Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
File: 1-lolmC97dHESsP81jz0kpWLPz-w.mft (raw, json)
Hash identifier: PlPWreNxq+ZQAP+PsDOH2/tIlO7S9dPiDG7t+t+OCyM=
Subject key identifier: 47:A8:CA:EA:CA:2D:79:4B:34:2A:C7:30:79:43:D7:95:11:C9:8C:C5
Authority key identifier: FA:5A:25:98:2F:7B:74:71:12:B0:FF:35:8F:3D:24:A5:62:CF:CF:EC
Certificate issuer: /CN=fa5a25982f7b747112b0ff358f3d24a562cfcfec
Certificate serial: 019DA453DDE10DB37640F36F0C63DFD4F641
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
Manifest number: 0171
Signing time: Sun 19 Apr 2026 06:00:52 +0000
Manifest this update: Sun 19 Apr 2026 06:00:52 +0000
Manifest next update: Mon 20 Apr 2026 06:00:52 +0000
Files and hashes: 1: 1-lolmC97dHESsP81jz0kpWLPz-w.crl (hash: 7qyB4HL2cpieNZWqBxZ85+mF6kLRX11wnyCAgmQAW1E=)
2: iYN0utCjOjCIPINNJfjhuG0vjOg.roa (hash: 7Wnyb9CGOm4TN0ey7ufrrNiIF/X3LDz9AlFMHrkszjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:53:dd:e1:0d:b3:76:40:f3:6f:0c:63:df:d4:f6:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa5a25982f7b747112b0ff358f3d24a562cfcfec
Validity
Not Before: Apr 19 06:00:52 2026 GMT
Not After : Apr 20 06:00:52 2026 GMT
Subject: CN=47a8caeaca2d794b342ac7307943d79511c98cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:99:92:0d:14:9a:fb:a4:12:0f:39:2e:84:a9:
fa:3a:07:d9:cd:a5:de:14:a9:82:ac:b0:ca:6c:02:
92:0b:19:76:1f:5d:cb:db:42:92:9b:de:f6:0e:4f:
63:da:48:f5:69:dc:e5:09:b6:1d:5e:64:83:b3:2d:
05:bf:b5:75:e6:b6:e7:3b:12:eb:f7:69:0d:24:65:
82:75:52:9c:53:c0:a6:0a:f3:83:52:9c:97:91:2e:
40:1d:45:6a:62:10:93:2b:44:34:20:f9:39:57:23:
a9:f1:59:d1:d0:71:cd:5a:3d:d0:9e:62:64:de:c9:
b7:b3:dd:72:86:eb:2b:4b:84:b2:4d:40:fd:38:a6:
23:a4:3d:f1:fa:13:30:e3:a9:2e:fe:8f:1a:ba:4d:
59:d7:f7:c3:a5:e9:44:a1:35:c9:ae:bf:be:82:18:
f5:d6:40:f9:77:f3:09:1a:a7:16:97:87:ca:14:9a:
bd:cf:0d:33:6d:62:fe:5a:ee:ec:ba:7d:d3:b5:c8:
7b:05:0e:84:b2:09:ba:02:89:35:1c:cf:ff:d2:ef:
2b:7d:49:8f:b1:ae:f7:a2:38:99:e6:f0:8f:95:f2:
bc:80:95:cb:02:b4:44:4f:6e:4d:d3:1f:28:90:40:
2d:ae:37:e4:8b:41:a2:33:e2:24:e7:c3:97:ab:f3:
0d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A8:CA:EA:CA:2D:79:4B:34:2A:C7:30:79:43:D7:95:11:C9:8C:C5
X509v3 Authority Key Identifier:
keyid:FA:5A:25:98:2F:7B:74:71:12:B0:FF:35:8F:3D:24:A5:62:CF:CF:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:96:2a:cc:da:13:db:b2:4c:7d:ec:92:0c:05:49:81:c1:13:
d7:0d:c8:7f:16:cd:29:24:cf:be:88:68:7f:1b:02:26:45:09:
62:5f:9f:5c:44:38:6f:d4:33:4d:1a:17:86:2c:bc:17:19:42:
b4:c8:2e:af:bc:72:4c:52:84:d4:c9:2e:5c:71:fb:e6:2c:2e:
81:80:20:14:ca:5f:dc:45:c1:bb:aa:dc:4b:03:bc:bd:e6:4a:
48:94:31:13:4c:e4:e7:31:f6:8b:5c:cb:d7:dc:d9:52:4c:68:
cb:90:36:e9:d6:a4:85:56:86:9d:ec:97:b6:e5:1c:ac:27:de:
c5:ec:8d:af:75:60:46:6f:19:46:ae:7d:5c:5b:ec:97:ba:9c:
0e:dd:a6:5b:72:55:55:93:e7:28:84:b4:9c:03:ac:dc:52:f4:
bc:bc:7c:ff:8e:20:88:ca:eb:da:e2:3f:b1:3c:c7:4a:97:40:
f7:ac:e3:01:39:ea:83:8c:42:96:bc:68:5e:26:db:4d:aa:cc:
97:13:88:08:70:b0:d9:b6:f1:f1:a1:97:f5:cf:a9:40:52:68:
36:88:91:7a:21:c5:38:ec:07:56:bd:32:36:6e:bd:14:dc:ce:
ce:e0:2b:23:de:30:90:d3:b8:a3:62:9a:10:02:ff:76:ed:8c:
be:93:35:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 13:41:25 2026 by rpki-client