Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
File: lJQumzXZGQbREkXXO9WM3Y7KSdE.mft (raw, json)
Hash identifier: olUHnWw8zppuGX3KoNRQSSnGpcCdxm5HLhDmrJ8mi5g=
Subject key identifier: CA:03:95:A5:12:1F:BC:7F:FA:3A:45:A3:16:A2:36:78:1B:47:F8:9C
Authority key identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
Certificate issuer: /CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Certificate serial: 019CACEB9A33932FDED5AEF4603EE09B5144
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
Manifest number: 179E
Signing time: Mon 02 Mar 2026 05:00:47 +0000
Manifest this update: Mon 02 Mar 2026 05:00:47 +0000
Manifest next update: Tue 03 Mar 2026 05:00:47 +0000
Files and hashes: 1: lJQumzXZGQbREkXXO9WM3Y7KSdE.crl (hash: B14QSHNfwh1c2n64syHFj3zYCfzWHpYCZoh7/TQ3UiI=)
2: lRB94ldr7rgqeGjPRMI9ABoba14.roa (hash: SLe56IHD80WuKPH4ey2PGtoGoV+VHvwhtrqQxiN+bUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:9a:33:93:2f:de:d5:ae:f4:60:3e:e0:9b:51:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Validity
Not Before: Mar 2 05:00:47 2026 GMT
Not After : Mar 3 05:00:47 2026 GMT
Subject: CN=ca0395a5121fbc7ffa3a45a316a236781b47f89c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:35:0e:70:f9:46:1a:79:60:16:e4:21:0f:dd:
4b:0d:fc:f4:50:a4:5d:bd:ca:34:1b:43:ac:03:94:
c2:e3:19:1b:45:b4:0d:78:20:90:7c:de:03:03:6c:
f9:85:8d:b6:2b:8c:7e:be:5c:b9:e0:e7:4b:a2:12:
32:ef:a2:6b:61:06:83:fe:07:58:ec:82:11:13:2f:
64:6e:ae:17:f9:7e:e7:d4:a5:43:a5:36:db:a4:53:
eb:e4:f3:ad:58:16:ed:64:1e:f9:a3:27:72:2b:fb:
1f:89:ca:ce:d0:65:da:9f:98:d9:2b:bb:e0:be:d7:
f0:38:e3:2e:5f:65:8e:85:20:b0:cd:e1:28:fd:d7:
5c:49:a5:ec:3c:54:7d:ad:bd:76:99:98:12:df:5e:
87:20:20:73:d8:93:ad:44:36:d7:90:9b:b2:88:d8:
1c:57:82:58:14:ad:e5:bf:1e:c5:30:a6:c1:65:fa:
d0:c5:fd:e7:af:88:5c:86:36:99:7d:54:8e:7c:c2:
2e:9f:18:55:ac:4b:0b:57:05:e2:4f:b8:16:ce:f3:
75:e3:3b:f9:45:56:68:a7:57:89:0e:ac:e9:b8:93:
fb:72:9e:e5:f9:16:61:84:44:32:45:11:13:9a:f4:
fb:ed:16:21:2d:f0:34:b1:a5:32:e0:6a:ea:49:23:
e6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:03:95:A5:12:1F:BC:7F:FA:3A:45:A3:16:A2:36:78:1B:47:F8:9C
X509v3 Authority Key Identifier:
keyid:94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:78:3d:52:18:73:23:dc:ae:2b:42:be:1c:75:24:6c:ff:01:
13:f4:a0:d7:4f:f5:fb:8b:e4:20:9c:28:1c:a1:81:1f:86:fb:
48:e0:23:bb:20:e2:48:da:2b:ef:29:54:0b:66:49:2d:62:dd:
89:83:ee:a0:cd:5f:3a:d7:c9:28:af:99:53:10:29:df:d6:b4:
c3:d1:27:42:41:73:e3:70:42:e6:4c:8f:51:c1:4e:aa:9f:9f:
56:0d:ab:7b:1c:4f:e0:75:6c:05:ee:92:c8:1b:d3:64:60:c4:
a9:ba:0c:28:1f:30:77:05:c8:9b:4d:71:ee:52:49:9f:8f:48:
7e:88:68:d0:d3:77:ef:1f:5a:b8:d2:7f:7b:06:a9:25:e5:b4:
32:e2:c1:87:46:6f:66:81:99:7b:f2:9c:0b:59:be:71:c1:73:
d8:32:85:24:63:91:43:13:f5:78:2b:47:52:c9:7d:42:f7:83:
f6:78:bb:11:b7:50:59:51:e9:af:a1:02:2d:31:07:7e:ca:84:
64:95:d7:5d:54:ac:c5:c5:85:53:f5:0e:4d:49:8a:d7:20:70:
32:89:ce:9d:f7:69:d3:f7:a4:9e:c1:91:6a:23:d6:84:61:9b:
fb:cf:46:c7:f9:c6:8b:84:f1:62:27:90:7a:34:a8:67:7c:be:
18:d6:bf:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:52:40 2026 by rpki-client