Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: oHIfAZbVnbaBaDCeCk9bqK5IrRBCOPlCi/WdaCuJlvs=
Subject key identifier: 89:98:46:8E:17:BC:FA:80:2D:97:DD:6F:1C:00:25:A7:D5:D2:D6:3D
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 019D9A3EFEA7B72BB83DE1AE2BB42367BB98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 1660
Signing time: Fri 17 Apr 2026 07:01:52 +0000
Manifest this update: Fri 17 Apr 2026 07:01:52 +0000
Manifest next update: Sat 18 Apr 2026 07:01:52 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: jCALKSszp2w3IJtueyqD3Ps4gAHT7gAkJf8q/F0GYdA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:fe:a7:b7:2b:b8:3d:e1:ae:2b:b4:23:67:bb:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Apr 17 07:01:52 2026 GMT
Not After : Apr 18 07:01:52 2026 GMT
Subject: CN=8998468e17bcfa802d97dd6f1c0025a7d5d2d63d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c4:c3:3b:ec:79:82:93:c4:26:66:b7:cc:60:
75:20:c7:da:33:31:28:6b:ea:3f:a7:9c:69:6b:60:
14:01:f3:34:7c:02:37:ae:26:c0:a1:3a:15:8f:ef:
40:67:f8:91:84:6d:20:08:e7:8b:07:d7:f5:5b:08:
99:5e:96:c0:ae:f7:09:52:79:c9:d5:2c:30:36:54:
cb:23:35:00:98:d4:13:15:da:47:d2:2e:55:12:74:
29:1f:99:86:12:f6:9a:1c:8c:31:50:d2:4b:4b:80:
ac:9d:6a:0b:c9:a5:87:b6:73:79:05:96:15:34:e1:
2f:cc:bf:85:0f:76:83:6d:1e:f2:a2:69:d2:fa:ea:
7d:4b:f0:e9:86:5a:5b:e8:5d:55:ef:fe:06:10:1e:
04:d4:a0:b7:cf:ea:00:a4:f8:5d:e0:d2:ac:e4:f2:
2c:69:e3:90:a7:04:89:e4:db:aa:1e:8b:1e:6e:01:
a7:1f:34:8f:1e:b1:ae:8e:24:bc:81:16:d9:66:4a:
60:7b:6c:5e:92:81:34:0e:7f:71:91:c0:92:fe:6f:
2c:6a:74:0e:a1:0a:99:c9:43:04:68:d6:3f:93:e2:
e2:ca:d2:93:7b:f3:11:55:e2:c7:d9:ff:84:d4:e6:
d8:65:bb:27:b7:08:d9:09:f8:0e:3d:00:d1:63:6e:
d4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:98:46:8E:17:BC:FA:80:2D:97:DD:6F:1C:00:25:A7:D5:D2:D6:3D
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:72:5f:fa:d3:4c:de:d6:d8:f4:bd:31:7d:70:e9:dc:b6:ab:
be:5d:94:a0:0c:91:45:b3:f7:04:41:cd:29:44:b7:f1:f4:d2:
74:f6:36:8e:59:66:33:94:1e:bb:4b:7d:a2:7d:4d:55:64:f2:
c1:f5:79:d9:8a:ac:e8:36:ae:ea:db:f6:f6:68:83:f5:1d:44:
31:2d:6e:a3:38:70:ff:49:2f:70:92:f4:c5:10:30:25:ab:8f:
69:54:b3:e1:3d:a6:56:8a:b0:45:94:6d:27:d6:5c:af:c4:10:
ae:a8:cc:3d:18:e7:ef:3b:75:66:e6:b4:96:56:bd:8e:54:ec:
fc:14:a7:f0:a2:6b:f6:73:60:d8:fc:2f:96:32:01:56:03:e9:
2b:5e:56:4a:b2:36:c9:1a:06:f3:c3:72:17:1c:91:5b:8c:40:
2d:74:3a:04:2a:3e:e5:94:f5:59:a0:7a:92:e2:e3:e1:2b:6a:
7d:d3:f6:aa:1b:3e:ef:0f:6d:01:08:4d:1c:3d:75:a7:cd:61:
3f:89:c5:6f:6e:6f:9f:75:aa:10:e9:29:79:2b:4b:c2:46:cd:
ed:c4:80:fa:71:da:7a:bf:77:bb:21:88:08:71:ca:ef:86:cd:
d7:ca:c7:b2:96:ca:d2:82:51:a8:23:71:d7:3e:7f:85:80:ec:
44:61:66:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:18:58 2026 by rpki-client