Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
File: l8AN4AfUqkpAMdR2ELObd0kIv0k.mft (raw, json)
Hash identifier: 2gy2IQKYPdKO4ZPhMPFoFf2SMa4YaDlo6H4zWMf6UJw=
Subject key identifier: B2:E8:D9:60:2B:76:DB:A4:2C:29:9F:2A:FE:EA:F9:E7:55:A6:DD:6D
Authority key identifier: 97:C0:0D:E0:07:D4:AA:4A:40:31:D4:76:10:B3:9B:77:49:08:BF:49
Certificate issuer: /CN=97c00de007d4aa4a4031d47610b39b774908bf49
Certificate serial: 019D992B6BD8A34CA738C3F67A03F6D75A7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
Manifest number: 04A7
Signing time: Fri 17 Apr 2026 02:00:52 +0000
Manifest this update: Fri 17 Apr 2026 02:00:52 +0000
Manifest next update: Sat 18 Apr 2026 02:00:52 +0000
Files and hashes: 1: l8AN4AfUqkpAMdR2ELObd0kIv0k.crl (hash: gDhDBaG5zsUEQfxjpZG7YGvYYGCw1Se4dNKIf0yzqw8=)
2: odYIvbxaJeYmOjoyzYcsw6tdRBQ.roa (hash: gjz6TPRGymxJ3q8bit5/XLbB9ysikFUi3nJ/upxA8J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:6b:d8:a3:4c:a7:38:c3:f6:7a:03:f6:d7:5a:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97c00de007d4aa4a4031d47610b39b774908bf49
Validity
Not Before: Apr 17 02:00:52 2026 GMT
Not After : Apr 18 02:00:52 2026 GMT
Subject: CN=b2e8d9602b76dba42c299f2afeeaf9e755a6dd6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:71:d3:c2:ca:1f:5a:04:c4:18:7b:a9:63:d4:
3d:89:5f:23:e9:cf:ce:57:21:2d:66:bb:7d:5a:a3:
ea:e4:3b:61:cf:41:07:87:58:8b:74:35:6f:11:38:
67:d7:fe:97:8f:e1:bd:ad:0f:54:5f:80:aa:26:7f:
a8:d6:c8:ab:ba:2a:e0:6f:36:bd:13:02:a4:f9:84:
ea:76:97:5e:a6:95:f4:92:0b:ce:5c:ca:35:53:4c:
8b:7c:dc:33:3c:9f:c6:2d:e3:77:81:1f:6e:ae:34:
9a:30:9c:8e:39:04:d0:8f:ba:5c:46:05:11:fa:88:
ab:27:d9:c0:cb:52:3f:24:c5:7a:79:13:00:48:16:
71:7e:e1:ba:4c:d1:3f:d2:5b:be:6e:6a:92:a5:08:
c1:b8:b6:49:2b:df:c9:fd:e2:9b:2c:4d:ad:4f:e8:
d0:b1:49:b0:d4:8a:84:98:6f:12:0c:55:d9:04:c9:
87:b8:d0:92:0c:75:a5:ee:24:80:a0:e1:8a:c2:fd:
fd:9e:5f:ab:e3:c2:0f:ba:04:18:25:29:81:c0:d9:
89:2c:7b:f0:da:e5:1c:10:2e:b5:0e:c2:8a:bf:81:
17:c8:15:f8:ae:67:72:60:42:b0:51:39:de:9a:3e:
49:47:f8:63:b8:8f:6a:dc:44:b6:c1:f2:6f:84:77:
c6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E8:D9:60:2B:76:DB:A4:2C:29:9F:2A:FE:EA:F9:E7:55:A6:DD:6D
X509v3 Authority Key Identifier:
keyid:97:C0:0D:E0:07:D4:AA:4A:40:31:D4:76:10:B3:9B:77:49:08:BF:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:97:bc:52:b7:6d:d9:7e:ef:86:25:10:1f:49:e2:47:63:84:
37:96:de:02:44:7d:53:d7:8f:4b:da:43:b3:83:8e:ef:9b:14:
77:e7:57:69:42:aa:f8:68:4c:9f:9d:04:5d:ac:21:7c:82:b8:
90:0b:82:03:a5:aa:79:01:44:1c:af:4b:a0:9c:80:d9:20:cc:
2d:fc:84:9c:28:89:14:7b:b0:7a:a6:67:6b:b8:b7:8d:7c:23:
89:2c:d6:68:63:f8:c9:19:40:cc:db:53:23:1e:cc:f9:cf:5a:
ae:99:47:56:66:95:23:8b:cc:29:b8:34:2d:2e:be:06:a6:43:
8e:02:f4:c3:49:34:7c:3c:0c:19:fa:71:4c:ec:38:b6:4b:90:
ac:ab:9c:fb:2c:b5:54:4d:3f:08:42:48:65:54:91:41:11:2f:
20:6f:90:a0:08:93:ad:d0:e5:54:a4:99:1e:2f:5f:6a:df:b2:
c1:97:86:50:8e:b8:14:9e:d5:13:c6:2c:dd:4c:7b:7d:72:f5:
40:6a:f7:c5:75:b7:50:dd:b4:db:2c:45:d3:97:ee:31:0c:03:
0e:f8:e7:29:84:52:18:5e:03:b0:b3:9b:5a:9d:f4:e9:75:75:
fb:de:2a:0b:38:27:31:34:a4:ac:27:cb:7f:61:20:08:d4:69:
70:19:72:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:28:34 2026 by rpki-client