Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
File: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft (raw, json)
Hash identifier: cWrMfgpuzMN9CNJTrw0AtQpUEq1/+wwSQyw7QZmxyCQ=
Subject key identifier: FD:50:9A:DC:A1:5C:67:98:97:83:8F:F2:3E:9E:82:4E:66:1E:CB:C7
Authority key identifier: 94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8
Certificate issuer: /CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8
Certificate serial: 019CAC7DEA96A3255380F43BE601D728BA04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 03:00:58 +0000
Manifest this update: Mon 02 Mar 2026 03:00:58 +0000
Manifest next update: Tue 03 Mar 2026 03:00:58 +0000
Files and hashes: 1: K-cjaXfz6hrAFe5r_hKzME7n-j0.roa (hash: c/D1oKxdYXnN+dp7p3G40OM2dsMHZRlxo/zdopbIxGs=)
2: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl (hash: U/SpheykijBKd9mGOFnkXIScidDAK3DAzhWcyWRuqg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7d:ea:96:a3:25:53:80:f4:3b:e6:01:d7:28:ba:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8
Validity
Not Before: Mar 2 03:00:58 2026 GMT
Not After : Mar 3 03:00:58 2026 GMT
Subject: CN=fd509adca15c679897838ff23e9e824e661ecbc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:aa:de:29:f4:b4:cf:3e:53:6d:25:bd:39:2b:
e0:30:83:73:5b:63:34:c8:f4:63:58:5d:00:f4:ad:
18:f1:e5:b9:a8:22:f1:9b:d8:18:ec:3c:6b:3e:e5:
3b:20:c5:cd:d9:11:90:f3:df:eb:c4:35:5b:ff:d3:
94:be:14:cd:70:bf:c2:7c:d6:ff:38:58:49:ab:20:
cf:9a:d0:f2:3d:13:94:dc:d3:84:ea:37:e9:4a:a4:
8a:97:f5:8f:bc:d0:f5:e2:0a:da:52:b0:f1:e3:67:
01:b8:93:b1:55:76:41:a3:79:ce:d0:35:ea:68:4f:
86:0d:1d:f6:29:22:c8:36:7d:ed:73:82:b9:2a:a3:
da:2d:33:ed:69:a7:c8:fa:c6:78:17:48:ef:9e:cc:
5c:8f:84:47:1b:f1:e8:83:de:6f:5a:85:cd:bf:3e:
6d:dc:91:df:ce:7e:84:13:c0:40:9e:5c:3e:a5:d8:
3d:d1:2a:16:ae:68:5d:0b:34:05:1f:70:99:be:ec:
19:ee:2b:1c:f0:1f:a2:9b:d5:46:78:de:18:ac:59:
1b:7f:1d:c4:91:a2:76:be:03:05:a2:a4:3a:0a:65:
db:90:69:89:fd:82:40:d3:4f:02:53:15:41:84:4f:
c9:87:9f:62:f9:e7:ed:da:8a:33:3f:6d:c2:73:8a:
b4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:50:9A:DC:A1:5C:67:98:97:83:8F:F2:3E:9E:82:4E:66:1E:CB:C7
X509v3 Authority Key Identifier:
keyid:94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:c9:ac:ed:8d:af:81:4b:58:81:10:7c:15:38:7f:4e:c4:f2:
6b:72:51:61:fc:1a:31:66:9c:02:87:ab:8c:fe:af:13:7a:0d:
bf:76:13:ec:9d:72:0e:67:c0:69:84:95:92:08:2e:c4:bd:f1:
88:d5:32:b7:2d:5e:08:f4:6d:5e:f0:2d:19:7a:1a:ad:8e:81:
0f:b1:2d:81:db:4a:49:cf:91:30:1b:bb:04:90:ac:56:f2:86:
9d:62:ac:ba:02:fc:d3:68:aa:5d:6e:ba:07:49:42:fb:56:4d:
52:24:5d:3b:0a:90:cf:08:52:b8:e4:ba:c6:e9:8f:4e:3b:69:
85:6d:8f:e6:14:21:d3:1e:15:5b:cf:06:c6:77:4f:8b:85:f6:
aa:e0:96:bd:bf:e7:06:7b:b2:94:b6:8f:a4:ac:c5:b0:a2:eb:
b1:9e:16:e9:3c:0c:8d:a4:fa:d0:ca:1c:5f:34:86:c6:32:3a:
b7:a9:1b:04:f8:3e:5a:ff:d8:80:87:fe:dd:ea:61:6e:bc:9b:
c1:d4:f3:b9:56:69:bb:48:f4:9a:88:71:b6:ab:91:ee:7d:b6:
3c:63:c5:a5:4d:07:51:65:a7:af:a6:cd:3b:fa:e1:b5:35:ea:
46:3e:ed:23:17:24:05:d8:c5:92:34:bd:81:eb:fa:b5:3c:00:
20:51:ba:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysfeqWoyVTgPQ75gHXKLoEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ZGI0YjFlOWVkNjhiYjVjMzMyMjhhZTMwZTljZGQyNTJi
MzJmYjgwHhcNMjYwMzAyMDMwMDU4WhcNMjYwMzAzMDMwMDU4WjAzMTEwLwYDVQQD
EyhmZDUwOWFkY2ExNWM2Nzk4OTc4MzhmZjIzZTllODI0ZTY2MWVjYmM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvareKfS0zz5TbSW9OSvgMINzW2M0
yPRjWF0A9K0Y8eW5qCLxm9gY7DxrPuU7IMXN2RGQ89/rxDVb/9OUvhTNcL/CfNb/
OFhJqyDPmtDyPROU3NOE6jfpSqSKl/WPvND14graUrDx42cBuJOxVXZBo3nO0DXq
aE+GDR32KSLINn3tc4K5KqPaLTPtaafI+sZ4F0jvnsxcj4RHG/Hog95vWoXNvz5t
3JHfzn6EE8BAnlw+pdg90SoWrmhdCzQFH3CZvuwZ7isc8B+im9VGeN4YrFkbfx3E
kaJ2vgMFoqQ6CmXbkGmJ/YJA008CUxVBhE/Jh59i+eft2oozP23Cc4q0EwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP1QmtyhXGeYl4OP8j6egk5mHsvHMB8GA1UdIwQY
MBaAFJTbSx6e1ou1wzIorjDpzdJSsy+4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbE50TEhwN1dpN1hETWlpdU1Pbk4wbEt6TDdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8yMGY4MDUtZGY2My00NjMxLTk5YmQt
YTI1NjE3NzczOWM2LzEvbE50TEhwN1dpN1hETWlpdU1Pbk4wbEt6TDdnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8yMGY4MDUtZGY2My00NjMxLTk5YmQtYTI1NjE3NzczOWM2
LzEvbE50TEhwN1dpN1hETWlpdU1Pbk4wbEt6TDdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI8ms7Y2v
gUtYgRB8FTh/TsTya3JRYfwaMWacAoerjP6vE3oNv3YT7J1yDmfAaYSVkgguxL3x
iNUyty1eCPRtXvAtGXoarY6BD7EtgdtKSc+RMBu7BJCsVvKGnWKsugL802iqXW66
B0lC+1ZNUiRdOwqQzwhSuOS6xumPTjtphW2P5hQh0x4VW88GxndPi4X2quCWvb/n
BnuylLaPpKzFsKLrsZ4W6TwMjaT60MocXzSGxjI6t6kbBPg+Wv/YgIf+3ephbryb
wdTzuVZpu0j0mohxtquR7n22PGPFpU0HUWWnr6bNO/rhtTXqRj7tIxckBdjFkjS9
gev6tTwAIFG6GA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 11:02:57 2026 by rpki-client