Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
File: lJQumzXZGQbREkXXO9WM3Y7KSdE.mft (raw, json)
Hash identifier: j4go/n9nhjh4v25LdDUrKHX3HE5+9ZqkUp9VeCjP8l4=
Subject key identifier: 97:41:AB:27:FA:64:20:72:78:64:F5:75:81:68:00:A4:7B:61:2C:70
Authority key identifier: 94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
Certificate issuer: /CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Certificate serial: 019D9C6359A1B391ABB077BCCDE3D59EC0E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
Manifest number: 181A
Signing time: Fri 17 Apr 2026 17:00:49 +0000
Manifest this update: Fri 17 Apr 2026 17:00:49 +0000
Manifest next update: Sat 18 Apr 2026 17:00:49 +0000
Files and hashes: 1: lJQumzXZGQbREkXXO9WM3Y7KSdE.crl (hash: 0WwsimcX5KCX0gDvYzIUE5ag34X3hcNwEMiW5thgpVU=)
2: lRB94ldr7rgqeGjPRMI9ABoba14.roa (hash: SLe56IHD80WuKPH4ey2PGtoGoV+VHvwhtrqQxiN+bUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:63:59:a1:b3:91:ab:b0:77:bc:cd:e3:d5:9e:c0:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94942e9b35d91906d11245d73bd58cdd8eca49d1
Validity
Not Before: Apr 17 17:00:49 2026 GMT
Not After : Apr 18 17:00:49 2026 GMT
Subject: CN=9741ab27fa6420727864f575816800a47b612c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6e:be:5e:bf:93:3b:ec:75:d7:73:76:a1:bb:
5c:61:d6:13:62:0f:14:3d:34:a1:02:8d:ca:3a:28:
91:ed:b5:1a:0f:69:b8:b3:18:00:48:d0:c0:94:f1:
45:0b:aa:71:6a:9a:e5:47:6c:07:33:a8:d7:c9:24:
50:80:15:cc:ac:53:9b:96:5f:bb:76:1a:e2:e7:39:
a9:44:69:ff:6b:05:63:e1:7b:5c:fa:46:6a:b6:d1:
df:0a:cc:cf:90:b6:d1:2e:6d:ec:35:ff:54:d0:91:
49:77:ba:72:0f:ef:5f:21:d6:8a:a4:be:48:62:cb:
1f:c4:be:4d:43:e6:8a:6a:f8:f6:3c:55:04:11:16:
9d:16:7c:ce:71:2c:6d:cc:f7:8b:22:69:1b:4b:9c:
59:0f:80:21:cf:18:8b:85:28:b7:52:67:6e:be:22:
21:09:c3:6d:7e:57:86:fb:39:1a:82:d9:b6:b7:15:
3a:45:a9:0a:c8:c2:45:a9:9f:90:33:59:5e:46:25:
42:c3:cd:61:61:c6:61:ea:1f:ad:87:b2:05:59:5e:
dd:83:85:54:34:ad:04:ff:72:8e:84:d3:9b:dd:af:
1b:cc:fb:11:a2:3e:7e:93:0c:c9:be:f4:84:c1:d1:
13:44:45:5e:e4:e0:92:3a:60:54:df:b9:f4:d9:dc:
ea:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:41:AB:27:FA:64:20:72:78:64:F5:75:81:68:00:A4:7B:61:2C:70
X509v3 Authority Key Identifier:
keyid:94:94:2E:9B:35:D9:19:06:D1:12:45:D7:3B:D5:8C:DD:8E:CA:49:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJQumzXZGQbREkXXO9WM3Y7KSdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c60980-a1de-4390-a0a3-32c20caf08ed/1/lJQumzXZGQbREkXXO9WM3Y7KSdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:10:b5:08:01:fc:2c:ab:a8:46:fb:a5:7a:7d:34:07:5d:34:
94:ef:92:fc:30:8d:4a:b8:46:d4:8b:b9:ca:03:bb:6e:df:12:
0e:30:eb:a1:b8:76:68:28:49:18:ca:a1:fd:5c:fa:cc:38:ed:
9c:c7:30:7e:1a:bb:8e:ec:1a:7c:bb:d1:99:6c:22:a0:f4:4f:
34:f9:4b:0d:6b:ad:1c:c5:c3:fb:5d:fe:f3:79:9b:37:08:66:
ea:41:f7:c9:b9:99:dc:35:6a:ee:3f:c3:ec:f2:c2:48:f9:53:
ec:48:97:53:09:9c:7c:a1:15:78:72:7c:aa:b9:ba:3d:e9:08:
16:03:fe:42:e1:5f:75:b1:cd:fc:8e:85:8b:5b:36:69:28:1a:
ed:e8:fa:ba:e1:86:13:64:dc:92:5c:b1:ad:ee:18:b6:fa:6e:
18:f0:95:9e:84:f2:7a:02:ff:7c:62:8e:89:4b:0e:2c:2e:16:
f8:9e:98:cb:a2:42:cb:a4:8e:48:e3:72:d6:a5:66:9b:df:db:
ab:7d:dd:cd:10:b7:01:82:83:10:72:b7:ce:29:4d:27:ac:d8:
4b:15:26:9b:5a:77:d0:eb:01:b5:d2:c1:75:c1:03:0c:f8:13:
6b:62:ae:d9:a1:e4:09:59:08:83:96:98:5c:c8:12:ef:cc:98:
75:09:07:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cY1mhs5GrsHe8zePVnsDjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0OTQyZTliMzVkOTE5MDZkMTEyNDVkNzNiZDU4Y2RkOGVj
YTQ5ZDEwHhcNMjYwNDE3MTcwMDQ5WhcNMjYwNDE4MTcwMDQ5WjAzMTEwLwYDVQQD
Eyg5NzQxYWIyN2ZhNjQyMDcyNzg2NGY1NzU4MTY4MDBhNDdiNjEyYzcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAum6+Xr+TO+x113N2obtcYdYTYg8U
PTShAo3KOiiR7bUaD2m4sxgASNDAlPFFC6pxaprlR2wHM6jXySRQgBXMrFObll+7
dhri5zmpRGn/awVj4Xtc+kZqttHfCszPkLbRLm3sNf9U0JFJd7pyD+9fIdaKpL5I
YssfxL5NQ+aKavj2PFUEERadFnzOcSxtzPeLImkbS5xZD4AhzxiLhSi3UmduviIh
CcNtfleG+zkagtm2txU6RakKyMJFqZ+QM1leRiVCw81hYcZh6h+th7IFWV7dg4VU
NK0E/3KOhNOb3a8bzPsRoj5+kwzJvvSEwdETREVe5OCSOmBU37n02dzqmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJdBqyf6ZCByeGT1dYFoAKR7YSxwMB8GA1UdIwQY
MBaAFJSULps12RkG0RJF1zvVjN2OyknRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEpRdW16WFpHUWJSRWtYWE85V00zWTdLU2RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jNjA5ODAtYTFkZS00MzkwLWEwYTMt
MzJjMjBjYWYwOGVkLzEvbEpRdW16WFpHUWJSRWtYWE85V00zWTdLU2RFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9jNjA5ODAtYTFkZS00MzkwLWEwYTMtMzJjMjBjYWYwOGVk
LzEvbEpRdW16WFpHUWJSRWtYWE85V00zWTdLU2RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtRC1CAH8
LKuoRvulen00B100lO+S/DCNSrhG1Iu5ygO7bt8SDjDrobh2aChJGMqh/Vz6zDjt
nMcwfhq7juwafLvRmWwioPRPNPlLDWutHMXD+13+83mbNwhm6kH3ybmZ3DVq7j/D
7PLCSPlT7EiXUwmcfKEVeHJ8qrm6PekIFgP+QuFfdbHN/I6Fi1s2aSga7ej6uuGG
E2Tcklyxre4YtvpuGPCVnoTyegL/fGKOiUsOLC4W+J6Yy6JCy6SOSONy1qVmm9/b
q33dzRC3AYKDEHK3zilNJ6zYSxUmm1p30OsBtdLBdcEDDPgTa2Ku2aHkCVkIg5aY
XMgS78yYdQkHxA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 23:37:33 2026 by rpki-client