Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
File: lDyQO00Og7yLLUVDE26c1fOYZPU.mft (raw, json)
Hash identifier: pJQQJQA5ia7w06pPh819kvubZ9cF8aowfX08azI+iRU=
Subject key identifier: A3:5B:D0:3C:03:FF:0E:8A:33:52:8E:06:4F:6C:B5:5F:FE:DC:F0:E9
Authority key identifier: 94:3C:90:3B:4D:0E:83:BC:8B:2D:45:43:13:6E:9C:D5:F3:98:64:F5
Certificate issuer: /CN=943c903b4d0e83bc8b2d4543136e9cd5f39864f5
Certificate serial: 019ED42B4F4BCF084401B1405DB998FD42BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
Manifest number: 0A94
Signing time: Wed 17 Jun 2026 06:01:08 +0000
Manifest this update: Wed 17 Jun 2026 06:01:08 +0000
Manifest next update: Thu 18 Jun 2026 06:01:08 +0000
Files and hashes: 1: NvHVcOuHPgyc57kdkgknLviy86E.roa (hash: y99G00GU2pSghDNIsvoE0LPbq8qsxNZ2XK//ZEAFwIQ=)
2: lDyQO00Og7yLLUVDE26c1fOYZPU.crl (hash: CkKPqEa0t6A8eMO1yhFLLhDWTf1ZAiCiqAGmhL0spS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 06:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:2b:4f:4b:cf:08:44:01:b1:40:5d:b9:98:fd:42:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943c903b4d0e83bc8b2d4543136e9cd5f39864f5
Validity
Not Before: Jun 17 06:01:08 2026 GMT
Not After : Jun 18 06:01:08 2026 GMT
Subject: CN=a35bd03c03ff0e8a33528e064f6cb55ffedcf0e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:41:57:da:d7:c6:4b:cc:69:4c:ce:a9:b0:3e:
b1:ba:db:99:d7:15:d2:d6:79:04:fb:cf:12:5d:38:
71:2d:8c:d1:77:75:40:13:00:7e:da:5c:30:77:30:
85:3d:3f:b8:79:f9:66:83:ca:ef:7d:5d:8a:a1:9f:
87:31:a4:c5:52:d2:61:63:a1:d3:1b:ab:d7:e6:d3:
49:64:39:14:09:b7:8b:06:82:d8:98:60:b4:3b:99:
be:4b:2f:d6:5e:6d:dd:50:bb:71:68:95:ad:31:f0:
08:ae:17:7d:66:19:e4:5d:3f:62:0d:85:3e:bc:6b:
b4:60:4e:1f:b1:f1:45:b4:ce:99:0a:5a:50:88:ee:
72:80:6f:1e:a4:0a:32:49:92:a4:74:47:ed:21:be:
53:a0:f5:1e:23:9d:b4:a7:40:60:bb:26:b0:ff:a5:
19:dc:0e:40:1b:a0:ab:ef:90:b9:9d:37:d1:a6:61:
b3:3e:e9:a9:fb:8b:f0:5f:ec:58:10:04:78:af:8d:
21:36:05:98:0d:99:61:7c:7b:35:15:94:a5:6f:43:
58:8e:09:f3:fa:0b:0f:31:90:fb:de:de:7a:0d:97:
ab:6d:ce:a9:df:dc:08:69:3c:a0:85:f4:65:ed:2f:
8d:f3:d1:e7:71:c8:5b:8f:57:93:e6:b0:34:26:fb:
00:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:5B:D0:3C:03:FF:0E:8A:33:52:8E:06:4F:6C:B5:5F:FE:DC:F0:E9
X509v3 Authority Key Identifier:
keyid:94:3C:90:3B:4D:0E:83:BC:8B:2D:45:43:13:6E:9C:D5:F3:98:64:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDyQO00Og7yLLUVDE26c1fOYZPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/508a26-e199-41b9-9e19-f98c75dea292/1/lDyQO00Og7yLLUVDE26c1fOYZPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:93:25:5c:37:b6:77:92:fd:e1:7b:66:34:52:20:7d:b5:d6:
ce:2a:90:36:f2:d2:5a:52:da:af:2d:88:95:65:2d:1b:b7:88:
79:91:2f:34:96:0d:24:6c:1c:8a:fc:27:d0:ac:1c:22:cb:72:
ea:48:10:4f:ca:71:ef:64:45:08:04:fb:dc:ca:bd:f1:03:97:
4b:1e:4d:ff:00:87:64:1d:29:af:2f:94:09:36:41:73:e3:91:
74:78:ae:58:37:07:3b:dd:fb:46:93:e5:a0:65:bd:90:a5:1e:
69:6e:f2:e9:af:f8:88:0d:0f:f9:7a:08:cc:a5:3e:b6:1e:e6:
9b:5f:0d:9d:54:cb:73:87:f4:1b:ae:aa:51:e8:f3:8c:5e:ba:
63:28:60:4f:38:e0:9b:c1:5b:d8:cf:6c:f1:35:78:f6:f8:26:
79:3b:0b:30:da:d4:a4:71:a6:fa:ba:fe:37:49:d9:f2:55:8f:
de:5b:b1:98:4b:52:4d:8b:93:e9:f7:de:e7:0e:cf:44:7d:32:
03:38:44:83:2a:b4:73:76:89:ab:41:c5:b9:49:8e:75:91:ac:
fd:69:c5:df:9c:fa:5a:10:e8:78:0e:73:9d:45:66:01:e2:51:
33:91:75:96:c1:e1:f1:8c:57:a5:b6:ca:37:e2:e5:c4:ef:e2:
5a:ac:87:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 13:01:15 2026 by rpki-client