Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
File: LofD1fRf7zjBBbk91E3ST1vuYOc.mft (raw, json)
Hash identifier: MlJP4hIIcVmAjilSRYlzqrrgbeN3Bla4FZmbt4gCudw=
Subject key identifier: E6:54:DE:34:C7:51:C9:92:DA:D0:26:49:DC:B3:0B:39:82:B6:B9:0F
Authority key identifier: 2E:87:C3:D5:F4:5F:EF:38:C1:05:B9:3D:D4:4D:D2:4F:5B:EE:60:E7
Certificate issuer: /CN=2e87c3d5f45fef38c105b93dd44dd24f5bee60e7
Certificate serial: 019D98BDD063E2ACB34CA801C65A4ED18E12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
Manifest number: 1111
Signing time: Fri 17 Apr 2026 00:01:09 +0000
Manifest this update: Fri 17 Apr 2026 00:01:09 +0000
Manifest next update: Sat 18 Apr 2026 00:01:09 +0000
Files and hashes: 1: LofD1fRf7zjBBbk91E3ST1vuYOc.crl (hash: vYDtPh/+6iZz483lvsIZAZI0cGK40GMpS2pHhEsyxt4=)
2: vOnxOMMrfpwbYLXufIu9cPksSy4.roa (hash: IsBbUWUF1mmSkEzKlpo4wlrGY8DDapfkAU0NxfyEIwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:d0:63:e2:ac:b3:4c:a8:01:c6:5a:4e:d1:8e:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e87c3d5f45fef38c105b93dd44dd24f5bee60e7
Validity
Not Before: Apr 17 00:01:09 2026 GMT
Not After : Apr 18 00:01:09 2026 GMT
Subject: CN=e654de34c751c992dad02649dcb30b3982b6b90f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c0:bf:40:d3:2c:74:b3:aa:f8:a8:cf:d5:f1:
f1:73:cf:77:24:af:f2:1a:40:20:65:68:37:47:7b:
70:dc:41:cb:7c:d4:e2:45:13:e5:13:80:50:20:6d:
21:46:5a:a2:d5:7c:9e:5e:8e:85:63:7f:00:62:75:
cf:2d:9e:b2:52:17:14:76:89:58:e2:8f:77:9f:02:
78:31:ca:8b:fa:4b:9e:f0:5f:9a:19:04:f1:57:e0:
53:a3:f6:f7:b8:3b:f7:9e:a5:56:e2:28:74:28:fe:
1a:37:93:f5:2e:ea:a4:6b:12:10:d7:20:98:ec:e4:
b1:97:c1:e9:52:ad:b9:c1:3c:53:d5:b7:85:47:03:
18:de:bb:b4:1b:8d:3f:21:f9:55:06:ac:14:4c:74:
ef:97:7a:29:07:14:bd:b9:97:89:e1:29:de:72:58:
d6:e3:50:03:f1:9e:4b:32:43:28:31:c8:ff:84:f2:
0b:30:68:e0:9c:83:b2:99:57:62:6f:fd:58:eb:a5:
97:cf:36:5e:43:23:24:9f:85:62:22:81:50:e5:f8:
08:a6:d4:07:e3:95:8a:f8:d9:e5:97:f8:8f:8a:21:
43:1f:6f:d1:8f:10:6f:e4:41:b8:14:5c:19:8b:c1:
78:5a:a7:bc:37:19:26:30:ce:29:ea:b7:55:13:f6:
fd:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:54:DE:34:C7:51:C9:92:DA:D0:26:49:DC:B3:0B:39:82:B6:B9:0F
X509v3 Authority Key Identifier:
keyid:2E:87:C3:D5:F4:5F:EF:38:C1:05:B9:3D:D4:4D:D2:4F:5B:EE:60:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:b2:4d:eb:ec:60:b3:c2:a8:18:cd:db:78:60:86:7d:34:a9:
ae:a9:8c:6c:f5:9f:10:cb:82:f0:f1:24:b4:d9:45:15:29:38:
01:3f:4e:a2:c0:ac:35:a3:fa:c5:02:7d:c4:8d:d3:4c:a8:af:
ad:6b:9e:4e:8e:60:a6:16:83:e9:6e:d8:95:da:d2:c3:3e:25:
80:75:60:38:38:c2:24:78:ec:b1:90:66:2a:e5:22:09:6a:e6:
98:bf:00:20:7f:c1:62:84:db:46:a2:dc:0d:e5:23:c0:93:36:
7e:03:6b:a3:da:8c:8c:37:a2:12:de:31:c4:c0:42:36:da:f3:
c0:7b:30:9d:98:12:10:5c:fc:b3:15:51:5c:90:45:8b:2a:df:
93:e7:5b:ee:bb:6b:9b:8e:aa:54:66:1c:12:19:5a:01:c0:0c:
02:53:7a:47:b7:c5:de:65:15:56:5c:86:dc:d4:1a:2a:be:29:
06:f2:b1:5c:b5:e6:48:07:de:23:1c:a1:50:ef:24:98:b8:87:
b1:08:44:f9:5e:ba:ef:3b:14:ff:4b:1e:4b:87:53:58:90:78:
b6:d6:39:f4:c2:2c:76:4a:34:21:68:23:32:dc:01:87:7d:8a:
b4:17:00:eb:c3:7b:1c:6d:aa:e6:59:bb:b9:2d:d9:00:b3:1d:
d1:33:cf:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:54:33 2026 by rpki-client