Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
File: 1-lolmC97dHESsP81jz0kpWLPz-w.mft (raw, json)
Hash identifier: SAPQdfJOkhIL6MjWNczBrlbwO9bMszhtBhKo0fCg840=
Subject key identifier: 78:69:45:63:34:2B:DB:59:28:B1:5F:C6:E9:8B:2B:2C:C0:6D:6B:03
Authority key identifier: FA:5A:25:98:2F:7B:74:71:12:B0:FF:35:8F:3D:24:A5:62:CF:CF:EC
Certificate issuer: /CN=fa5a25982f7b747112b0ff358f3d24a562cfcfec
Certificate serial: 019CAF10D0DFBD191EF7B9BE33338117BE7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
Manifest number: F2
Signing time: Mon 02 Mar 2026 15:00:40 +0000
Manifest this update: Mon 02 Mar 2026 15:00:40 +0000
Manifest next update: Tue 03 Mar 2026 15:00:40 +0000
Files and hashes: 1: 1-lolmC97dHESsP81jz0kpWLPz-w.crl (hash: jcKul3dNUhOnhh6rnAL1cniw3gV7qK+Wd/QNXIkSU/Y=)
2: iYN0utCjOjCIPINNJfjhuG0vjOg.roa (hash: 7Wnyb9CGOm4TN0ey7ufrrNiIF/X3LDz9AlFMHrkszjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:10:d0:df:bd:19:1e:f7:b9:be:33:33:81:17:be:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa5a25982f7b747112b0ff358f3d24a562cfcfec
Validity
Not Before: Mar 2 15:00:40 2026 GMT
Not After : Mar 3 15:00:40 2026 GMT
Subject: CN=78694563342bdb5928b15fc6e98b2b2cc06d6b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:20:4e:2c:ee:e9:5b:ef:95:b7:63:75:4b:6d:
e3:fb:26:57:ee:b0:57:22:27:be:ea:d8:92:d7:5f:
d0:5f:cb:5b:a4:74:70:d3:0c:b1:ac:3f:29:69:94:
44:90:05:6c:61:5c:7d:81:23:1b:e1:c2:9d:9a:bb:
90:5f:7e:ad:fa:cb:7a:f7:6d:07:0d:d6:96:cb:83:
5b:56:6d:33:97:6a:52:07:2f:fd:c4:c7:36:86:c0:
dc:a4:d5:68:92:b6:bd:1a:17:14:bd:4e:12:5b:8d:
d9:c9:d5:b9:e2:8c:27:37:28:3f:04:69:1e:3f:29:
a6:a4:c7:75:82:c9:3d:c1:15:89:7e:fc:f7:8f:e0:
89:3a:de:77:8f:cb:35:88:f5:7a:ec:70:b0:f6:6a:
7e:ce:21:46:04:f9:ad:d1:be:73:37:65:be:15:77:
b1:2f:69:eb:b7:db:4f:e3:b7:03:ee:68:9a:c5:96:
dd:33:b3:84:2d:15:f3:24:f9:62:4f:aa:45:89:ed:
59:70:52:33:5e:8d:d3:97:b5:c3:09:3e:a7:71:a1:
c8:8e:aa:b6:d1:51:8b:17:5e:da:14:1a:5d:8d:fc:
45:16:49:cc:b2:33:5d:b1:6a:39:5d:8d:51:c5:f2:
62:55:25:cf:73:bf:6b:06:73:c6:9f:5f:75:26:40:
3a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:69:45:63:34:2B:DB:59:28:B1:5F:C6:E9:8B:2B:2C:C0:6D:6B:03
X509v3 Authority Key Identifier:
keyid:FA:5A:25:98:2F:7B:74:71:12:B0:FF:35:8F:3D:24:A5:62:CF:CF:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:7a:e7:7d:9f:a5:9d:21:2e:75:24:ad:f0:c3:c9:61:d0:f5:
15:2e:16:f6:51:c9:1e:c5:d1:16:53:1e:32:5b:5b:6d:da:ec:
aa:1b:38:d6:2d:0b:ba:7c:c0:48:81:a1:91:78:36:7f:09:1a:
61:20:ba:1e:93:37:45:98:23:b1:af:95:e5:c6:7e:60:f7:a7:
97:d3:ba:b2:61:ca:e6:09:da:4d:e3:e7:32:ad:c9:cf:a4:f2:
a6:ad:c6:92:ce:fc:fa:57:da:8e:12:81:0c:54:60:20:ec:f7:
d6:e4:e4:60:7d:13:19:55:a1:81:70:59:30:c6:2a:4c:44:1c:
43:09:44:53:5e:f5:fc:43:1d:53:9e:50:7f:51:75:ab:ae:e5:
bc:af:79:ab:f9:1f:6c:11:db:0f:72:b1:68:23:1a:e0:d0:9f:
20:65:c5:3d:fe:15:7d:39:8c:57:fa:1b:4e:c0:f0:55:bb:b1:
20:b6:d8:1c:c0:4e:96:a6:0a:b6:f5:02:ee:7d:51:0c:41:5c:
95:dc:37:e9:ad:c3:22:68:fb:73:05:83:38:37:1b:c0:00:80:
01:bf:8e:24:9e:16:1f:d4:e6:21:db:be:60:79:0e:19:12:34:
d4:17:6a:9f:37:8d:40:c1:f3:8d:53:be:4a:fa:01:c3:d9:59:
dd:bb:cb:e4
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZyvENDfvRke97m+MzOBF75+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhNWEyNTk4MmY3Yjc0NzExMmIwZmYzNThmM2QyNGE1NjJj
ZmNmZWMwHhcNMjYwMzAyMTUwMDQwWhcNMjYwMzAzMTUwMDQwWjAzMTEwLwYDVQQD
Eyg3ODY5NDU2MzM0MmJkYjU5MjhiMTVmYzZlOThiMmIyY2MwNmQ2YjAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0CBOLO7pW++Vt2N1S23j+yZX7rBX
Iie+6tiS11/QX8tbpHRw0wyxrD8paZREkAVsYVx9gSMb4cKdmruQX36t+st6920H
DdaWy4NbVm0zl2pSBy/9xMc2hsDcpNVokra9GhcUvU4SW43ZydW54ownNyg/BGke
PymmpMd1gsk9wRWJfvz3j+CJOt53j8s1iPV67HCw9mp+ziFGBPmt0b5zN2W+FXex
L2nrt9tP47cD7miaxZbdM7OELRXzJPliT6pFie1ZcFIzXo3Tl7XDCT6ncaHIjqq2
0VGLF17aFBpdjfxFFknMsjNdsWo5XY1RxfJiVSXPc79rBnPGn191JkA6LQIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFHhpRWM0K9tZKLFfxumLKyzAbWsDMB8GA1UdIwQY
MBaAFPpaJZgve3RxErD/NY89JKViz8/sMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1sb2xtQzk3ZEhFU3NQODFqejBrcFdMUHotdy5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTkvNzZkN2FlLWRlNjctNGEwNS1hNzFi
LWRlNzc0YjBlMzFkZi8xLzEtbG9sbUM5N2RIRVNzUDgxanowa3BXTFB6LXcubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxUL2E5Lzc2ZDdhZS1kZTY3LTRhMDUtYTcxYi1kZTc3NGIwZTMx
ZGYvMS8xLWxvbG1DOTdkSEVTc1A4MWp6MGtwV0xQei13LmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP3rn
fZ+lnSEudSSt8MPJYdD1FS4W9lHJHsXRFlMeMltbbdrsqhs41i0LunzASIGhkXg2
fwkaYSC6HpM3RZgjsa+V5cZ+YPenl9O6smHK5gnaTePnMq3Jz6Typq3Gks78+lfa
jhKBDFRgIOz31uTkYH0TGVWhgXBZMMYqTEQcQwlEU171/EMdU55Qf1F1q67lvK95
q/kfbBHbD3KxaCMa4NCfIGXFPf4VfTmMV/obTsDwVbuxILbYHMBOlqYKtvUC7n1R
DEFcldw36a3DImj7cwWDODcbwACAAb+OJJ4WH9TmIdu+YHkOGRI01BdqnzeNQMHz
jVO+SvoBw9lZ3bvL5A==
-----END CERTIFICATE-----
Generated at Mon Mar 2 19:01:46 2026 by rpki-client