Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
File: lQ8oTPXDnybd0jUufyrfeo3GD44.mft (raw, json)
Hash identifier: l/Nx0tL2f8IX1fUu8ahm6rHiJjvQXOjrjx5g6bDiFic=
Subject key identifier: CB:1E:26:40:DA:E4:DE:0B:8D:77:48:1A:DB:6A:05:D8:92:D9:9D:01
Authority key identifier: 95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
Certificate issuer: /CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Certificate serial: 019D97E287391913E482E9C79CD815964954
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
Manifest number: 0EBC
Signing time: Thu 16 Apr 2026 20:01:38 +0000
Manifest this update: Thu 16 Apr 2026 20:01:38 +0000
Manifest next update: Fri 17 Apr 2026 20:01:38 +0000
Files and hashes: 1: lQ8oTPXDnybd0jUufyrfeo3GD44.crl (hash: Fc5HYINAZKGlFEJ8aQ2j3XfqJCgfd8z7b5p61fdV8iQ=)
2: yB6M8ezFHQHag23503sXzkmX4yQ.roa (hash: epvHA2OWGmIXHjeNZ2bPshcPm5dCsn8VP6Fq2wrQdO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e2:87:39:19:13:e4:82:e9:c7:9c:d8:15:96:49:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Validity
Not Before: Apr 16 20:01:38 2026 GMT
Not After : Apr 17 20:01:38 2026 GMT
Subject: CN=cb1e2640dae4de0b8d77481adb6a05d892d99d01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0b:08:5d:ef:5c:73:51:9c:53:78:97:a3:f1:
b5:6b:07:cc:2e:6a:be:15:51:7a:b9:2d:db:8c:03:
0b:69:a3:b9:18:fb:be:a4:04:11:7d:cb:36:39:76:
92:4f:23:6f:5c:1d:33:cf:3e:c8:34:58:c0:09:5b:
c7:38:20:db:19:42:75:78:6b:0c:90:a4:d5:a6:a6:
d1:fd:0e:61:4e:ce:78:b8:30:5d:36:38:38:42:45:
4e:fd:44:0d:82:e3:66:2d:c4:43:59:f9:c5:d2:b5:
bd:9b:ce:f0:76:05:7d:b3:95:cc:92:a6:da:65:dc:
72:eb:95:d9:de:a4:83:b3:47:35:7d:63:95:33:42:
92:b9:5a:e7:d4:4a:61:f1:a0:4b:a5:20:27:e7:3d:
e5:81:86:3f:a5:15:c2:23:4a:11:a3:01:4d:02:9a:
f4:18:3c:0a:d0:da:49:c4:63:d7:06:f9:e9:a9:a2:
82:31:2d:0f:c6:eb:3d:85:1a:d5:96:fb:d5:99:3b:
5f:df:50:84:15:d2:1f:ff:e1:68:e1:93:b9:cf:31:
ed:b7:e2:e3:8f:8e:7d:af:9d:77:ea:1c:a8:98:6b:
27:c0:4e:02:2a:ea:15:aa:00:df:82:d7:f2:d5:fa:
f2:07:30:77:66:a2:47:64:16:80:d2:b1:68:08:a3:
19:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:1E:26:40:DA:E4:DE:0B:8D:77:48:1A:DB:6A:05:D8:92:D9:9D:01
X509v3 Authority Key Identifier:
keyid:95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:8f:6d:7b:65:6f:fe:02:77:0c:da:35:7b:60:86:b5:66:26:
53:d6:df:51:6c:b8:cd:f3:f0:1e:73:3a:c4:6f:c7:78:7c:d1:
75:fa:16:f6:1f:70:8e:21:8a:c0:45:e4:a1:83:28:d5:5e:47:
8e:ce:2f:6e:6a:52:c4:d4:ba:b6:42:7d:9f:90:0f:11:92:0c:
00:b5:33:49:7e:7e:13:f6:5d:7d:af:8f:cb:60:69:72:61:19:
24:26:a2:29:0f:31:a6:24:f5:35:b5:f7:e3:07:ec:a3:ca:10:
e5:5d:97:2d:ff:e7:63:25:d3:a4:86:55:55:cd:7a:49:e0:9f:
95:05:63:9c:4b:2e:16:1a:72:13:2b:46:ad:be:c6:0d:e9:44:
9d:36:9d:2a:b6:46:19:43:dc:a1:ae:b5:3a:81:a3:0f:08:7a:
a2:34:df:c6:53:02:6d:4f:4c:05:3d:ef:dc:92:cc:5c:51:3d:
b1:7b:21:21:79:d1:0f:56:92:af:58:26:d7:4f:75:f8:62:c8:
f7:c8:06:d3:a5:97:63:2d:a6:38:d9:b3:cf:17:70:56:74:43:
82:a5:1e:7d:7f:d4:32:63:a9:9c:c8:ac:11:a8:06:39:0b:d4:
c7:a9:95:8f:32:43:f1:c0:31:17:1e:95:ee:75:be:04:74:8c:
bc:67:9f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:03:48 2026 by rpki-client