Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
File: 1-lolmC97dHESsP81jz0kpWLPz-w.mft (raw, json)
Hash identifier: /QKrVCLB0YEM/Qo94bCe+RTHurNDZjtC2MbFjiphfJ0=
Subject key identifier: EF:9A:8E:12:0C:A4:91:CA:EC:00:ED:35:2F:F3:89:64:90:79:B3:29
Authority key identifier: FA:5A:25:98:2F:7B:74:71:12:B0:FF:35:8F:3D:24:A5:62:CF:CF:EC
Certificate issuer: /CN=fa5a25982f7b747112b0ff358f3d24a562cfcfec
Certificate serial: 019EC0364EF3638ACC5125E5CC38037B7163
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
Manifest number: 0204
Signing time: Sat 13 Jun 2026 09:00:44 +0000
Manifest this update: Sat 13 Jun 2026 09:00:44 +0000
Manifest next update: Sun 14 Jun 2026 09:00:44 +0000
Files and hashes: 1: 1-lolmC97dHESsP81jz0kpWLPz-w.crl (hash: tPBWux1LOfJpPc3eD8qws3sydeI9fIgnPFvBVlOaa0M=)
2: iYN0utCjOjCIPINNJfjhuG0vjOg.roa (hash: 7Wnyb9CGOm4TN0ey7ufrrNiIF/X3LDz9AlFMHrkszjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:36:4e:f3:63:8a:cc:51:25:e5:cc:38:03:7b:71:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa5a25982f7b747112b0ff358f3d24a562cfcfec
Validity
Not Before: Jun 13 09:00:44 2026 GMT
Not After : Jun 14 09:00:44 2026 GMT
Subject: CN=ef9a8e120ca491caec00ed352ff389649079b329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ac:25:6a:cb:b3:ab:a5:20:8a:f9:42:cc:8a:
71:f4:da:23:6c:91:a9:63:cc:6d:ce:f2:e0:51:2d:
94:67:65:ee:00:ee:9b:b4:db:72:32:5b:a9:49:8b:
2e:60:77:92:74:7f:22:3f:32:7d:68:8b:88:83:4f:
57:e7:7c:8a:85:ba:ad:06:39:ff:15:66:87:d4:ff:
39:03:69:5c:00:2d:fd:a4:8e:03:5f:d3:d4:45:1c:
41:c3:2f:96:0d:30:c0:1f:55:2f:97:a0:21:2e:2b:
a2:53:75:10:b2:00:03:a1:57:cd:96:f5:5a:e1:f1:
f1:92:d5:30:d6:f3:50:ed:11:c7:ec:4e:4e:a5:13:
75:96:b7:c5:4f:19:b3:10:19:8c:42:3f:d7:62:4a:
43:b2:db:57:79:fe:17:82:be:ac:4b:d9:4a:72:ad:
1a:48:8b:7f:f1:cb:20:c5:33:79:84:4b:33:07:0c:
10:c0:fb:a6:cc:ac:ba:ff:c7:c4:9e:b0:69:45:dd:
4e:42:a7:50:15:e2:45:22:7e:40:37:1d:5e:ef:97:
c2:7e:73:d5:fd:f5:52:3c:af:a6:da:f0:71:fe:9c:
ba:d9:b9:9b:48:75:a9:76:5b:bb:5d:a1:6f:0c:34:
1d:c6:20:e5:68:ae:31:72:78:78:34:6a:a7:54:5c:
73:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:9A:8E:12:0C:A4:91:CA:EC:00:ED:35:2F:F3:89:64:90:79:B3:29
X509v3 Authority Key Identifier:
keyid:FA:5A:25:98:2F:7B:74:71:12:B0:FF:35:8F:3D:24:A5:62:CF:CF:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:f9:ba:39:8e:a6:34:85:db:e0:4f:f8:26:6a:36:84:5d:a1:
fe:20:fb:fa:ad:50:9f:1b:59:dc:a1:c9:8c:e3:65:0a:93:6a:
22:8f:cb:e1:e5:01:91:fc:9d:a1:25:04:36:ea:82:87:2f:06:
6f:c9:4e:68:71:df:dc:e3:18:ec:4c:d5:f9:5e:47:96:23:88:
a6:55:90:21:c1:ea:d5:66:6a:c9:35:43:ed:f8:2b:75:9b:b5:
55:51:d0:15:35:6c:10:15:2b:22:91:89:92:9d:a6:48:6d:79:
9f:17:18:70:d4:c1:ad:f8:25:46:9d:5d:2c:49:5c:6a:4b:65:
6e:38:d6:41:9e:28:dc:6c:0a:10:29:69:14:6a:32:de:21:99:
59:4f:18:2d:ed:b2:96:9f:3e:cb:b0:d7:eb:7f:2f:c2:8d:b6:
eb:86:c4:1b:ec:f7:f1:7a:79:f0:62:92:08:fd:f1:51:7a:0d:
56:74:ea:d7:b4:63:aa:42:dd:7e:03:15:42:c6:47:90:35:7e:
f7:32:4c:d7:a4:b9:fb:79:55:95:ec:f1:3d:98:8d:85:20:5e:
5a:63:1b:d6:db:02:0d:23:75:7b:fa:b9:d1:e3:bf:79:6d:03:
71:02:00:18:47:62:f7:b4:44:76:59:7e:b5:8e:5c:00:77:dc:
79:a6:06:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:22:11 2026 by rpki-client