Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.mft
File: LKw-jWOxw6_HxsC_2p1ayBe27m0.mft (raw, json)
Hash identifier: bwI9Iz41KGpxYsRBhT1Wj+brW3UiIFT+Sjnteoyl0SE=
Subject key identifier: 01:CB:14:95:30:4C:E4:31:86:40:C0:F6:FC:8C:ED:88:47:AB:89:31
Authority key identifier: 2C:AC:3E:8D:63:B1:C3:AF:C7:C6:C0:BF:DA:9D:5A:C8:17:B6:EE:6D
Certificate issuer: /CN=2cac3e8d63b1c3afc7c6c0bfda9d5ac817b6ee6d
Certificate serial: 019D9A3EC1518E433DC214169C7534DA5D3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKw-jWOxw6_HxsC_2p1ayBe27m0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.mft
Manifest number: 129E
Signing time: Fri 17 Apr 2026 07:01:37 +0000
Manifest this update: Fri 17 Apr 2026 07:01:37 +0000
Manifest next update: Sat 18 Apr 2026 07:01:37 +0000
Files and hashes: 1: LKw-jWOxw6_HxsC_2p1ayBe27m0.crl (hash: kwLdZF+x+lYRrrEoV1iz8wSFJsQkdN3xjEU09x/iYR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKw-jWOxw6_HxsC_2p1ayBe27m0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:c1:51:8e:43:3d:c2:14:16:9c:75:34:da:5d:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cac3e8d63b1c3afc7c6c0bfda9d5ac817b6ee6d
Validity
Not Before: Apr 17 07:01:37 2026 GMT
Not After : Apr 18 07:01:37 2026 GMT
Subject: CN=01cb1495304ce4318640c0f6fc8ced8847ab8931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:89:ae:d5:4c:93:a2:78:4e:1c:d7:4e:ee:8c:
46:77:83:de:1e:00:9c:5e:33:58:70:88:c1:ab:e2:
cb:d7:29:e3:6d:40:b0:7d:3a:59:63:73:e1:e2:32:
5e:86:28:69:46:9b:21:c6:f2:8d:57:a5:9e:a6:2b:
c5:46:b4:fc:59:50:9f:65:4f:fc:7d:8e:1a:eb:d1:
c4:09:e4:1c:bd:44:4f:2f:9f:80:6d:91:df:8f:89:
e7:1d:b9:2f:13:70:49:4e:4c:61:56:38:7d:83:34:
37:c1:0b:c6:d4:f9:1c:a4:15:69:77:77:9c:df:f8:
9b:63:29:99:56:f2:0b:2f:57:c1:ef:70:0a:89:1c:
7e:41:6a:9f:21:66:aa:3d:03:9e:4e:d9:e5:a3:c3:
95:39:8e:f8:dd:fb:33:dc:15:09:a1:e4:0b:1d:ac:
12:7e:15:0c:9c:2e:25:37:f3:15:24:89:e1:33:53:
f5:f7:cf:ba:f1:a3:99:08:fc:b9:7c:79:96:b5:6c:
17:3e:ce:1e:f6:b2:18:0f:19:31:f8:7c:b0:7a:d1:
b4:f3:d2:72:53:2b:ff:7e:c4:47:7f:ac:5c:1b:62:
da:1c:88:59:47:f1:49:05:1a:eb:68:70:a9:5c:a2:
68:3d:cd:26:f9:18:d2:65:9b:8a:a8:37:bc:ad:3a:
9a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:CB:14:95:30:4C:E4:31:86:40:C0:F6:FC:8C:ED:88:47:AB:89:31
X509v3 Authority Key Identifier:
keyid:2C:AC:3E:8D:63:B1:C3:AF:C7:C6:C0:BF:DA:9D:5A:C8:17:B6:EE:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKw-jWOxw6_HxsC_2p1ayBe27m0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:ad:1b:0e:a5:fc:5e:b4:c8:60:d8:18:76:44:e9:1a:79:91:
23:8a:1f:b9:82:0c:3f:7e:34:99:dc:ae:14:86:51:05:ec:36:
0e:76:f6:be:3a:1b:5d:54:71:f5:cf:19:77:d1:54:77:43:81:
9a:ed:1a:29:13:16:92:d8:7a:97:8a:1d:11:27:b5:2b:df:8d:
44:e7:b1:5d:76:d9:48:b2:27:a7:90:10:98:d2:34:cb:f3:9c:
ca:9f:1a:4c:21:6c:08:db:ba:73:4c:b3:16:e2:ef:04:1a:38:
d8:1d:12:66:c1:b2:87:8f:5f:77:e0:7a:b2:7a:b6:d1:da:5a:
8e:b3:47:cb:c9:0c:45:0f:a0:d7:6c:72:7b:41:8c:a6:ba:ab:
e3:ee:be:66:17:e8:1d:b3:9b:60:e0:7e:b6:68:06:76:1d:b8:
52:02:cf:3a:13:f3:c0:61:96:49:ab:d5:78:08:f2:64:ef:bb:
4f:1a:9a:4e:71:cc:9b:07:4b:88:04:63:98:09:6b:fc:d2:f2:
8f:7c:26:46:bb:47:f3:3e:ad:ef:0a:63:a3:46:f5:98:2a:ae:
d7:45:aa:e0:af:97:d8:9c:97:8a:d9:70:1e:94:12:02:1e:9f:
eb:02:6e:4f:86:50:b0:4c:8a:60:84:6b:b2:49:89:fe:8c:5c:
28:01:db:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:52:08 2026 by rpki-client