Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
File: LdgAjePP9i0vrKENmf8gw-h43N8.mft (raw, json)
Hash identifier: Be9O31UH0wDANUCFh5adw6Uogsqk/tG35I0v8cehN5A=
Subject key identifier: 0F:5A:7E:76:CD:9F:96:17:36:42:D6:D7:F0:E6:E0:22:30:ED:86:D7
Authority key identifier: 2D:D8:00:8D:E3:CF:F6:2D:2F:AC:A1:0D:99:FF:20:C3:E8:78:DC:DF
Certificate issuer: /CN=2dd8008de3cff62d2faca10d99ff20c3e878dcdf
Certificate serial: 019D98F496CAA08241F47BE79AE61144F961
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
Manifest number: 0782
Signing time: Fri 17 Apr 2026 01:00:59 +0000
Manifest this update: Fri 17 Apr 2026 01:00:59 +0000
Manifest next update: Sat 18 Apr 2026 01:00:59 +0000
Files and hashes: 1: LdgAjePP9i0vrKENmf8gw-h43N8.crl (hash: njBXbEJfUttJquuZmOiefKWTkbabEKFMYxKlsTjg+MY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:96:ca:a0:82:41:f4:7b:e7:9a:e6:11:44:f9:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dd8008de3cff62d2faca10d99ff20c3e878dcdf
Validity
Not Before: Apr 17 01:00:59 2026 GMT
Not After : Apr 18 01:00:59 2026 GMT
Subject: CN=0f5a7e76cd9f96173642d6d7f0e6e02230ed86d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b4:12:ed:09:31:5e:9c:78:61:fa:cc:75:b4:
8d:e5:2e:42:c8:db:18:3b:d5:65:aa:73:13:97:b6:
c3:f7:97:7d:ef:c3:87:10:ba:d6:f6:74:1d:39:56:
75:f1:6b:74:f4:a1:1b:0d:23:7d:21:87:b3:05:6d:
79:31:18:63:8f:3d:6d:bf:60:f9:8d:ff:87:4e:39:
a8:7b:f0:e8:74:55:40:6b:9d:f2:63:9b:15:33:4d:
7a:2f:00:88:aa:0b:3f:b5:b4:c0:a9:2c:f8:b4:5e:
b8:ca:76:33:14:61:2e:64:3d:c2:8c:e0:4e:7a:f3:
16:d6:31:14:aa:07:b4:a4:4a:0a:44:b6:0c:e8:8b:
6e:6a:22:f0:4c:0b:95:2a:02:8b:80:c0:96:a7:9a:
94:df:d6:a6:58:9c:88:6c:6d:80:6a:ed:77:2d:9b:
de:c2:53:0a:7f:fa:66:30:3b:9a:37:24:3c:4e:ae:
81:08:44:49:fd:5e:5f:1f:93:c9:67:22:d3:f1:b3:
8a:7b:48:c4:12:fb:1f:c4:4c:60:32:fa:55:d5:77:
9b:d1:4a:a7:dc:6a:b4:0c:ca:dc:4e:95:e4:bd:c3:
fb:eb:b1:f5:71:16:40:cb:88:62:aa:e0:f4:3c:d7:
b8:d0:41:72:31:20:fb:e9:dc:08:a9:cb:e7:c2:a3:
62:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5A:7E:76:CD:9F:96:17:36:42:D6:D7:F0:E6:E0:22:30:ED:86:D7
X509v3 Authority Key Identifier:
keyid:2D:D8:00:8D:E3:CF:F6:2D:2F:AC:A1:0D:99:FF:20:C3:E8:78:DC:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:21:57:98:7b:70:32:82:ec:fb:8e:99:34:0d:ea:8f:98:e3:
ac:a1:74:5d:4f:07:7c:53:c3:8e:32:c3:06:a0:62:98:27:99:
06:ff:e8:51:b5:3a:95:7c:b7:f1:45:57:aa:68:2b:63:fb:1b:
22:e3:ee:73:03:70:30:d0:47:ff:4d:0b:bc:05:22:7c:3c:30:
83:49:b4:1d:ed:25:ea:88:17:a5:2d:1c:53:e6:3f:3a:64:f0:
70:aa:20:88:76:aa:b4:48:3a:57:16:a9:a4:39:7d:5b:b5:a0:
00:ee:04:92:a9:d7:09:48:8b:f6:95:65:51:d0:29:50:e0:2e:
52:55:b3:93:d5:1f:ab:c9:11:6b:bc:9a:66:50:c1:f7:4a:14:
d8:b9:35:b1:69:34:db:48:19:91:f7:50:65:47:4b:63:45:62:
8c:a8:dd:4a:9f:4a:b9:76:5d:9f:8e:fa:92:c9:06:3f:04:74:
fa:e2:40:2e:8f:ab:d0:02:a8:55:d1:c5:cd:2b:43:4c:39:8e:
7f:4e:52:d8:67:1a:8d:f4:32:d3:51:ea:dd:d7:5c:4c:5f:fe:
8d:08:3d:8f:f4:d2:c4:94:67:d4:91:bd:84:c4:42:e5:c1:c5:
d3:36:44:70:2e:fe:16:72:30:05:9d:87:1d:bf:87:0c:5a:43:
f7:fd:80:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:06:53 2026 by rpki-client