b2:64:72:
b2:8d:94:5e:17:a1:e4:bf:d5:da:2b:fc:d6:23:ce:bf:56:c3:
fb:32:17:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 03:32:23 2026 by rpki-client