Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
File: lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft (raw, json)
Hash identifier: nZujID7aY9HREsjKKjn7qGggOA7S2ozhDBmKKaXX1f4=
Subject key identifier: D9:79:45:12:0E:7F:2D:8D:11:05:3D:97:75:DE:2B:83:71:89:71:61
Authority key identifier: 96:44:8E:84:0D:27:2A:3E:31:59:19:2D:1D:F1:1F:10:0E:50:6F:6A
Certificate issuer: /CN=96448e840d272a3e3159192d1df11f100e506f6a
Certificate serial: 019D9A74EEBF815C021944324417612CB19B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
Manifest number: 0AEC
Signing time: Fri 17 Apr 2026 08:00:47 +0000
Manifest this update: Fri 17 Apr 2026 08:00:47 +0000
Manifest next update: Sat 18 Apr 2026 08:00:47 +0000
Files and hashes: 1: gtKo7QAi2WcSoZ12HmBm24qw-r4.roa (hash: qnaglWaJ+iAOcdqIITkJYy4ZOlNoiaJCiuIcC9Lr3R4=)
2: lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl (hash: bOyvX30Yfup8S61L6Amf+3D92A0c0P51IFNOYlbdm5Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:ee:bf:81:5c:02:19:44:32:44:17:61:2c:b1:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96448e840d272a3e3159192d1df11f100e506f6a
Validity
Not Before: Apr 17 08:00:47 2026 GMT
Not After : Apr 18 08:00:47 2026 GMT
Subject: CN=d97945120e7f2d8d11053d9775de2b8371897161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9d:ff:d6:77:d1:15:58:45:a6:6a:cb:1e:3f:
78:63:78:cd:67:1f:82:fd:68:69:4e:ec:32:ab:b3:
04:9b:2d:14:68:8c:fd:52:85:3c:c4:15:a2:79:eb:
78:0e:b3:37:d5:93:0c:a9:94:4a:1c:33:b4:cf:c0:
a4:51:02:55:20:32:ba:4d:ca:0f:85:83:3a:56:85:
53:8b:fa:22:a0:19:ee:ab:b4:58:7d:bb:f1:32:86:
37:81:9e:57:9f:ef:22:3e:17:21:93:3c:b4:a5:7a:
de:8b:a2:a5:f7:4d:5e:e5:61:52:ec:e6:27:a8:7d:
76:4b:fa:d4:ec:8e:24:09:86:6d:16:b7:83:d8:8d:
d2:1e:49:ec:13:94:4c:7b:7a:4c:25:cf:df:65:4f:
95:ff:0c:49:c2:ea:02:85:a0:ee:15:b7:0e:cf:6b:
41:5d:db:43:28:4c:47:2f:d3:7a:40:26:09:90:fb:
57:6d:85:cc:64:cd:06:f8:cd:23:74:f5:5e:05:a1:
79:56:98:7d:de:a4:03:2d:f1:91:09:94:6a:6f:05:
58:b8:24:bf:37:ff:0c:ce:3f:e8:d5:09:51:9e:b0:
16:ce:f8:5d:00:b7:38:e9:41:b9:23:25:b5:f7:65:
3d:0a:64:1e:5a:07:3f:16:eb:6c:05:8e:81:9d:3d:
f5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:79:45:12:0E:7F:2D:8D:11:05:3D:97:75:DE:2B:83:71:89:71:61
X509v3 Authority Key Identifier:
keyid:96:44:8E:84:0D:27:2A:3E:31:59:19:2D:1D:F1:1F:10:0E:50:6F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:98:1b:8f:f0:3d:2c:4d:f9:ff:9f:24:44:bf:5d:98:05:a9:
0e:fb:59:5c:67:26:5b:05:a9:a6:41:a0:cb:00:02:6b:6a:36:
15:bd:b1:05:2e:1a:84:ec:12:8d:54:5c:b3:0d:b4:31:2c:ee:
d0:89:70:79:7f:3f:ad:57:ee:01:4b:34:42:6b:25:32:a4:4b:
5e:ee:ec:ec:6a:93:18:95:41:93:66:d3:23:29:e0:7a:a4:07:
dc:0a:57:0f:7e:2c:85:74:1a:7b:48:5d:51:44:f9:36:fb:ea:
a8:a6:e0:32:3d:2a:6c:32:f0:89:43:4f:84:c3:43:6b:4f:81:
e1:87:7a:51:a6:ac:9b:bf:2b:53:ea:99:15:3f:7a:99:76:15:
ed:ce:1a:d2:ae:fa:62:70:b9:f5:e1:11:d3:4c:65:52:88:be:
a6:3e:c5:0c:ff:4f:ec:1e:da:81:65:5a:93:1f:1f:b5:9f:dd:
2c:d3:dd:d7:ad:6f:3f:45:36:9f:0c:be:4b:50:b6:f7:88:91:
5c:f5:31:0d:b0:19:68:3f:19:1b:49:64:64:d1:3a:ed:98:71:
7e:3d:70:a1:e0:24:59:9c:4a:9c:90:91:70:c6:6b:1b:b0:91:
97:96:7d:ab:ad:98:57:cf:57:27:71:22:0f:b0:c8:de:50:de:
e6:61:09:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2adO6/gVwCGUQyRBdhLLGbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2NDQ4ZTg0MGQyNzJhM2UzMTU5MTkyZDFkZjExZjEwMGU1
MDZmNmEwHhcNMjYwNDE3MDgwMDQ3WhcNMjYwNDE4MDgwMDQ3WjAzMTEwLwYDVQQD
EyhkOTc5NDUxMjBlN2YyZDhkMTEwNTNkOTc3NWRlMmI4MzcxODk3MTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAip3/1nfRFVhFpmrLHj94Y3jNZx+C
/WhpTuwyq7MEmy0UaIz9UoU8xBWieet4DrM31ZMMqZRKHDO0z8CkUQJVIDK6TcoP
hYM6VoVTi/oioBnuq7RYfbvxMoY3gZ5Xn+8iPhchkzy0pXrei6Kl901e5WFS7OYn
qH12S/rU7I4kCYZtFreD2I3SHknsE5RMe3pMJc/fZU+V/wxJwuoChaDuFbcOz2tB
XdtDKExHL9N6QCYJkPtXbYXMZM0G+M0jdPVeBaF5Vph93qQDLfGRCZRqbwVYuCS/
N/8Mzj/o1QlRnrAWzvhdALc46UG5IyW192U9CmQeWgc/FutsBY6BnT31SwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNl5RRIOfy2NEQU9l3XeK4NxiXFhMB8GA1UdIwQY
MBaAFJZEjoQNJyo+MVkZLR3xHxAOUG9qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGtTT2hBMG5LajR4V1JrdEhmRWZFQTVRYjJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy80ZWU3MzQtZWZlOC00MWExLTgwZGYt
MTZhZmJhOTg3YjA2LzEvbGtTT2hBMG5LajR4V1JrdEhmRWZFQTVRYjJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy80ZWU3MzQtZWZlOC00MWExLTgwZGYtMTZhZmJhOTg3YjA2
LzEvbGtTT2hBMG5LajR4V1JrdEhmRWZFQTVRYjJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFZgbj/A9
LE35/58kRL9dmAWpDvtZXGcmWwWppkGgywACa2o2Fb2xBS4ahOwSjVRcsw20MSzu
0IlweX8/rVfuAUs0QmslMqRLXu7s7GqTGJVBk2bTIyngeqQH3ApXD34shXQae0hd
UUT5NvvqqKbgMj0qbDLwiUNPhMNDa0+B4Yd6Uaasm78rU+qZFT96mXYV7c4a0q76
YnC59eER00xlUoi+pj7FDP9P7B7agWVakx8ftZ/dLNPd161vP0U2nwy+S1C294iR
XPUxDbAZaD8ZG0lkZNE67Zhxfj1woeAkWZxKnJCRcMZrG7CRl5Z9q62YV89XJ3Ei
D7DI3lDe5mEJsw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:20:52 2026 by rpki-client