Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
File: LrlwnvMbddaOIgiqvyosPD2Hb8E.mft (raw, json)
Hash identifier: FHHa0JMUbzT+kEUARXqwu//lhiYL3pgjy6bRK6vgrlk=
Subject key identifier: 72:07:BF:94:0F:0D:50:64:40:FB:9C:E0:C6:85:28:62:D0:DF:CB:7D
Authority key identifier: 2E:B9:70:9E:F3:1B:75:D6:8E:22:08:AA:BF:2A:2C:3C:3D:87:6F:C1
Certificate issuer: /CN=2eb9709ef31b75d68e2208aabf2a2c3c3d876fc1
Certificate serial: 019CABD97833B19AC1E6482ADB8E835A92D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
Manifest number: 1844
Signing time: Mon 02 Mar 2026 00:01:21 +0000
Manifest this update: Mon 02 Mar 2026 00:01:21 +0000
Manifest next update: Tue 03 Mar 2026 00:01:21 +0000
Files and hashes: 1: LrlwnvMbddaOIgiqvyosPD2Hb8E.crl (hash: 72hZr8tDvZ8YUU/1JpMMEFGeXFfq12CT3JYy7hirH+g=)
2: xE7QTqbNdhn5gknQPHHkIzofK-E.roa (hash: llDvi2taRSF2NctjRtmwTyGFIoc+gbx6y6MnqNFwqu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:78:33:b1:9a:c1:e6:48:2a:db:8e:83:5a:92:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eb9709ef31b75d68e2208aabf2a2c3c3d876fc1
Validity
Not Before: Mar 2 00:01:21 2026 GMT
Not After : Mar 3 00:01:21 2026 GMT
Subject: CN=7207bf940f0d506440fb9ce0c6852862d0dfcb7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:19:85:b0:bb:6b:2e:12:1d:8f:d9:14:c0:0a:
96:00:15:ad:31:02:3c:db:98:53:a5:cb:ca:64:3d:
26:84:7e:c9:39:30:07:33:49:41:6c:0b:a0:01:ad:
0f:e9:c7:30:81:f7:77:23:4c:06:42:d4:45:29:79:
b1:24:60:04:d5:18:36:b1:2e:8e:b9:51:a6:5c:6c:
fd:37:fd:37:c1:da:5e:3b:9e:eb:d3:ba:94:4d:fc:
74:df:a2:a0:15:33:1d:12:bf:cd:78:06:cd:fb:c8:
83:69:d4:f9:8f:88:b5:20:70:33:79:20:fc:03:46:
46:09:29:1a:ed:fe:4d:ea:09:87:8c:23:84:99:7a:
65:91:2d:5e:31:2e:f3:d7:d9:7c:56:86:c9:b1:ca:
c7:c9:c1:d6:41:a1:e4:2f:70:26:f3:a8:b7:92:c7:
d4:71:9d:cb:09:f7:73:70:a4:cd:c7:93:4a:43:fe:
33:42:0a:9d:e4:4d:ec:5a:15:2a:32:90:70:09:92:
67:5e:41:c3:14:04:d0:60:cc:ba:5f:54:9c:a1:46:
78:4e:90:66:16:31:93:0c:e1:ee:80:ee:67:3c:ac:
dd:97:5b:1d:28:b0:1e:ab:72:3f:fc:34:79:ee:72:
ac:2b:d6:b3:12:47:2d:a5:c8:72:46:95:a2:38:59:
75:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:07:BF:94:0F:0D:50:64:40:FB:9C:E0:C6:85:28:62:D0:DF:CB:7D
X509v3 Authority Key Identifier:
keyid:2E:B9:70:9E:F3:1B:75:D6:8E:22:08:AA:BF:2A:2C:3C:3D:87:6F:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LrlwnvMbddaOIgiqvyosPD2Hb8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8d3c3b-6069-4cd1-89b1-cec35c453c5e/1/LrlwnvMbddaOIgiqvyosPD2Hb8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:50:a3:11:00:20:52:d5:fb:a6:1c:90:c8:a7:e9:49:28:bd:
cd:fa:b6:c1:3b:29:29:4e:d0:5c:c8:03:37:3f:05:99:0d:17:
c5:26:a9:d6:18:3a:0f:98:2b:b1:42:54:e9:50:57:52:99:32:
95:86:bd:3a:48:27:5e:a2:ba:b9:a8:16:83:18:07:e5:f5:9f:
bc:31:2a:c0:62:5c:4d:3a:3f:a1:e9:1f:07:25:7b:bb:b8:92:
d8:b8:64:3a:c9:be:29:14:63:44:8e:ad:7e:c1:75:11:99:a3:
02:a7:5f:fc:bb:18:4d:27:00:13:0e:a3:93:7c:d0:aa:52:34:
05:3a:7f:ed:38:c0:03:09:d0:47:c3:93:92:52:4b:49:c6:52:
ea:b5:7c:8e:3b:24:ea:4a:cf:2c:79:0b:45:2d:9d:61:55:c1:
66:c5:63:70:d4:ac:e3:e6:aa:34:fe:44:52:97:1f:62:b6:47:
cb:30:ab:6f:9a:a4:67:71:c7:96:9e:7f:c8:6b:02:ca:a1:aa:
b6:9a:01:97:57:56:f5:e0:88:c7:06:8a:58:4c:e4:f3:6a:6b:
fd:15:86:7b:4c:0d:a5:73:8f:e2:5b:43:10:e1:10:8b:28:e1:
94:11:cf:75:fa:c5:04:4b:69:6e:2f:6e:7d:60:b9:de:44:3f:
fc:c5:33:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:58:21 2026 by rpki-client