Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
File: _lNCbiNhumZdjyW9PPrvwg69pIg.mft (raw, json)
Hash identifier: 4Nxu+osMFLD7+yswMqYqIAHZ0Hm6PhZKpQhPTkSiWC4=
Subject key identifier: 5A:5B:6A:0A:1D:34:61:55:65:21:16:1D:C9:50:74:B1:E5:D1:E5:AC
Authority key identifier: FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
Certificate issuer: /CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Certificate serial: 019D9A750C2D502F4D639F0ACABDB871D8EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
Manifest number: 15D5
Signing time: Fri 17 Apr 2026 08:00:55 +0000
Manifest this update: Fri 17 Apr 2026 08:00:55 +0000
Manifest next update: Sat 18 Apr 2026 08:00:55 +0000
Files and hashes: 1: KoZviyPQEL5Xi6gVwYr2Cd9mx2c.roa (hash: fqe8eG4WVuOA3Nqn5E8vEQ5c8f4TyPMKdiIPBRAGwdE=)
2: _lNCbiNhumZdjyW9PPrvwg69pIg.crl (hash: MKj3HMH52ftNUvNiktiN05VwbXCsn37XfwTEPnZ7xkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 08:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:0c:2d:50:2f:4d:63:9f:0a:ca:bd:b8:71:d8:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Validity
Not Before: Apr 17 08:00:55 2026 GMT
Not After : Apr 18 08:00:55 2026 GMT
Subject: CN=5a5b6a0a1d3461556521161dc95074b1e5d1e5ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e1:5d:45:62:41:b5:bd:d0:69:7b:47:cb:24:
ce:0a:b1:89:d1:81:e9:cb:33:72:81:c0:07:4c:4d:
4d:a7:79:63:36:3e:28:05:4c:42:4c:c2:6b:29:a3:
73:94:c2:21:13:f1:ae:5e:d9:0f:83:1a:6f:a4:c8:
f6:95:b8:f0:dc:8e:c4:fb:28:84:cb:ed:98:5c:be:
bd:a3:86:a9:bc:01:12:6d:b7:3a:3e:74:98:4c:a4:
d1:61:a5:bd:9d:70:f9:e0:f2:ab:17:1a:9d:d9:10:
42:19:30:96:cd:6a:51:e4:16:36:73:7c:d4:b2:10:
a9:3c:f7:41:6d:e7:28:12:a8:41:71:34:10:d4:2b:
8d:50:6b:89:55:c2:64:4e:bc:27:57:b7:7c:cb:b6:
bd:fd:9e:a0:e1:3d:d7:09:01:ff:19:c6:60:ee:ea:
ae:42:08:44:12:e5:5f:14:c4:a9:61:96:37:5f:67:
0a:59:a4:b8:d6:de:d1:43:5a:be:68:b5:21:84:55:
47:27:d1:e6:b4:e5:e5:d6:01:cd:7b:6a:09:6b:f8:
8e:04:f0:ae:e3:27:7b:1c:bb:c6:d5:a9:d1:ac:0d:
29:d9:69:d0:2e:e6:c2:1f:15:a0:be:8d:e5:ea:53:
d7:1d:73:55:de:a0:14:fd:7a:8e:08:b1:60:bc:c4:
02:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:5B:6A:0A:1D:34:61:55:65:21:16:1D:C9:50:74:B1:E5:D1:E5:AC
X509v3 Authority Key Identifier:
keyid:FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:9d:a8:77:e3:de:ce:cd:65:54:bd:a6:65:18:4a:c5:09:f8:
ee:4f:8e:b9:8e:b9:fe:ea:ae:64:50:a7:75:70:29:84:33:97:
30:b9:73:69:34:0e:b4:a2:b4:a4:ab:c9:8b:d9:59:a9:60:ff:
cc:c0:00:ab:59:0d:54:33:7a:92:db:4d:40:76:7e:fb:a0:6a:
74:3a:34:0a:e5:68:d0:5c:b6:0f:bd:ea:2e:73:b6:c0:e8:3e:
b3:1f:4d:b5:9e:4b:84:f2:97:ca:44:b6:1c:ac:16:88:46:29:
43:50:69:71:b7:d6:b1:79:71:34:17:3e:88:1e:0b:cf:99:ca:
65:e2:fd:2b:fd:cd:33:fd:11:c3:15:ee:54:54:24:92:3b:4f:
85:7a:07:23:97:b4:f5:70:5a:89:b3:64:7e:a0:b2:5b:87:e1:
90:31:db:56:04:8f:5f:ad:03:0a:2d:a0:4a:d2:e9:2a:ac:23:
c8:01:f2:a1:cd:49:d3:6b:a3:cc:89:7e:36:2f:9a:2e:54:0d:
47:26:49:85:b0:87:49:f9:1a:df:55:4d:2c:26:e1:4c:f5:32:
95:03:c7:f2:2e:5f:a5:1f:5f:21:6d:86:c3:b3:b4:39:2c:b8:
41:bb:b1:71:7d:7b:6f:6b:b1:4f:a3:e9:f4:04:d6:91:38:8d:
c9:c7:14:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:40:14 2026 by rpki-client