Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
File: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft (raw, json)
Hash identifier: ZNlCHarnQBZEP3gzX+ZsmyrIL8Ae/tT3JIrgQs9lQVo=
Subject key identifier: 82:B0:15:39:F1:EB:A3:79:4D:D2:0B:45:0A:48:3C:37:DC:40:09:7D
Authority key identifier: 94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
Certificate issuer: /CN=94d161593da815cac58d3479652d048480d26713
Certificate serial: 019D992B7BB273933E46B388FCB662054110
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 02:00:56 +0000
Manifest this update: Fri 17 Apr 2026 02:00:56 +0000
Manifest next update: Sat 18 Apr 2026 02:00:56 +0000
Files and hashes: 1: NMR7KZn1Z_LDb0FIsWed94Of3O8.roa (hash: UuPG/G90OEoV3EyjWzry/XA+lmqTIoigWKSMDTb4YCw=)
2: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl (hash: GRV1cOiEmeaLhJYjXoOaz6idsh43oFpN8NGlv/VxS6I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:7b:b2:73:93:3e:46:b3:88:fc:b6:62:05:41:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d161593da815cac58d3479652d048480d26713
Validity
Not Before: Apr 17 02:00:56 2026 GMT
Not After : Apr 18 02:00:56 2026 GMT
Subject: CN=82b01539f1eba3794dd20b450a483c37dc40097d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4c:8d:f1:b2:8e:a4:26:ab:3a:dc:56:1e:3b:
ec:c0:7c:8f:81:78:7f:fa:9a:73:be:8c:78:d2:8f:
0d:08:28:15:13:ca:a0:cd:56:5f:3d:40:c6:68:c1:
95:ff:79:12:2c:c5:cc:6f:14:11:1b:6f:85:c2:23:
cc:0d:23:50:2c:b6:d5:95:4f:36:c7:bb:65:9c:1e:
c7:a4:5f:41:a8:f8:58:e5:b4:bc:05:cb:83:5c:fc:
21:53:42:43:6a:05:85:a7:38:98:fd:3d:46:64:7b:
76:db:16:0f:00:1b:63:42:95:ad:05:2e:7c:2f:d5:
9d:fd:de:64:e7:ce:1a:ac:0d:0a:10:3a:61:1e:5b:
9c:fb:e7:b4:4a:fc:41:53:9a:52:f0:3e:9d:1d:e3:
ca:99:98:c9:af:2e:cd:9e:f6:f9:23:6a:f9:e2:bb:
0e:87:8d:fc:bb:62:65:a2:ee:58:60:59:25:3b:cb:
8f:ea:e1:d5:e0:1d:7c:da:85:9e:03:7e:cf:cb:ad:
b4:e7:6b:2f:07:72:66:fe:b5:b1:42:a5:b4:5d:84:
63:4b:0f:ff:3f:8f:d0:5c:31:bb:0b:c0:83:3f:64:
1a:41:01:4b:ff:bf:50:4d:39:9a:fb:ea:fb:de:ef:
f6:74:28:75:e7:fe:ae:b1:97:a4:27:2c:21:2a:cb:
a6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:B0:15:39:F1:EB:A3:79:4D:D2:0B:45:0A:48:3C:37:DC:40:09:7D
X509v3 Authority Key Identifier:
keyid:94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:d3:b4:81:04:9d:b2:72:6e:c7:44:db:ed:06:3d:57:fa:ee:
6a:ce:6c:b6:11:1a:a6:79:77:e0:f0:e6:68:d7:f2:14:47:74:
02:d7:36:46:5a:50:98:24:73:cf:52:7e:39:f1:2c:33:74:c9:
f6:dd:0e:00:4e:dc:2a:55:ee:d2:8f:59:3c:a8:9b:cf:15:63:
c3:65:05:d3:37:8e:59:7b:6c:5c:59:a8:27:d9:4d:cc:b8:e8:
6c:1d:84:09:47:ad:c2:c8:3d:30:75:b4:26:e3:d7:85:17:de:
25:f4:00:07:9c:7b:71:0a:85:53:ba:09:1c:cf:0a:19:68:36:
4f:0e:a1:5c:5d:97:6b:87:91:be:24:b0:68:fa:9b:20:01:9d:
c9:c8:f7:98:9c:7c:c4:3c:7b:da:27:70:25:e0:9c:ee:e2:dd:
8a:ee:a4:5a:54:b1:a6:43:11:01:5c:42:7b:4b:c9:9e:4d:a2:
12:04:a7:e6:d2:6a:07:be:c2:4b:d3:b6:10:ad:b0:cd:71:62:
8c:09:2c:6f:3f:77:7a:95:b1:cb:d4:5d:45:11:6d:03:37:28:
9b:33:a0:e2:e2:e6:1d:6b:9b:c8:d3:48:f3:66:bf:52:52:1c:
63:2e:a3:41:9f:7d:78:54:15:13:8b:af:8f:4c:64:e2:83:ed:
bd:48:b6:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:34:44 2026 by rpki-client