Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
File: lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft (raw, json)
Hash identifier: r2ALmVFdb5KNw1DM1hUIF+iGPrb3bRlQNAriEKur56w=
Subject key identifier: EC:77:AC:1B:C7:C9:32:30:3E:F2:83:42:88:4E:74:18:6E:D3:75:AE
Authority key identifier: 96:44:8E:84:0D:27:2A:3E:31:59:19:2D:1D:F1:1F:10:0E:50:6F:6A
Certificate issuer: /CN=96448e840d272a3e3159192d1df11f100e506f6a
Certificate serial: 019CACEBD1649D14336555E9EB9858F82E68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
Manifest number: 0A71
Signing time: Mon 02 Mar 2026 05:01:01 +0000
Manifest this update: Mon 02 Mar 2026 05:01:01 +0000
Manifest next update: Tue 03 Mar 2026 05:01:01 +0000
Files and hashes: 1: gtKo7QAi2WcSoZ12HmBm24qw-r4.roa (hash: qnaglWaJ+iAOcdqIITkJYy4ZOlNoiaJCiuIcC9Lr3R4=)
2: lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl (hash: ERvAIsR11aVzCih53OJbCpnZ08dqIthHuLukbtUNtys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:d1:64:9d:14:33:65:55:e9:eb:98:58:f8:2e:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96448e840d272a3e3159192d1df11f100e506f6a
Validity
Not Before: Mar 2 05:01:01 2026 GMT
Not After : Mar 3 05:01:01 2026 GMT
Subject: CN=ec77ac1bc7c932303ef28342884e74186ed375ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:16:62:b3:65:f9:6f:f5:64:88:97:ca:96:5f:
2e:29:a5:05:28:ed:2d:52:75:2a:af:cb:c5:f3:84:
8a:a3:13:e2:8c:ad:60:a2:95:d2:71:24:10:1a:de:
42:03:c5:d3:19:5e:b4:a8:6a:e6:8b:c9:14:9b:82:
40:02:73:ee:d0:4b:d0:37:56:54:b2:a5:d7:1a:e0:
b8:a9:f7:c6:30:45:8e:c7:56:39:be:ae:67:d1:c8:
8f:45:9d:98:ce:f2:fe:72:7a:fa:7a:6c:e3:d2:46:
89:61:01:96:43:e6:47:24:49:f9:e8:03:60:51:6c:
4a:4f:e8:ff:d1:9a:31:da:04:5d:4b:99:86:2e:2d:
fe:49:bc:ed:f8:7a:c3:f2:15:73:05:57:9d:0a:fe:
df:21:65:7d:bb:a0:52:4c:e4:94:3a:6a:09:b5:4f:
0e:4e:cc:09:75:df:c2:56:46:b3:58:98:71:41:bb:
b4:da:b2:10:5c:77:41:4d:4f:8a:df:21:c2:31:80:
b6:b1:cf:83:69:5a:48:5d:34:44:65:79:27:c3:31:
84:ab:08:a2:96:2a:89:e5:43:ce:d3:6c:51:ff:b9:
e0:50:3b:5e:56:6d:14:36:08:0c:d6:7b:8d:8f:2f:
74:cc:1d:23:8f:d1:13:9e:5c:e1:bc:47:80:fb:a1:
be:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:77:AC:1B:C7:C9:32:30:3E:F2:83:42:88:4E:74:18:6E:D3:75:AE
X509v3 Authority Key Identifier:
keyid:96:44:8E:84:0D:27:2A:3E:31:59:19:2D:1D:F1:1F:10:0E:50:6F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkSOhA0nKj4xWRktHfEfEA5Qb2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/4ee734-efe8-41a1-80df-16afba987b06/1/lkSOhA0nKj4xWRktHfEfEA5Qb2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:ea:dd:67:60:e4:3d:47:75:c0:e0:76:20:99:05:ce:7b:9c:
2d:69:b0:2f:3b:0b:56:5d:11:5b:8a:5b:ca:77:49:b7:c4:8e:
bd:3c:f8:14:b8:dc:49:d0:ee:78:94:85:01:35:fb:9c:e9:c0:
01:a8:90:ee:3e:ed:bf:ad:87:9e:66:aa:0e:31:1a:06:d0:ea:
71:e2:de:6a:90:6c:bd:52:29:3c:fe:63:04:0f:39:20:59:a5:
fa:52:1c:e6:5a:ce:70:42:41:c7:f0:c8:93:68:62:8f:14:00:
a8:38:bf:53:82:51:0f:70:4a:aa:4d:91:4c:b4:df:2d:e9:eb:
89:20:57:f2:b9:89:69:18:66:7d:22:e6:d7:41:e1:7b:32:f5:
99:a8:dd:b0:9a:0d:db:cf:77:29:42:51:a3:ec:3e:af:92:ad:
ac:e7:c9:8c:dc:c8:87:42:bd:2b:7f:44:07:32:55:41:aa:e0:
ba:fd:7c:b1:8f:12:82:5c:fe:86:c5:5c:53:b8:26:a0:43:c6:
d9:e8:0f:45:5c:79:ff:08:f1:9f:e1:d4:92:8b:4a:d4:c9:e0:
ec:94:2f:b6:f2:72:0c:a9:ff:99:bc:5f:14:f1:7d:c6:47:71:
29:af:3d:9b:94:bf:79:81:a6:1a:1c:04:47:83:fc:5a:d6:fc:
37:ac:45:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:17:34 2026 by rpki-client