Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
File: LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft (raw, json)
Hash identifier: k0h+64TOgTgGXO6ddB6rY/g8nFCZBlpcyDVLaxPwTKg=
Subject key identifier: AC:FB:41:17:C8:7D:40:FA:A2:E6:16:D1:2C:E8:C3:36:2B:40:44:B9
Authority key identifier: 2F:15:B7:3A:7C:2D:13:1E:C1:4E:BD:90:71:71:8B:54:C3:FB:A6:92
Certificate issuer: /CN=2f15b73a7c2d131ec14ebd9071718b54c3fba692
Certificate serial: 019D9AABE1A26060285F86DD247C1C84BE3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
Manifest number: 05D6
Signing time: Fri 17 Apr 2026 09:00:48 +0000
Manifest this update: Fri 17 Apr 2026 09:00:48 +0000
Manifest next update: Sat 18 Apr 2026 09:00:48 +0000
Files and hashes: 1: LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl (hash: Fvh20/t3DymjLZ0cS687OAsbDpoL/rthhbMrUlXScN8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:e1:a2:60:60:28:5f:86:dd:24:7c:1c:84:be:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f15b73a7c2d131ec14ebd9071718b54c3fba692
Validity
Not Before: Apr 17 09:00:48 2026 GMT
Not After : Apr 18 09:00:48 2026 GMT
Subject: CN=acfb4117c87d40faa2e616d12ce8c3362b4044b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d2:4e:52:7e:dd:72:53:35:ff:77:87:af:30:
59:6f:95:6d:10:d8:d7:ed:df:12:fd:02:25:c8:cd:
30:49:8b:0e:ae:1c:53:d1:e5:a9:44:b0:26:56:e7:
30:06:d9:c5:4a:b7:62:17:5c:cc:8e:a5:c0:eb:f1:
84:27:bb:c4:95:d5:41:19:83:11:89:d7:d1:3b:87:
40:c3:85:f0:e1:f6:ef:b4:9d:90:fc:77:27:c8:78:
5f:a1:96:d3:2e:db:d7:4e:68:27:6b:c6:10:06:3a:
90:c9:fc:b1:7f:c3:17:aa:35:36:c9:6b:85:37:09:
4f:75:9b:f3:1a:d7:0f:0a:57:09:ff:35:0f:55:02:
70:a9:05:70:64:f6:8e:35:97:5c:94:8a:78:f5:3c:
a7:b1:06:01:88:9f:d3:de:7b:23:74:f3:17:9e:d6:
a0:57:a8:ec:bc:7c:5d:35:d0:6c:a1:8a:c7:6d:f7:
be:7b:7b:5e:88:73:17:e2:5c:76:84:80:82:24:7d:
00:05:b3:03:b7:ef:a1:dc:49:ed:54:29:99:ed:06:
04:27:17:90:28:80:35:a5:78:80:8d:c5:14:f8:6a:
c5:05:39:3c:3b:c4:42:98:a1:7e:87:3e:87:e1:e8:
71:9f:c9:74:be:27:1b:85:35:a9:7c:08:a8:2f:53:
db:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:FB:41:17:C8:7D:40:FA:A2:E6:16:D1:2C:E8:C3:36:2B:40:44:B9
X509v3 Authority Key Identifier:
keyid:2F:15:B7:3A:7C:2D:13:1E:C1:4E:BD:90:71:71:8B:54:C3:FB:A6:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LxW3OnwtEx7BTr2QcXGLVMP7ppI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7929f4-ec35-4d9c-92a8-0eb45ef62d8d/1/LxW3OnwtEx7BTr2QcXGLVMP7ppI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:e8:0a:a6:b3:5e:55:58:02:8a:96:1c:13:e4:9d:b5:9e:c3:
f0:5d:66:f3:ff:b0:9b:5d:fb:49:fb:ad:10:45:35:1e:c7:bb:
eb:0e:27:b5:b6:ef:ee:e4:16:0c:d5:a2:aa:3f:7f:50:9d:cf:
63:00:d4:b1:4c:57:ce:4b:da:72:f6:a7:be:f5:bd:3c:a5:04:
be:c0:40:fb:86:32:dd:23:55:4c:75:98:07:77:07:4b:0b:74:
da:09:c7:cf:b8:da:4d:4d:46:97:06:04:6c:41:68:2b:64:6d:
19:a8:07:22:22:c6:54:8b:c1:f1:13:d5:d3:ea:9f:55:68:a2:
4a:b0:c3:6f:94:d9:04:50:92:75:f3:d1:e4:f4:e7:5b:3e:24:
a3:06:40:e3:92:24:9f:68:75:8f:2d:f9:46:37:1d:dd:63:2b:
b3:09:4e:60:72:11:ff:d2:44:a8:a7:f0:1e:16:1b:83:c5:c2:
4d:d7:08:42:7f:bf:ab:5a:aa:b2:04:0e:c7:bc:04:d0:1d:c9:
85:14:b5:b8:97:03:b6:b9:11:ae:66:f6:f0:04:51:8e:58:57:
fb:24:5f:06:73:3e:70:24:71:68:6b:7e:6a:95:3b:69:2c:24:
cd:a7:39:64:e5:b8:b0:f6:c5:a7:de:cb:87:85:9f:89:ce:d0:
52:f9:49:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aq+GiYGAoX4bdJHwchL48MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmMTViNzNhN2MyZDEzMWVjMTRlYmQ5MDcxNzE4YjU0YzNm
YmE2OTIwHhcNMjYwNDE3MDkwMDQ4WhcNMjYwNDE4MDkwMDQ4WjAzMTEwLwYDVQQD
EyhhY2ZiNDExN2M4N2Q0MGZhYTJlNjE2ZDEyY2U4YzMzNjJiNDA0NGI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6dJOUn7dclM1/3eHrzBZb5VtENjX
7d8S/QIlyM0wSYsOrhxT0eWpRLAmVucwBtnFSrdiF1zMjqXA6/GEJ7vEldVBGYMR
idfRO4dAw4Xw4fbvtJ2Q/HcnyHhfoZbTLtvXTmgna8YQBjqQyfyxf8MXqjU2yWuF
NwlPdZvzGtcPClcJ/zUPVQJwqQVwZPaONZdclIp49TynsQYBiJ/T3nsjdPMXntag
V6jsvHxdNdBsoYrHbfe+e3teiHMX4lx2hICCJH0ABbMDt++h3EntVCmZ7QYEJxeQ
KIA1pXiAjcUU+GrFBTk8O8RCmKF+hz6H4ehxn8l0vicbhTWpfAioL1PbCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKz7QRfIfUD6ouYW0SzowzYrQES5MB8GA1UdIwQY
MBaAFC8Vtzp8LRMewU69kHFxi1TD+6aSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTHhXM09ud3RFeDdCVHIyUWNYR0xWTVA3cHBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83OTI5ZjQtZWMzNS00ZDljLTkyYTgt
MGViNDVlZjYyZDhkLzEvTHhXM09ud3RFeDdCVHIyUWNYR0xWTVA3cHBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83OTI5ZjQtZWMzNS00ZDljLTkyYTgtMGViNDVlZjYyZDhk
LzEvTHhXM09ud3RFeDdCVHIyUWNYR0xWTVA3cHBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlegKprNe
VVgCipYcE+SdtZ7D8F1m8/+wm137SfutEEU1Hse76w4ntbbv7uQWDNWiqj9/UJ3P
YwDUsUxXzkvacvanvvW9PKUEvsBA+4Yy3SNVTHWYB3cHSwt02gnHz7jaTU1GlwYE
bEFoK2RtGagHIiLGVIvB8RPV0+qfVWiiSrDDb5TZBFCSdfPR5PTnWz4kowZA45Ik
n2h1jy35Rjcd3WMrswlOYHIR/9JEqKfwHhYbg8XCTdcIQn+/q1qqsgQOx7wE0B3J
hRS1uJcDtrkRrmb28ARRjlhX+yRfBnM+cCRxaGt+apU7aSwkzac5ZOW4sPbFp97L
h4Wfic7QUvlJdQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 14:03:54 2026 by rpki-client