Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
File: l8AN4AfUqkpAMdR2ELObd0kIv0k.mft (raw, json)
Hash identifier: nCfFq/nYLT5U29VNorYg/4LTGAKjI0+8ambWYVOO/PI=
Subject key identifier: 30:5F:1E:F4:93:52:6C:A3:13:CA:35:A3:5E:A0:64:4C:21:F1:34:61
Authority key identifier: 97:C0:0D:E0:07:D4:AA:4A:40:31:D4:76:10:B3:9B:77:49:08:BF:49
Certificate issuer: /CN=97c00de007d4aa4a4031d47610b39b774908bf49
Certificate serial: 019EC0A44DFE8B99C7FFC2B17053BF2A35BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
Manifest number: 0540
Signing time: Sat 13 Jun 2026 11:00:53 +0000
Manifest this update: Sat 13 Jun 2026 11:00:53 +0000
Manifest next update: Sun 14 Jun 2026 11:00:53 +0000
Files and hashes: 1: l8AN4AfUqkpAMdR2ELObd0kIv0k.crl (hash: +m+iPOIHBB0DAhMljQVEBez4+8QrH5GneXo9b16Ch8o=)
2: odYIvbxaJeYmOjoyzYcsw6tdRBQ.roa (hash: gjz6TPRGymxJ3q8bit5/XLbB9ysikFUi3nJ/upxA8J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:a4:4d:fe:8b:99:c7:ff:c2:b1:70:53:bf:2a:35:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97c00de007d4aa4a4031d47610b39b774908bf49
Validity
Not Before: Jun 13 11:00:53 2026 GMT
Not After : Jun 14 11:00:53 2026 GMT
Subject: CN=305f1ef493526ca313ca35a35ea0644c21f13461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ab:2d:a9:7e:9a:91:f6:b4:89:e3:92:c9:e1:
34:9c:2e:86:60:4f:48:de:1b:35:01:d3:df:6b:2c:
e0:5c:5d:7a:50:3b:57:d6:3b:ae:e5:fe:40:c0:36:
94:d3:13:fb:4f:9f:d6:56:b4:2e:be:05:e9:cb:9e:
d8:26:a5:50:77:fd:cf:e3:de:a0:0f:cb:48:a8:7e:
fb:a1:00:b6:a9:ef:3b:46:50:66:07:4c:6d:af:2e:
ea:20:aa:2a:1f:e3:96:82:40:0f:7b:d0:9d:56:d8:
b7:ad:c2:41:d2:7f:84:d8:20:80:38:93:86:d4:bf:
2d:e0:32:be:37:83:92:1a:92:35:19:6f:38:ad:40:
87:de:52:15:60:5c:b8:3c:89:e5:fc:a9:de:cb:5a:
30:93:36:fd:e5:e2:2b:ca:33:a6:15:36:06:ff:08:
9a:15:04:67:2c:00:27:39:64:f8:1d:6e:b8:18:75:
6f:74:90:f6:ae:48:a5:4a:28:24:8c:55:68:de:64:
5d:16:17:b3:1a:49:6a:cc:55:5b:a9:12:99:b1:3f:
b7:c4:dd:67:4f:ff:23:4e:3c:03:10:a6:ed:59:ff:
23:03:92:2c:cd:41:7b:57:cd:f8:5b:11:a7:53:7c:
5b:75:5f:40:7e:13:58:50:ff:09:2b:85:3c:8e:8d:
84:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:5F:1E:F4:93:52:6C:A3:13:CA:35:A3:5E:A0:64:4C:21:F1:34:61
X509v3 Authority Key Identifier:
keyid:97:C0:0D:E0:07:D4:AA:4A:40:31:D4:76:10:B3:9B:77:49:08:BF:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8AN4AfUqkpAMdR2ELObd0kIv0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0077c5-f0be-463f-ab75-8c3dcc459026/1/l8AN4AfUqkpAMdR2ELObd0kIv0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:85:1a:cc:4c:f2:8e:2e:25:7d:57:f0:9f:2d:eb:80:a1:b2:
88:36:83:d5:fe:d9:b8:f4:59:92:57:4a:2f:15:22:5d:82:3b:
5e:f7:3f:69:4c:1b:cc:ef:ca:dd:eb:9c:3b:55:80:13:c7:c5:
c3:52:dc:87:7d:86:e6:50:97:8d:ff:8a:94:4c:b3:3f:8a:55:
b9:70:8b:0c:f9:2d:72:7e:01:50:db:47:5a:e0:f3:cf:a4:a8:
e2:88:0a:75:34:f0:7f:6d:ed:86:e3:9f:86:8d:a0:39:a4:f9:
80:6c:ed:9e:f6:12:ff:55:c4:cb:50:46:e7:97:80:97:c3:4b:
90:fe:89:5a:4b:c6:fc:51:b6:8a:78:1a:7e:e5:4e:5d:cc:aa:
62:0c:ce:b8:3b:9b:4f:09:36:f2:81:72:85:9d:1b:69:7a:2c:
2a:35:f8:37:b6:88:82:16:4a:8a:ef:f2:8c:44:61:39:68:07:
01:2c:d6:e9:fc:03:27:91:f5:08:a7:95:e5:6c:58:d7:8b:aa:
17:d6:9c:6e:48:ae:ac:b8:1b:f1:0a:34:df:63:07:e4:18:a4:
40:f7:f3:66:1a:ea:80:d5:2d:b3:22:38:ca:25:79:4a:e2:81:
d7:51:0d:72:1a:fc:0b:73:83:7a:e1:58:1e:c1:e2:8e:6b:11:
b7:2c:63:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:58:24 2026 by rpki-client