Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
File: lDyQO00Og7yLLUVDE26c1fOYZPU.mft (raw, json)
Hash identifier: cIgY0V8/d8V8gntIpCu90+rYCufTAtnji1J6Rnl308c=
Subject key identifier: DE:A1:3D:B7:C1:B4:90:3A:8D:D9:33:32:61:4A:F5:FE:1A:6E:3E:28
Authority key identifier: 94:3C:90:3B:4D:0E:83:BC:8B:2D:45:43:13:6E:9C:D5:F3:98:64:F5
Certificate issuer: /CN=943c903b4d0e83bc8b2d4543136e9cd5f39864f5
Certificate serial: 019D9B5174DDDF650D87710198780BB923A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
Manifest number: 09F2
Signing time: Fri 17 Apr 2026 12:01:39 +0000
Manifest this update: Fri 17 Apr 2026 12:01:39 +0000
Manifest next update: Sat 18 Apr 2026 12:01:39 +0000
Files and hashes: 1: NvHVcOuHPgyc57kdkgknLviy86E.roa (hash: y99G00GU2pSghDNIsvoE0LPbq8qsxNZ2XK//ZEAFwIQ=)
2: lDyQO00Og7yLLUVDE26c1fOYZPU.crl (hash: aRRUQ9iAksi2g4j8bEzVDc4Ajt3E1N6kuRmGbXFuZUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:51:74:dd:df:65:0d:87:71:01:98:78:0b:b9:23:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943c903b4d0e83bc8b2d4543136e9cd5f39864f5
Validity
Not Before: Apr 17 12:01:39 2026 GMT
Not After : Apr 18 12:01:39 2026 GMT
Subject: CN=dea13db7c1b4903a8dd93332614af5fe1a6e3e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:95:e7:4f:75:19:31:97:de:d3:6b:c6:21:a4:
0b:31:de:0d:78:75:4a:47:4a:13:52:57:8c:c5:7d:
1f:9d:e7:ad:df:e3:33:05:54:4b:99:94:54:cc:8a:
26:33:b9:35:a8:c0:5e:0d:bb:da:e9:1e:b4:11:e6:
b7:3f:6c:8d:98:f9:39:ee:cf:84:00:55:04:7d:d1:
8e:d9:bb:d9:ff:ad:e0:8c:d7:e7:bb:87:c2:71:e7:
14:29:e0:49:df:59:c1:47:e9:2b:d2:ed:99:f6:d2:
bd:92:62:ae:38:27:93:ce:51:f8:80:f8:d2:dd:96:
e4:23:31:ea:eb:7e:9c:bf:a9:ba:71:49:69:e1:5a:
2e:94:65:97:b3:d2:84:91:78:57:44:9a:be:a3:54:
18:ca:4d:5c:ca:07:ec:eb:78:5b:a7:aa:89:07:1a:
23:22:5b:e0:e2:30:86:aa:77:69:f9:ff:c5:c4:d8:
fa:13:47:e8:7d:0e:7c:80:71:e6:aa:fb:4a:79:be:
23:c8:65:b8:a0:d8:6d:57:45:84:b9:90:95:ab:71:
32:5b:a9:5f:89:e9:e8:c0:ff:0c:f2:c9:7a:e9:d6:
e8:5d:78:78:9c:db:d6:b8:77:fb:70:37:66:1a:aa:
2f:7d:c2:08:91:eb:26:22:a7:67:95:49:ca:26:99:
b9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A1:3D:B7:C1:B4:90:3A:8D:D9:33:32:61:4A:F5:FE:1A:6E:3E:28
X509v3 Authority Key Identifier:
keyid:94:3C:90:3B:4D:0E:83:BC:8B:2D:45:43:13:6E:9C:D5:F3:98:64:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:1e:f1:20:dc:27:59:c0:5e:68:e6:ce:13:83:64:1a:82:05:
9f:6e:0f:51:39:bb:0f:43:46:c0:86:2f:53:eb:44:88:98:29:
6d:06:8d:8d:62:74:30:dd:03:81:28:37:30:d3:50:37:c6:fb:
55:c4:dd:c8:6f:6a:b9:cd:e9:98:b8:d6:af:e1:56:20:ca:d8:
a7:d0:8c:67:29:94:15:da:d7:6c:c9:8b:f4:ec:71:a7:93:ae:
d3:68:6f:a0:df:e9:e7:df:f4:b4:76:f3:af:6a:86:fc:c3:97:
e6:73:93:6e:41:d1:c0:85:5c:d2:9f:1c:1c:42:71:b5:ea:34:
87:80:4f:34:96:95:b6:53:33:b2:74:b1:46:f6:19:e0:fc:ef:
38:06:62:6b:87:b5:07:fc:03:9a:a6:4d:93:40:d3:7d:f8:96:
23:2d:cb:1d:ed:f9:a5:3b:fb:5c:7f:16:b9:de:47:bf:bb:cb:
90:db:d4:1e:ac:1c:eb:3e:e8:17:da:a2:81:27:e5:77:f0:19:
57:cd:12:bf:3f:c6:12:e7:76:da:d7:fa:74:3c:e8:cd:49:07:
79:47:cc:83:32:89:4a:b0:bd:13:4c:0e:3d:7b:50:90:05:fa:
cb:af:f6:12:1b:87:3d:df:ba:b3:66:1e:79:0c:80:1d:29:26:
8c:eb:d1:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:04:29 2026 by rpki-client