Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: DAqwXF4QX2c+P9uNK6jhtJR031bPzJHiinDxmcAORvU=
Subject key identifier: 26:19:50:E1:4A:35:80:94:43:AB:A1:DB:CD:DB:5E:E7:4C:39:4B:7A
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 019CAC102B38C59A9906C0D7C67A974E0D31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 01:01:06 +0000
Manifest this update: Mon 02 Mar 2026 01:01:06 +0000
Manifest next update: Tue 03 Mar 2026 01:01:06 +0000
Files and hashes: 1: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: zM4P6tfzzooMjLs9s0jaPVLn3DnPmIEkOuVDaKLjgdA=)
2: tz4P9nF3Ei3wUS8VYP6Gfwtlguc.roa (hash: WI+TvaMT1Y9cC04iUl0U1l9xEwrwqSAkBoEDvp55Sj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:2b:38:c5:9a:99:06:c0:d7:c6:7a:97:4e:0d:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Mar 2 01:01:06 2026 GMT
Not After : Mar 3 01:01:06 2026 GMT
Subject: CN=261950e14a35809443aba1dbcddb5ee74c394b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:be:b2:6b:f4:30:7b:3b:91:b0:6c:43:3f:78:
fd:f9:7c:83:8f:f7:6e:45:60:2e:cb:0d:24:a3:40:
88:86:dc:54:f4:10:94:61:b1:4e:a0:4e:23:b0:72:
cf:15:bc:a5:f6:47:d5:eb:42:af:7c:a8:24:bb:b2:
f8:d0:4f:b4:47:1a:b3:ef:4c:da:cf:46:d9:aa:8f:
30:b7:fd:9e:3e:c8:83:a3:1c:0e:71:64:55:2a:64:
62:c0:45:75:a9:fe:d3:6b:a4:ea:05:1f:a9:17:24:
76:e7:39:4c:e6:83:1d:8a:dc:10:40:0f:05:f8:f5:
28:c7:93:b5:f3:10:bd:f6:29:2a:e7:e4:bc:81:d5:
df:c9:96:50:2a:9a:12:d8:07:19:b0:4b:0a:86:28:
e6:34:af:70:0c:bf:d3:dd:c4:72:e7:15:7b:05:85:
e7:d3:90:5b:51:92:f5:bc:a7:a8:01:0b:cc:a2:72:
b6:29:c2:74:ea:1c:42:77:22:c0:e4:27:5c:32:3d:
76:88:8a:94:b9:6e:6e:6f:03:f0:41:38:45:52:8b:
35:bf:76:22:9d:a0:7d:8e:61:16:fa:3b:25:e5:fb:
21:64:37:3f:2c:21:82:c4:d0:96:3c:96:82:8a:0d:
94:5f:ee:c4:6d:8f:2a:26:a3:27:72:9a:b3:eb:eb:
63:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:19:50:E1:4A:35:80:94:43:AB:A1:DB:CD:DB:5E:E7:4C:39:4B:7A
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:4f:5a:77:b8:87:72:12:d3:53:61:eb:74:8a:5a:61:34:d7:
b0:1d:b6:2f:82:58:78:61:9f:0b:2c:1d:d5:37:6a:f7:69:63:
26:00:10:f9:00:63:88:52:5a:50:f2:99:92:06:e6:5e:b8:2b:
ee:be:ba:85:a5:9f:f1:d5:73:93:99:09:5c:73:cd:ee:f9:df:
40:50:10:ee:fe:5f:23:50:1a:07:3e:42:b0:1b:17:22:ac:7d:
37:c2:5d:ae:fa:81:a1:7e:a2:7a:46:ab:d1:99:8c:33:76:fb:
37:f1:80:89:8d:96:6d:01:c6:0f:03:8b:42:bf:c6:20:eb:33:
6c:ea:b0:d9:a1:af:30:77:e1:d7:82:b9:b7:32:b8:c5:95:7c:
05:fb:89:d5:d8:3f:34:0d:c5:54:4b:71:03:73:b1:a5:89:a5:
1c:07:c7:9f:29:d4:e1:8c:60:c3:b5:2d:82:63:a5:42:e8:03:
e6:56:ce:36:14:3e:45:f8:3e:94:93:cb:eb:16:65:4d:b9:65:
0c:61:27:26:8c:a6:72:de:28:b8:43:c1:4e:1b:62:1c:28:e0:
78:c7:72:ce:59:67:5f:f8:74:fd:90:82:d5:74:6c:59:76:db:
48:32:ef:7d:6f:04:e4:be:66:c6:74:42:7d:8a:e1:14:2b:b1:
94:e5:ef:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:34:33 2026 by rpki-client