Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
File: _lNCbiNhumZdjyW9PPrvwg69pIg.mft (raw, json)
Hash identifier: VCJzrIgJg2wgneV3nsUs6VT5vS9eBKXZsqT0O5QSdus=
Subject key identifier: D2:B5:4A:C6:C3:ED:AA:F5:03:10:2B:41:37:FA:0B:38:65:9E:01:D6
Authority key identifier: FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
Certificate issuer: /CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Certificate serial: 019CAEDA2B4C26344CAC7C82656D70052E48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
Manifest number: 155B
Signing time: Mon 02 Mar 2026 14:00:59 +0000
Manifest this update: Mon 02 Mar 2026 14:00:59 +0000
Manifest next update: Tue 03 Mar 2026 14:00:59 +0000
Files and hashes: 1: KoZviyPQEL5Xi6gVwYr2Cd9mx2c.roa (hash: fqe8eG4WVuOA3Nqn5E8vEQ5c8f4TyPMKdiIPBRAGwdE=)
2: _lNCbiNhumZdjyW9PPrvwg69pIg.crl (hash: 7SiFjwTPHNhd0k/5c71Sy//ii86yexf5cdvb01pwD7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:50:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:da:2b:4c:26:34:4c:ac:7c:82:65:6d:70:05:2e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Validity
Not Before: Mar 2 14:00:59 2026 GMT
Not After : Mar 3 14:00:59 2026 GMT
Subject: CN=d2b54ac6c3edaaf503102b4137fa0b38659e01d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:30:7c:49:64:29:f3:98:7a:92:a5:4f:28:e7:
f4:2e:c7:7e:a7:4f:e1:5d:67:27:a2:79:cd:d5:42:
a5:99:55:99:4a:8a:23:0d:7c:13:46:d1:22:7d:4d:
f1:02:9e:74:40:89:6b:ee:63:7a:af:07:2f:a3:4e:
8b:93:92:c6:98:69:12:c1:aa:93:c5:04:60:e7:ee:
42:8c:e7:81:cb:a7:5f:35:9f:74:09:e4:75:ef:83:
85:b1:f2:8f:56:c9:20:4a:83:2a:19:89:c8:0c:13:
cc:04:b3:bd:57:12:87:82:cd:9c:0b:5d:53:d1:93:
2f:34:96:7e:82:c7:51:62:b4:6e:69:6a:8b:64:ca:
8a:90:d3:46:19:42:ae:b7:7b:5e:7d:02:a3:8a:a8:
86:02:34:9a:aa:15:7f:8b:d6:31:5c:83:80:f3:4e:
98:ed:81:7b:e7:4b:29:40:62:b4:f0:90:e3:2d:ed:
b4:bc:bc:87:b7:b9:ba:01:9d:87:5c:c7:a0:07:0d:
b8:22:f4:10:7b:b8:46:05:bf:95:31:9b:f5:30:7d:
6f:a0:07:a0:04:34:bc:36:fd:00:d1:cc:81:1f:59:
0f:36:8f:4e:0e:bc:61:70:ac:f9:3b:1f:1b:27:30:
77:a8:90:eb:f3:6d:a1:c9:36:ab:3f:49:c7:9b:6c:
a1:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B5:4A:C6:C3:ED:AA:F5:03:10:2B:41:37:FA:0B:38:65:9E:01:D6
X509v3 Authority Key Identifier:
keyid:FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:75:e2:de:7b:6c:49:23:cd:4a:27:e6:8c:99:1a:bd:06:4c:
da:c3:66:b2:81:bd:b6:ec:1d:48:d0:06:0b:28:f1:84:5a:25:
19:0c:67:7f:df:37:3e:b6:cd:2f:44:db:65:1d:c7:b5:d6:2c:
04:39:96:bb:2b:17:3a:51:c9:8b:47:ab:0d:65:cf:0a:1f:a8:
c5:6f:af:42:ec:33:46:c1:2f:08:f5:1a:49:77:53:1a:f5:bc:
2f:70:45:22:5a:9b:31:f8:78:a9:7a:d8:0a:60:a1:ae:c6:36:
2c:95:3f:ce:15:ff:95:d0:5a:63:68:93:44:59:b0:95:1c:90:
95:e5:96:89:d9:7f:0c:d9:ae:2c:6d:a4:64:de:95:e7:ed:20:
aa:b7:da:fd:93:7b:5f:19:dd:5a:59:2e:88:17:6b:86:d9:47:
6e:ea:d7:67:4d:5b:62:36:bf:0c:cc:6f:c1:07:40:fc:20:ec:
73:04:7a:f9:47:aa:5b:a8:ec:0e:f2:b0:e4:d9:c1:ee:d6:66:
88:9e:cd:da:d8:bd:f9:a9:09:a8:02:fc:72:13:7b:7d:8d:25:
e2:6c:d7:22:bb:16:39:5e:3c:80:00:ae:5d:0c:1d:f1:cc:74:
46:f0:55:70:1c:54:88:22:f4:a9:8b:cb:df:c6:4b:64:65:c8:
b1:f9:b9:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:44:55 2026 by rpki-client