Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
File: LrlwnvMbddaOIgiqvyosPD2Hb8E.mft (raw, json)
Hash identifier: +qCyjQPls0z8W2FNrwq+l5QdHY6sGuaj3wFhsSurXPM=
Subject key identifier: 03:E0:EC:00:2D:EC:61:B5:B7:D4:46:B3:95:AA:E8:A9:54:8C:AE:E4
Authority key identifier: 2E:B9:70:9E:F3:1B:75:D6:8E:22:08:AA:BF:2A:2C:3C:3D:87:6F:C1
Certificate issuer: /CN=2eb9709ef31b75d68e2208aabf2a2c3c3d876fc1
Certificate serial: 019DA309E0338D5C501401DCEFC9DCD1A117
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
Manifest number: 18C4
Signing time: Sun 19 Apr 2026 00:00:26 +0000
Manifest this update: Sun 19 Apr 2026 00:00:26 +0000
Manifest next update: Mon 20 Apr 2026 00:00:26 +0000
Files and hashes: 1: LrlwnvMbddaOIgiqvyosPD2Hb8E.crl (hash: GrczZh8LC11DJSZJnFnWxHDmpyPqs59864AINdJR9co=)
2: xE7QTqbNdhn5gknQPHHkIzofK-E.roa (hash: llDvi2taRSF2NctjRtmwTyGFIoc+gbx6y6MnqNFwqu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:09:e0:33:8d:5c:50:14:01:dc:ef:c9:dc:d1:a1:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eb9709ef31b75d68e2208aabf2a2c3c3d876fc1
Validity
Not Before: Apr 19 00:00:26 2026 GMT
Not After : Apr 20 00:00:26 2026 GMT
Subject: CN=03e0ec002dec61b5b7d446b395aae8a9548caee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f4:9f:4c:ff:42:6a:d4:2c:a8:2b:df:00:18:
fd:a9:94:3b:2d:36:09:a7:ef:8b:d9:3f:cd:fc:20:
9b:a3:e2:55:44:69:6b:ce:c7:50:86:90:83:d9:a1:
05:e0:7e:f3:8d:17:de:54:b9:e0:12:3a:bd:e7:72:
f8:0a:b6:ed:3c:d4:18:8e:76:3f:f5:08:47:95:d6:
2b:bc:3c:1a:a6:30:18:1c:77:a0:03:d3:9b:7c:b5:
1a:92:9e:29:bf:3c:8d:66:79:d7:6b:16:3d:42:26:
37:c5:1b:9a:68:84:5f:97:a4:2e:25:df:40:81:2f:
b7:c3:0e:3d:12:88:3a:4c:0e:23:69:ce:e1:6b:ae:
09:fb:3e:af:66:5e:39:8a:a7:b7:b4:b3:ae:19:fc:
a3:b2:e0:3d:fc:d3:fd:36:6b:76:50:d7:63:19:05:
9e:d4:6c:da:5e:e5:ec:33:72:bc:55:ec:97:f2:1f:
df:0d:2a:fe:a7:cc:45:32:c6:ef:74:0d:b7:a8:77:
e6:34:81:bc:79:ca:3b:2d:0a:e0:5a:f8:7d:f6:22:
17:88:9e:e7:8f:91:1c:2c:0d:8e:6d:0c:0c:90:8f:
85:cd:3d:0e:dd:a1:7a:f0:fa:83:59:26:90:1b:ca:
98:7d:93:01:86:11:37:55:fe:13:55:4c:73:47:ee:
30:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E0:EC:00:2D:EC:61:B5:B7:D4:46:B3:95:AA:E8:A9:54:8C:AE:E4
X509v3 Authority Key Identifier:
keyid:2E:B9:70:9E:F3:1B:75:D6:8E:22:08:AA:BF:2A:2C:3C:3D:87:6F:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:f3:3e:a4:b2:83:13:5d:9a:ee:f3:6d:e0:bc:4b:f4:9a:35:
34:20:c5:1a:d1:16:43:ee:27:df:db:c3:d0:22:52:34:f4:bc:
b9:b0:b6:0b:6c:78:3e:36:a2:39:81:d6:8a:e0:f0:ad:2c:81:
47:36:98:67:ee:19:9f:cf:5c:bc:c8:5f:48:13:bc:a3:80:0b:
60:bc:93:cc:a2:9d:1e:5b:0b:45:61:a4:a0:dd:e9:7b:8e:23:
11:0b:45:e0:ca:f6:b5:30:65:9e:43:4c:3b:c9:d0:e9:98:86:
e2:11:5d:1a:0a:be:28:c6:fd:8e:17:38:7b:8f:bc:d7:af:13:
d6:86:8b:02:bb:24:af:26:00:79:38:73:ed:3e:be:f0:f2:c9:
0d:7c:14:a6:99:06:7e:df:a9:a9:30:1d:dc:37:cc:0e:37:86:
80:dc:14:50:08:d0:1c:eb:75:8a:8f:e8:1d:1f:54:18:48:3c:
78:37:d5:95:99:c5:95:38:dc:8b:e3:17:53:3e:97:ad:3a:d7:
ac:fd:49:6a:d4:2e:c4:4c:2b:1a:45:12:9d:43:63:d1:95:e1:
9d:00:dc:e0:05:28:0b:45:90:20:e1:9e:9c:39:1a:78:15:fc:
7a:4d:49:99:c8:ba:9e:ae:26:0a:4c:1a:a9:32:48:9f:20:fc:
36:cc:a4:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:03:54 2026 by rpki-client