Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
File: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft (raw, json)
Hash identifier: D6h4O/h/VFGk4fouIax45HVEQmkqWcA//QG02Ws+1o4=
Subject key identifier: E6:E2:D6:46:43:6B:06:05:DD:E5:1F:C3:55:BF:D9:0F:C8:C5:76:13
Authority key identifier: 94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8
Certificate issuer: /CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8
Certificate serial: 019D9BF5C184DFFFBDBF2BD54C8FFAC30CEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 15:01:07 +0000
Manifest this update: Fri 17 Apr 2026 15:01:07 +0000
Manifest next update: Sat 18 Apr 2026 15:01:07 +0000
Files and hashes: 1: K-cjaXfz6hrAFe5r_hKzME7n-j0.roa (hash: c/D1oKxdYXnN+dp7p3G40OM2dsMHZRlxo/zdopbIxGs=)
2: lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl (hash: fTBhP6/9IEaLllhoIx/1eNihZs0iZLmfuGMKIZa0Pts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:c1:84:df:ff:bd:bf:2b:d5:4c:8f:fa:c3:0c:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94db4b1e9ed68bb5c33228ae30e9cdd252b32fb8
Validity
Not Before: Apr 17 15:01:07 2026 GMT
Not After : Apr 18 15:01:07 2026 GMT
Subject: CN=e6e2d646436b0605dde51fc355bfd90fc8c57613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:eb:82:a7:b7:30:8d:85:f9:4e:89:27:a3:c5:
ba:40:b1:2a:a3:d2:d6:49:0c:2f:f2:1a:28:3d:b5:
42:3f:f9:9d:82:e7:e9:0b:9b:1c:5f:2c:62:b5:dc:
2b:5e:ed:be:9d:db:5a:51:7c:03:50:ab:7d:01:c7:
b8:8f:db:82:4e:0d:90:91:4b:63:21:ba:7b:09:81:
7b:a3:72:18:bb:61:52:cf:ed:2e:38:1d:af:18:30:
81:f0:48:4e:81:53:75:b2:4c:1a:9e:0b:8b:0f:8b:
c9:b1:5b:79:1f:df:86:26:25:87:6e:00:7b:11:da:
b7:df:ab:92:62:04:b3:5c:f1:bf:63:d7:9b:25:b3:
1a:71:7a:42:c9:ff:ac:f4:b0:d0:53:15:ac:cc:87:
7e:be:11:3d:1e:5e:02:e9:be:2e:a5:69:2b:a5:57:
6d:67:f2:e9:92:5d:32:60:d1:ee:59:d7:18:2e:23:
bd:b5:9c:1c:32:80:88:d2:06:02:0c:78:6e:4d:85:
af:48:da:1b:98:1a:71:00:45:ca:c3:8a:c2:d0:7a:
c8:74:ff:cf:7d:94:16:85:99:47:48:d7:42:5d:dd:
09:e8:cf:ef:81:3a:ba:af:a7:07:2b:c6:33:9c:46:
6a:fb:0b:f0:20:3a:35:18:65:cb:3f:7d:0e:a8:7f:
1c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E2:D6:46:43:6B:06:05:DD:E5:1F:C3:55:BF:D9:0F:C8:C5:76:13
X509v3 Authority Key Identifier:
keyid:94:DB:4B:1E:9E:D6:8B:B5:C3:32:28:AE:30:E9:CD:D2:52:B3:2F:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20f805-df63-4631-99bd-a256177739c6/1/lNtLHp7Wi7XDMiiuMOnN0lKzL7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:ec:9f:6d:e9:8d:c6:af:40:4e:78:76:56:66:70:d6:2f:fd:
86:8e:37:be:ae:4d:c6:63:0f:d2:16:75:44:7b:da:9b:92:8f:
99:9e:3d:01:26:66:b1:13:ec:3a:f0:8f:de:22:16:df:1c:cc:
12:52:ac:45:52:44:36:d0:88:3b:9a:78:46:68:7c:b3:7b:36:
ae:2a:86:cd:22:ba:a2:62:e1:df:82:b3:b4:9f:47:65:d3:05:
ce:d3:69:9b:ae:3d:cb:a4:0e:87:23:7b:61:d7:af:23:73:a5:
97:f1:22:4b:06:57:db:7b:d2:65:69:0e:23:7f:0a:ef:29:22:
70:ad:e4:18:ae:e0:54:ba:e3:41:60:59:c1:d1:45:a9:dc:76:
39:ac:03:e1:6c:50:05:17:31:37:a8:34:5c:56:bc:85:ca:fd:
32:08:4f:28:9f:cf:78:9b:60:a5:98:d4:e5:3a:f7:4e:cf:21:
cb:aa:55:6a:54:d2:4c:06:ee:6e:b3:d0:ee:3f:36:b8:d7:66:
50:5c:87:8d:28:a2:c0:73:35:96:0f:1d:15:2e:1a:43:53:72:
f7:d3:98:a4:04:ab:8b:0d:f2:40:97:80:b6:41:79:f7:5f:d9:
d4:f3:33:91:24:4e:2a:24:17:e6:b5:b0:d9:cd:e5:3b:30:6c:
f1:85:3e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:39:03 2026 by rpki-client