Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
File: LofD1fRf7zjBBbk91E3ST1vuYOc.mft (raw, json)
Hash identifier: X7Xi6C3CzVYnu2Rjpcw3Ere1PMcSMn4oejkY3bPPLao=
Subject key identifier: 3D:01:C6:A7:C6:CD:0A:33:B2:EE:A7:28:30:87:24:B3:05:9C:90:C9
Authority key identifier: 2E:87:C3:D5:F4:5F:EF:38:C1:05:B9:3D:D4:4D:D2:4F:5B:EE:60:E7
Certificate issuer: /CN=2e87c3d5f45fef38c105b93dd44dd24f5bee60e7
Certificate serial: 019CA94639249BBEBDF96FE73C411FEDC6EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
Manifest number: 1095
Signing time: Sun 01 Mar 2026 12:01:17 +0000
Manifest this update: Sun 01 Mar 2026 12:01:17 +0000
Manifest next update: Mon 02 Mar 2026 12:01:17 +0000
Files and hashes: 1: LofD1fRf7zjBBbk91E3ST1vuYOc.crl (hash: 6yRGLWlhsrIZt5ETWlQRec5e9BaASIhkzF1SXgMhYUQ=)
2: vOnxOMMrfpwbYLXufIu9cPksSy4.roa (hash: IsBbUWUF1mmSkEzKlpo4wlrGY8DDapfkAU0NxfyEIwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 12:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:46:39:24:9b:be:bd:f9:6f:e7:3c:41:1f:ed:c6:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e87c3d5f45fef38c105b93dd44dd24f5bee60e7
Validity
Not Before: Mar 1 12:01:17 2026 GMT
Not After : Mar 2 12:01:17 2026 GMT
Subject: CN=3d01c6a7c6cd0a33b2eea728308724b3059c90c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:aa:13:b2:48:c6:da:77:b9:da:6b:5a:5e:4f:
13:f4:33:33:81:cb:02:cb:17:fd:1d:db:76:b4:b3:
ad:36:d7:4d:1d:72:ad:cf:99:dd:72:15:0d:d2:04:
47:f8:e9:7c:bd:e1:15:14:61:01:02:4d:49:6b:68:
c7:50:c8:00:e6:64:37:2d:19:50:4d:8f:6a:79:85:
35:ee:30:d3:f4:91:16:8a:b7:a2:fe:da:42:ee:55:
db:2a:02:9e:29:34:cd:55:45:4b:4a:84:65:b0:d9:
58:0a:77:1a:a7:9d:88:1d:56:36:58:68:af:6c:73:
94:9d:a8:d0:ed:0d:62:e1:7c:44:38:75:58:ba:d0:
22:05:42:21:25:b2:6a:35:cc:fc:ac:58:a2:6e:26:
a1:5d:07:08:95:fe:16:bc:f8:f7:1d:fd:f2:52:ad:
f5:59:ae:0f:00:77:c0:a9:67:04:d7:57:1d:ac:7b:
af:8f:27:34:34:9e:b5:94:ad:bb:d5:f0:68:03:c7:
0e:ea:50:2e:1b:e5:35:74:65:77:a2:df:3f:4f:b0:
1a:56:0c:d9:2f:fe:f4:6a:9d:0e:67:53:7d:c2:68:
f8:b3:39:39:65:9e:0f:8b:6d:7a:b0:82:7f:e5:67:
90:df:5d:69:88:dc:cd:7d:22:35:54:c2:7b:65:fc:
a5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:01:C6:A7:C6:CD:0A:33:B2:EE:A7:28:30:87:24:B3:05:9C:90:C9
X509v3 Authority Key Identifier:
keyid:2E:87:C3:D5:F4:5F:EF:38:C1:05:B9:3D:D4:4D:D2:4F:5B:EE:60:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LofD1fRf7zjBBbk91E3ST1vuYOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3b58d8-6d94-4302-aa91-7c2bd984d735/1/LofD1fRf7zjBBbk91E3ST1vuYOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:31:e2:67:7f:5e:34:b8:73:99:0c:e8:ac:89:a3:82:fa:47:
18:ee:4f:4b:1d:f9:62:80:9e:88:ef:06:da:4e:41:fd:85:18:
72:cb:9a:a8:1e:d7:08:05:aa:d8:d7:88:8a:68:02:76:16:fa:
12:bf:34:c8:1a:cc:d6:49:1a:6c:f4:0a:e4:0e:6c:19:44:f0:
61:4a:56:89:ab:32:46:63:d7:e3:4c:e3:57:d9:a6:c8:4b:3b:
bd:1d:6f:b9:df:dd:1f:26:cd:85:6f:4e:dc:67:43:ac:2c:33:
ee:e5:3d:c7:8f:f2:aa:87:ff:1b:47:44:2d:1f:6c:2c:b6:73:
f6:19:08:13:bf:a7:7d:3e:6a:f9:7f:29:9b:53:1f:47:c8:60:
6b:8e:e2:68:b4:45:eb:19:a4:15:32:96:cc:74:60:05:13:b2:
bb:f7:21:20:98:99:fd:83:b6:70:bd:61:2b:10:80:de:1a:1a:
66:e0:a0:d1:c1:50:68:c2:34:b7:08:08:a1:3a:60:e8:b7:68:
e3:7a:27:7d:14:ef:7a:bf:28:c0:0c:c6:39:58:6a:96:b1:3b:
8c:66:00:dc:98:d1:09:c4:6d:0f:24:57:64:f7:f8:e0:6a:e2:
2f:1c:4e:a9:92:dc:a2:d6:db:c6:fe:28:d2:e8:83:f6:a1:95:
f5:57:3b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:46 2026 by rpki-client