Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
File: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft (raw, json)
Hash identifier: DJ0y8r2Quhu1wxJUxLyF0l5Rr5xCSpSV3JktN4xIlYE=
Subject key identifier: 5B:89:CD:5A:25:85:D2:D8:EF:39:8E:BA:46:25:82:72:46:F9:83:38
Authority key identifier: 94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
Certificate issuer: /CN=94d161593da815cac58d3479652d048480d26713
Certificate serial: 019CAD905E357A6257B828DC2AB62C5358B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 08:00:45 +0000
Manifest this update: Mon 02 Mar 2026 08:00:45 +0000
Manifest next update: Tue 03 Mar 2026 08:00:45 +0000
Files and hashes: 1: NMR7KZn1Z_LDb0FIsWed94Of3O8.roa (hash: UuPG/G90OEoV3EyjWzry/XA+lmqTIoigWKSMDTb4YCw=)
2: lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl (hash: PyQoxXcjyATxWhcBcssILFHy8Z/tl1HdrPE3lebSED0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:5e:35:7a:62:57:b8:28:dc:2a:b6:2c:53:58:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d161593da815cac58d3479652d048480d26713
Validity
Not Before: Mar 2 08:00:45 2026 GMT
Not After : Mar 3 08:00:45 2026 GMT
Subject: CN=5b89cd5a2585d2d8ef398eba4625827246f98338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cd:bd:d9:2b:ca:38:c1:5b:fe:71:91:02:cc:
8f:98:f9:8e:8d:96:f8:09:3b:cf:aa:2a:59:97:f7:
20:be:98:bd:71:23:c9:52:6b:cd:c6:59:87:a0:ae:
88:2d:05:51:d7:6d:0b:17:83:bb:c4:8e:eb:44:bf:
6e:6c:8e:2c:b0:a1:7f:53:e4:35:7b:3e:ac:35:45:
f9:84:fb:04:c4:ad:18:ea:85:36:5b:a0:a3:80:3c:
e8:42:b7:19:f3:57:37:c3:e7:c8:c5:01:96:6b:c7:
bd:ea:3f:b8:2e:72:cd:d0:b3:af:b5:1b:34:70:1c:
3b:3f:ec:39:d8:5a:59:34:e2:02:02:db:35:57:30:
1a:67:15:2d:0c:18:86:0c:9e:2f:db:1b:dc:ff:eb:
53:6b:f1:6f:44:06:ca:49:9a:89:29:ff:82:e3:8d:
63:5a:c2:b6:eb:22:5e:7e:01:b5:5d:bd:2f:03:22:
af:b4:fc:e5:53:66:39:be:80:34:be:8e:a3:8e:80:
54:81:44:dd:6d:ac:c8:1c:52:db:82:55:c0:43:fe:
73:5b:a5:61:f8:dd:f7:01:90:63:a7:1f:68:d0:5d:
a9:6b:36:0d:45:ba:76:12:ae:81:96:74:14:3f:21:
37:e9:2d:09:b9:b7:70:ed:5e:5c:dc:7b:fd:6a:87:
85:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:89:CD:5A:25:85:D2:D8:EF:39:8E:BA:46:25:82:72:46:F9:83:38
X509v3 Authority Key Identifier:
keyid:94:D1:61:59:3D:A8:15:CA:C5:8D:34:79:65:2D:04:84:80:D2:67:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/3c2956-df9d-4048-b011-d8e98b85aea4/1/lNFhWT2oFcrFjTR5ZS0EhIDSZxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:b7:40:6c:7a:6c:3e:75:0c:48:35:d5:a5:4c:11:76:2c:84:
b3:31:7c:c1:89:ef:ab:a6:f8:2a:d0:4a:10:d2:21:a8:cc:96:
09:17:b7:ab:71:fa:58:cc:da:7a:ef:9f:cc:60:61:38:c5:9a:
4a:47:b5:de:5d:f0:e0:4f:d1:2a:16:fb:01:8a:63:50:6d:e5:
99:46:a3:ad:b3:1a:97:77:16:a0:6b:79:31:88:8e:e9:c3:b0:
6a:d1:d6:27:91:eb:bb:6a:e7:1b:d4:8d:28:fe:45:94:0d:4c:
fe:0e:7c:56:22:14:b9:ec:34:9d:da:99:5b:43:87:0f:c4:64:
6b:0c:5f:bd:1c:ca:9f:d3:e2:b8:c0:b5:42:a2:25:8f:43:26:
51:b5:09:97:26:35:ce:2f:91:3c:e8:58:88:cd:80:63:3c:9f:
15:59:2a:26:e8:3c:e6:bb:44:74:48:80:14:ca:29:03:3a:f4:
f4:f6:db:1a:f5:94:f2:ff:5f:d3:9a:f8:89:f6:35:9b:da:e0:
13:76:f0:e2:ec:0e:4d:01:5b:29:9b:77:c0:79:cb:2b:e3:84:
81:d5:83:51:35:90:62:1d:15:9e:d9:39:c1:30:6c:f7:4e:3c:
ac:56:8c:65:20:24:bf:b5:07:bf:0e:95:18:a4:ed:b8:e4:e9:
61:db:1a:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:26:46 2026 by rpki-client