Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: bgdJdJl9lPu6ZtA+1U5yISPugYWrPX5EooNZXt8Nc4Q=
Subject key identifier: B3:AA:F2:7C:E5:F6:E9:1F:67:AB:7E:F2:89:8A:2E:94:60:D2:7D:4B
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 019CACB475A7886BCFFAF380F6913B8D6CFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 15E5
Signing time: Mon 02 Mar 2026 04:00:33 +0000
Manifest this update: Mon 02 Mar 2026 04:00:33 +0000
Manifest next update: Tue 03 Mar 2026 04:00:33 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: J3+BLcuy8zMETmDcZALY/fwZIZxrprdWxdZms8qhQGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:75:a7:88:6b:cf:fa:f3:80:f6:91:3b:8d:6c:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Mar 2 04:00:33 2026 GMT
Not After : Mar 3 04:00:33 2026 GMT
Subject: CN=b3aaf27ce5f6e91f67ab7ef2898a2e9460d27d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d5:30:5a:59:6d:be:a5:81:18:e5:56:b0:c1:
7c:37:00:e8:d7:ea:75:0e:a0:e7:65:b8:bb:f5:98:
37:a2:c7:6b:c5:02:1f:3b:62:4a:92:22:03:7e:59:
f8:84:b0:f5:13:33:67:49:6b:90:db:e0:04:f2:3f:
25:fc:e1:4c:4e:67:6c:f8:17:55:ec:3f:f9:83:10:
cb:28:2c:3d:57:a5:d9:f3:0a:a9:00:3c:5c:7b:ed:
e5:67:35:aa:2f:7a:b9:3f:18:7a:5d:9a:ce:8f:d0:
01:b6:27:b0:37:77:1d:19:65:86:b3:4c:96:1f:84:
50:2a:42:5f:6b:d8:9a:34:45:98:28:27:04:d7:7b:
4e:0b:87:e9:d4:59:aa:7c:bb:a4:f4:59:8a:94:3d:
07:d4:aa:86:c6:7d:6e:60:b2:a9:04:66:a8:1d:18:
23:9d:fe:46:bc:b6:67:2d:91:56:74:96:6f:8c:b1:
8a:5e:02:96:a8:f0:92:89:2f:a1:92:4f:30:42:46:
c6:93:65:b3:dd:1b:8d:2e:2b:be:2d:67:4a:3e:f5:
50:95:23:72:55:1c:dd:d3:3f:75:bc:2f:8f:64:b6:
df:42:45:43:62:29:65:90:e2:0c:f9:2e:ff:df:af:
37:8e:ef:17:67:d8:4a:96:8e:15:f6:1f:94:f1:f6:
5b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:AA:F2:7C:E5:F6:E9:1F:67:AB:7E:F2:89:8A:2E:94:60:D2:7D:4B
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:17:d5:30:41:43:5b:4c:eb:a1:dd:12:3a:ea:30:f6:21:5f:
45:6f:a1:b6:c3:5e:28:30:35:4b:f7:ce:e2:bb:30:f2:56:cd:
4a:9e:da:07:b8:e8:9b:61:71:92:73:92:a9:e4:ef:b4:66:00:
a0:b4:77:47:16:ca:d4:ab:9f:8d:40:7a:24:7b:fb:09:42:51:
cc:56:27:87:c4:57:53:5b:c1:57:2f:bc:43:8d:83:17:a9:e9:
24:73:9c:f8:d7:5e:53:3f:e7:8d:a0:7b:ee:82:84:ac:99:10:
34:8a:67:c4:84:71:ab:ba:e8:53:4b:ab:5a:83:b5:bd:46:a2:
b1:0f:33:f5:03:dc:a9:7e:fd:0a:0e:5a:2d:28:aa:c5:68:43:
38:f5:81:59:c7:9f:37:b1:f5:c0:41:53:27:fc:33:79:01:1f:
a8:6a:a6:41:21:5c:ca:f7:8f:10:d3:04:68:c3:ce:8a:49:aa:
a1:fa:d4:8c:0e:02:de:b4:0b:3f:e1:9b:a0:b7:e7:d2:cc:fb:
92:f4:b7:ea:22:a4:e8:82:11:ac:1c:94:df:b8:4d:35:35:1c:
f4:60:7d:4b:48:44:87:7b:d1:8f:79:d0:99:7a:44:60:03:d2:
2e:d7:72:46:0e:4c:a1:5c:36:32:68:32:46:ec:55:aa:65:19:
64:9d:db:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:43:24 2026 by rpki-client