Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
File: lkptHqRrxAuqMavE9ByQZn7-Nu0.mft (raw, json)
Hash identifier: 5g7Mrvn3NOw+O+zOCB3WD/W1FPNxKFzNe8/7mXisS0I=
Subject key identifier: 7E:B3:2F:35:4F:77:0F:E6:F2:29:8E:C4:2C:6F:0B:B1:CA:DD:4D:7C
Authority key identifier: 96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
Certificate issuer: /CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Certificate serial: 019D98F4245871EE5525467A296DB821DCFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
Manifest number: 098D
Signing time: Fri 17 Apr 2026 01:00:30 +0000
Manifest this update: Fri 17 Apr 2026 01:00:30 +0000
Manifest next update: Sat 18 Apr 2026 01:00:30 +0000
Files and hashes: 1: lkptHqRrxAuqMavE9ByQZn7-Nu0.crl (hash: 4SuIKvUIfk0AOZb1Pxt8HV/RgEIoJhpvVYSr7OSo3PI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:24:58:71:ee:55:25:46:7a:29:6d:b8:21:dc:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=964a6d1ea46bc40baa31abc4f41c90667efe36ed
Validity
Not Before: Apr 17 01:00:30 2026 GMT
Not After : Apr 18 01:00:30 2026 GMT
Subject: CN=7eb32f354f770fe6f2298ec42c6f0bb1cadd4d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:19:d5:a0:85:42:cb:30:ac:3f:83:12:4a:d5:
82:c4:77:48:d7:c4:0a:da:12:16:62:d0:5b:17:53:
df:41:43:c9:63:bf:f1:63:2d:7c:28:66:42:dc:51:
4b:1b:56:72:bd:8f:b1:97:1a:33:7f:52:b5:45:dd:
00:d0:b3:ce:26:1d:65:83:d8:4f:9b:56:09:9d:28:
79:9f:b8:60:e1:a8:b9:78:c8:97:12:8b:f7:98:0f:
28:2a:41:e3:e9:18:69:52:e5:8f:e9:ab:a0:18:d6:
08:df:87:14:56:6b:0f:7e:0e:f4:6f:62:86:54:60:
ba:b7:7d:22:54:de:ce:fc:ed:b6:62:fa:d7:0b:28:
a9:ce:92:18:2a:84:a6:63:57:fd:44:28:a5:10:d8:
8e:fe:20:07:a8:00:cb:2e:22:f9:0c:7a:91:b8:a1:
30:3a:4a:6f:7a:8c:6c:2f:40:c8:22:77:36:f7:1b:
71:11:7b:59:55:48:a2:08:c5:c9:be:1d:b0:d8:6b:
8e:b3:7a:49:8f:89:8e:92:ab:15:9a:34:f5:11:da:
fa:b2:12:fd:f5:e7:9a:18:10:3b:90:f9:f0:c4:aa:
12:33:df:b1:51:d7:ef:6e:c4:71:d3:7f:06:05:d2:
44:08:cb:db:f4:1b:10:92:fa:97:37:a2:75:b4:34:
79:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B3:2F:35:4F:77:0F:E6:F2:29:8E:C4:2C:6F:0B:B1:CA:DD:4D:7C
X509v3 Authority Key Identifier:
keyid:96:4A:6D:1E:A4:6B:C4:0B:AA:31:AB:C4:F4:1C:90:66:7E:FE:36:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkptHqRrxAuqMavE9ByQZn7-Nu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/edc41e-352e-412b-9ae6-a0951ef7dfcd/1/lkptHqRrxAuqMavE9ByQZn7-Nu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:ca:f0:a3:7b:ff:c2:26:cb:07:97:2a:35:64:04:6a:fa:10:
04:f9:d6:9b:d0:d1:28:3d:38:5c:be:6d:f7:86:f0:3e:5c:91:
d3:1e:94:df:93:f4:8e:b1:ea:2e:aa:8b:73:28:07:b0:3d:d2:
96:be:a2:8c:a7:4c:e7:4d:9c:b9:bd:09:79:46:ad:b1:e3:0c:
78:6f:25:6e:69:44:d5:9f:36:e9:72:f8:75:0f:0a:64:d6:0d:
eb:b2:18:cd:74:48:ee:08:b5:91:b6:17:ae:d3:ac:5d:77:44:
a5:12:19:24:c7:84:80:95:e7:b9:ed:dd:22:91:ba:49:a5:61:
aa:92:13:af:3d:06:09:14:22:3a:1e:1c:41:43:58:bd:2f:ba:
02:d1:db:bb:48:7f:8c:d4:d5:bb:3b:0f:e3:1e:55:3c:37:1a:
25:e1:e8:d0:32:d0:f3:0a:66:3f:01:a1:a4:32:3b:3e:d2:17:
8a:44:fc:92:d0:cc:70:8d:85:83:aa:54:39:ab:bd:1d:6a:00:
56:06:a3:d2:fc:88:1a:fd:8e:42:2f:0c:84:70:79:8d:f1:10:
79:b9:d1:ab:63:a0:43:0b:4b:8c:7b:55:1d:7a:45:36:e2:5a:
12:82:b8:54:ed:39:e3:4e:cb:e2:c4:93:6f:63:97:86:19:8e:
24:df:0a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:48:44 2026 by rpki-client