Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
File: ltTArxW-ONL8XjD-NFdHXTS3g5o.mft (raw, json)
Hash identifier: KdTYCaMKH7WWA+9nC1loSGUJPOR3NEv0dxnAQntxlis=
Subject key identifier: 4F:10:01:90:97:42:AD:B5:1F:B4:E5:D4:14:97:DA:26:C9:59:2E:84
Authority key identifier: 96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A
Certificate issuer: /CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a
Certificate serial: 019D98F428D2FBA94ABBB7CF7A981A8363EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
Manifest number: 1531
Signing time: Fri 17 Apr 2026 01:00:31 +0000
Manifest this update: Fri 17 Apr 2026 01:00:31 +0000
Manifest next update: Sat 18 Apr 2026 01:00:31 +0000
Files and hashes: 1: ltTArxW-ONL8XjD-NFdHXTS3g5o.crl (hash: 3R9F6tRxowoq0wM3q7bzQgEsNHnUYiyp7XGIpNXXiWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:28:d2:fb:a9:4a:bb:b7:cf:7a:98:1a:83:63:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96d4c0af15be38d2fc5e30fe3457475d34b7839a
Validity
Not Before: Apr 17 01:00:31 2026 GMT
Not After : Apr 18 01:00:31 2026 GMT
Subject: CN=4f1001909742adb51fb4e5d41497da26c9592e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:02:44:33:6f:93:1e:b0:29:cf:f6:4c:04:06:
1f:08:4b:80:de:dd:ff:94:f7:2c:94:1c:28:0b:57:
82:f9:2b:17:57:1a:59:b9:6d:ac:86:44:4d:71:b7:
d1:d8:b7:f9:f5:5c:0b:a7:11:d7:43:f8:56:66:30:
32:3e:89:58:fe:16:eb:4e:17:a7:f0:47:f0:55:41:
e3:8f:84:cb:f4:67:ae:6d:fb:0f:0c:34:1d:e7:f2:
b4:c7:36:9b:f8:e9:f9:84:dc:14:b9:3e:1d:4a:21:
d7:43:04:6d:4b:53:1a:3c:51:11:97:ce:1b:d0:0c:
17:2f:61:bd:b2:0f:b0:62:a6:0d:32:e0:be:32:9f:
e5:0e:72:b2:17:e5:24:c8:ed:2c:c7:2f:3a:2e:93:
d9:6b:57:6c:d0:e9:fe:48:2f:8e:8d:78:12:63:f5:
3e:64:1c:31:cf:67:5c:0d:cc:cc:f7:3f:73:f8:1e:
c3:89:0e:44:14:6c:34:39:10:46:98:f8:04:41:d3:
2b:01:4f:b0:fa:b1:3f:2e:4b:f0:40:f9:ee:06:7b:
d2:b3:80:b6:d3:30:cf:70:b2:23:2a:3b:dc:4d:d3:
df:ab:c0:fc:eb:35:22:b3:fc:82:3a:15:ac:14:d9:
a4:02:bb:37:f6:5e:7a:af:b6:ce:7e:85:0f:bb:8f:
68:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:10:01:90:97:42:AD:B5:1F:B4:E5:D4:14:97:DA:26:C9:59:2E:84
X509v3 Authority Key Identifier:
keyid:96:D4:C0:AF:15:BE:38:D2:FC:5E:30:FE:34:57:47:5D:34:B7:83:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ltTArxW-ONL8XjD-NFdHXTS3g5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b1b128-4f10-486e-a1ee-952f6fc02672/1/ltTArxW-ONL8XjD-NFdHXTS3g5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:14:21:f4:e2:20:da:3d:2c:3b:62:4a:7b:34:13:d1:37:71:
c9:cd:ec:dd:11:c8:83:e1:7a:e4:0a:a7:63:9d:d0:6e:9c:2e:
59:cc:28:73:a1:7b:3f:ed:29:f9:5e:38:29:76:c1:4a:ac:d0:
de:ee:67:e1:f1:f8:8e:60:f7:9c:d1:1a:c1:0e:be:ab:5a:b2:
74:fa:25:64:b5:2e:be:5b:b1:f9:31:dd:9c:bb:4e:17:11:46:
f7:f4:e0:21:42:be:e6:57:60:23:d2:42:f7:0d:fe:76:7c:8c:
92:a7:86:0b:b7:b1:63:18:53:99:c1:b1:51:48:13:3e:56:64:
cf:4a:df:27:1d:c2:8b:d1:3e:42:80:43:89:9e:ab:19:8b:59:
d3:10:12:1b:c7:23:ca:6e:17:87:99:5e:4a:c0:e5:4f:df:c4:
d8:e9:42:f1:f5:ec:56:73:5f:f9:16:94:7e:ee:e0:3b:dd:c5:
f6:10:c8:97:e7:46:15:da:76:80:99:1e:aa:7f:f2:40:cf:e8:
4f:5d:aa:ca:29:83:1f:28:df:2d:20:08:e1:f3:33:bf:97:74:
3e:7d:67:de:19:de:7f:d7:18:45:47:d3:54:ea:7d:87:c1:b8:
6e:10:1d:9d:d8:1d:a3:3e:8d:6e:27:84:7b:d9:39:f2:c5:1b:
e1:26:1a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:04:16 2026 by rpki-client