Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
File: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft (raw, json)
Hash identifier: elZ/w42CIWtiQiDar4Y2LpFZliIx/hpzmpmUJTYB8f8=
Subject key identifier: 37:87:50:2E:2C:A4:8A:FE:91:A7:0D:13:EE:68:7C:0B:1D:9E:06:99
Authority key identifier: 94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
Certificate issuer: /CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Certificate serial: 019CAB34235C86F681E3F14DF111B41D8694
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
Manifest number: 14E1
Signing time: Sun 01 Mar 2026 21:00:46 +0000
Manifest this update: Sun 01 Mar 2026 21:00:46 +0000
Manifest next update: Mon 02 Mar 2026 21:00:46 +0000
Files and hashes: 1: AZhIdfQe8WwT9TZ_N6T1lS4NxsE.roa (hash: xpA4Tx1xSz6uA3Q1dMsrfkLMQuhB5qhwmJuQPXJmqYU=)
2: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl (hash: A1TMg3OtLfwdRQ6Om3kE2yIa2k6EWwWOKbl3aPqGpfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:23:5c:86:f6:81:e3:f1:4d:f1:11:b4:1d:86:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Validity
Not Before: Mar 1 21:00:46 2026 GMT
Not After : Mar 2 21:00:46 2026 GMT
Subject: CN=3787502e2ca48afe91a70d13ee687c0b1d9e0699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ce:87:1f:1e:3d:c6:5f:7d:46:ca:be:df:66:
97:62:8c:28:dd:0f:a2:94:9d:55:c5:1a:82:46:b0:
58:08:b3:5c:ee:df:cb:16:c9:2b:70:b0:80:f5:9f:
b5:6b:8d:6a:b7:32:9f:d3:03:83:80:cf:fc:69:f0:
f3:5b:1c:a9:94:76:53:41:52:8f:7c:c7:e5:0e:dc:
fe:06:2a:17:1a:f0:2d:b3:a1:2a:02:56:d5:d7:b7:
7a:e0:f1:d8:b7:2b:dc:f6:56:42:ce:55:31:eb:be:
9d:0e:88:c8:e0:90:8b:c9:5d:cc:a1:01:3e:b3:a4:
e6:bd:7d:4c:4c:bf:20:cb:05:0a:53:ef:66:dd:60:
dd:7c:d6:90:d9:80:a6:d8:63:b4:90:5c:c6:dd:68:
73:33:b4:69:ce:0c:25:61:77:91:bd:32:08:f4:2b:
ac:b1:ff:e0:f2:8e:46:07:c5:bd:f6:f8:5a:52:b7:
db:68:f2:c5:2d:91:9b:86:29:cd:56:ab:94:3d:d0:
73:c8:8d:56:85:60:46:81:6c:b0:e8:77:aa:8a:42:
d0:84:11:52:e0:f0:a9:94:d5:22:b6:8c:77:f7:dc:
4d:ca:57:66:d8:4e:5d:08:87:ea:96:4b:33:02:17:
90:90:f6:9b:c0:03:86:2f:88:8f:28:89:05:fd:81:
b4:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:87:50:2E:2C:A4:8A:FE:91:A7:0D:13:EE:68:7C:0B:1D:9E:06:99
X509v3 Authority Key Identifier:
keyid:94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:e0:c0:ce:7e:5f:47:a6:1d:d8:71:50:7c:c0:7d:ae:da:9d:
0d:c2:73:f2:d0:8f:c2:38:41:ca:90:e7:2c:2f:42:36:2d:4f:
67:04:12:53:44:5a:4f:ad:b4:6a:ad:ee:0b:1e:a2:ad:d6:e4:
43:28:6d:ca:80:a1:cb:9e:0a:7f:40:2d:65:3f:c7:43:9e:72:
3f:42:2a:ab:ea:44:e7:e6:42:78:68:61:65:0a:16:f7:73:95:
26:e0:96:e0:5d:c2:4b:b4:6d:d9:07:9e:44:2d:b7:21:d3:01:
4f:a3:c6:bd:49:64:18:65:94:87:bb:97:f6:35:32:62:bb:b9:
41:f3:2b:b6:5e:48:ce:2c:9d:df:c2:2d:3b:af:68:eb:09:69:
98:33:77:2a:59:d2:3a:d8:b7:cd:f3:99:70:85:de:a5:d8:9a:
da:49:80:9c:d4:a9:9e:21:95:e0:c9:f9:4f:0c:2b:13:3e:34:
dd:24:f4:f1:b8:29:aa:17:15:68:c7:51:2a:80:c4:18:0a:b4:
02:9e:20:2b:87:73:2d:b5:ac:d6:2d:9d:87:14:cf:6d:84:40:
34:06:11:91:e1:dd:38:ca:3a:40:74:aa:e4:2e:16:1d:80:0c:
21:bd:a2:c1:c9:b4:f8:2a:fe:ae:f6:ed:6b:d6:0e:a5:12:de:
e5:37:94:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:28:52 2026 by rpki-client