Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
File: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft (raw, json)
Hash identifier: apbn1KmV3tDszbUmeL6orYSlMmH4au6ek2V0xcnShSo=
Subject key identifier: E6:00:72:D8:5E:23:7E:CE:C8:BF:9F:10:C9:D9:E9:AD:89:AE:C2:DB
Authority key identifier: 94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
Certificate issuer: /CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Certificate serial: 019D98BD799B7B1556BB6134FB8C6562FAD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
Manifest number: 155C
Signing time: Fri 17 Apr 2026 00:00:47 +0000
Manifest this update: Fri 17 Apr 2026 00:00:47 +0000
Manifest next update: Sat 18 Apr 2026 00:00:47 +0000
Files and hashes: 1: AZhIdfQe8WwT9TZ_N6T1lS4NxsE.roa (hash: xpA4Tx1xSz6uA3Q1dMsrfkLMQuhB5qhwmJuQPXJmqYU=)
2: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl (hash: 7UqwNtwDqFDAZTeDVsdxv97kJ+XHyJeKWmt0bJTh9Vs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:79:9b:7b:15:56:bb:61:34:fb:8c:65:62:fa:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Validity
Not Before: Apr 17 00:00:47 2026 GMT
Not After : Apr 18 00:00:47 2026 GMT
Subject: CN=e60072d85e237ecec8bf9f10c9d9e9ad89aec2db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8e:81:b0:32:de:5e:aa:d7:89:ac:23:b9:33:
f3:a6:e4:e1:4e:e1:57:6e:b8:a5:43:25:bd:f8:7a:
1f:fa:9a:c9:c9:bb:ac:07:ba:f7:e7:66:4c:0f:3a:
a1:30:e8:c8:69:6b:08:ab:20:67:a5:17:bd:67:44:
94:f2:5d:1c:81:61:6b:1d:23:ee:ce:e4:ab:7a:b8:
c3:1f:f7:89:64:e9:f7:6f:13:c5:71:0b:9c:64:fd:
23:11:96:0b:0c:e1:fd:84:92:43:7e:1d:09:3e:71:
a4:67:e4:cd:b6:17:c1:ed:d4:8f:e9:84:a3:3d:46:
30:83:5e:6a:91:c5:93:f5:18:b2:9a:31:52:cf:b7:
55:72:c0:9f:1d:45:3f:20:50:66:08:3c:3a:58:1d:
f0:69:94:40:0d:90:e1:6c:9f:b4:43:e0:8f:cf:5f:
df:73:49:7b:3c:c4:db:0e:a3:3c:3a:35:64:9b:a4:
78:50:a3:64:90:30:e8:f4:3f:66:83:e8:0d:fe:ac:
93:92:d9:c2:8a:2c:4b:49:89:61:b4:17:80:ad:70:
4e:81:4f:17:b6:10:3c:7c:eb:46:75:19:0c:a9:fa:
24:07:f4:a3:4f:63:8b:40:75:cb:a8:8a:df:71:f9:
23:19:ba:bd:cc:37:ba:a0:c1:76:db:b9:93:25:25:
d8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:00:72:D8:5E:23:7E:CE:C8:BF:9F:10:C9:D9:E9:AD:89:AE:C2:DB
X509v3 Authority Key Identifier:
keyid:94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:80:5a:63:5b:0d:c9:23:0f:7f:75:36:d7:86:f7:e7:71:e2:
f0:f7:ad:55:b5:0d:b8:63:f4:7a:cb:38:af:dc:1c:af:a5:1c:
6c:83:bb:1f:e9:f6:f6:41:ef:1e:0a:00:33:42:f4:93:4b:53:
18:5d:24:30:29:29:3d:63:50:c4:00:dd:db:bf:80:25:6c:77:
cd:d9:e9:61:f8:ab:a3:2c:39:c0:09:d2:53:91:4c:65:d2:dc:
ee:91:8d:0a:ab:a2:8b:b2:5c:35:f1:b8:cb:44:80:7e:a7:63:
46:af:cc:ed:bf:46:0b:7c:59:4f:64:29:75:5a:e1:d7:fb:fd:
bc:cc:bc:ef:73:e8:c1:28:7a:4c:a0:40:1a:f3:65:37:c9:07:
6d:3a:ef:a1:e9:64:52:29:27:12:34:14:1d:5f:ab:4b:8d:cf:
34:11:d7:3f:13:f5:51:ff:b0:f6:77:ce:c6:e3:5b:81:26:9a:
fa:68:04:e6:19:8f:ea:8d:07:72:d7:1d:3e:01:c4:ac:e0:56:
59:29:2c:c4:6f:4a:9d:69:7f:00:22:22:91:42:34:db:75:47:
ce:83:a3:60:12:06:a1:b3:5f:97:d0:fe:9d:31:9f:d5:ed:23:
63:6b:7f:d6:7a:10:c8:6b:b2:ca:7f:86:b9:7b:bb:3d:4a:08:
46:6e:1e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:15:07 2026 by rpki-client