Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
File: lefcaIWMBglOD0Moi0hlibSD4_M.mft (raw, json)
Hash identifier: FBJ+gBLd36dmQIrig4fkyKRspnZPuNK9aZZRHP5LIwA=
Subject key identifier: 32:EF:B1:04:1D:91:A9:E4:26:85:ED:F7:D0:29:6F:B7:DF:AD:AB:EE
Authority key identifier: 95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
Certificate issuer: /CN=95e7dc68858c06094e0f43288b486589b483e3f3
Certificate serial: 019DA29CFAFDE4AD791354A39AB30A70BCC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
Manifest number: 0FE1
Signing time: Sat 18 Apr 2026 22:01:29 +0000
Manifest this update: Sat 18 Apr 2026 22:01:29 +0000
Manifest next update: Sun 19 Apr 2026 22:01:29 +0000
Files and hashes: 1: lefcaIWMBglOD0Moi0hlibSD4_M.crl (hash: D9veMsgtjgs7BB37VbWhPCo6cNGK465XJ4Jww5vjIyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 22:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:9c:fa:fd:e4:ad:79:13:54:a3:9a:b3:0a:70:bc:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e7dc68858c06094e0f43288b486589b483e3f3
Validity
Not Before: Apr 18 22:01:29 2026 GMT
Not After : Apr 19 22:01:29 2026 GMT
Subject: CN=32efb1041d91a9e42685edf7d0296fb7dfadabee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e1:e2:77:27:76:59:10:52:2d:65:f8:88:14:
94:2b:9e:c9:75:2a:1b:83:d5:57:d0:40:0e:13:21:
21:46:21:5d:64:0c:56:7c:6c:29:e1:62:15:25:d0:
06:36:1f:66:65:d1:f1:46:fd:ad:b2:9a:c0:1b:59:
f2:72:65:69:09:bf:10:87:96:73:72:fb:d1:8e:fd:
87:05:b2:2a:82:ea:4c:a8:de:8a:62:e6:a3:e1:8a:
72:41:e6:e2:d1:3e:78:b8:b0:f6:6b:c8:ba:00:fc:
c9:4a:50:f2:41:6a:ed:11:48:1f:05:37:fe:48:6d:
d2:64:52:84:1b:0c:96:df:2d:50:b6:bc:77:de:fd:
59:9f:6e:4d:ee:e9:b0:15:b1:db:b5:51:0c:dc:f2:
19:e5:82:5c:e1:ea:e0:c1:84:fb:a2:2e:5f:f5:b6:
8b:94:a3:56:ff:1a:0d:dd:ab:71:dd:5a:c9:a3:bb:
70:58:72:0a:50:06:ad:63:24:7b:6b:28:25:20:0d:
64:73:71:48:35:a4:b9:06:c5:78:cb:65:9e:4c:12:
e8:f3:26:03:ae:d8:19:34:f8:c6:03:16:34:f1:57:
35:77:53:cb:20:ca:dd:d0:32:b7:5e:d4:ba:3a:af:
96:5b:0b:56:f8:e8:7b:a9:48:7d:a2:42:78:cc:d8:
bc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:EF:B1:04:1D:91:A9:E4:26:85:ED:F7:D0:29:6F:B7:DF:AD:AB:EE
X509v3 Authority Key Identifier:
keyid:95:E7:DC:68:85:8C:06:09:4E:0F:43:28:8B:48:65:89:B4:83:E3:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lefcaIWMBglOD0Moi0hlibSD4_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ee00f0-4584-44a0-bf5a-03c56b60fc28/1/lefcaIWMBglOD0Moi0hlibSD4_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:e3:f9:de:00:e2:b1:1f:09:b0:46:25:13:05:db:0c:0f:d0:
63:2b:a0:80:35:ac:8d:81:4a:ef:ef:88:5b:1a:2d:0d:03:0f:
4d:e1:6d:26:c3:46:e7:61:e8:d3:24:29:9a:4f:9e:b9:74:12:
2c:cc:fa:20:fb:7f:33:48:89:35:7a:a6:48:e5:31:94:e7:ee:
dc:bc:31:2f:92:6f:3f:be:02:9a:21:3d:35:e1:62:8c:e3:7f:
b7:10:98:88:a6:8e:c3:b2:8b:12:bb:90:a3:ae:e9:53:b6:36:
93:7f:02:f0:ab:ae:70:ec:5d:71:dd:23:21:41:27:fb:13:88:
21:73:21:da:14:30:47:a8:03:a0:6a:e2:31:05:75:44:c8:01:
e2:d2:ae:a0:ff:9e:c6:49:94:bf:8d:bd:6a:18:82:ec:65:a5:
68:61:d3:57:11:44:bb:f8:39:b2:bf:dc:31:16:81:be:30:ad:
bd:9c:2c:ba:50:f0:d7:c8:08:35:a1:e4:c3:d5:24:ff:7f:e2:
00:2d:d8:94:e3:94:c2:6b:65:d3:ae:80:1d:d0:13:55:b4:51:
58:14:d7:7c:98:19:2c:b5:04:07:ae:39:8d:ce:b2:39:f6:74:
07:ca:9f:d6:b7:5a:f5:50:c7:c4:4d:02:6c:5c:a8:c7:f1:db:
3f:f7:6d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:40:20 2026 by rpki-client