Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
File: LdgAjePP9i0vrKENmf8gw-h43N8.mft (raw, json)
Hash identifier: LZcmX1AyvBy59/vCSfYwROMA/WM6Z6yO7v/z2GTL254=
Subject key identifier: 29:F7:EC:BA:EA:B4:76:66:26:0B:DA:3A:08:D9:E4:55:E8:CC:F8:A8
Authority key identifier: 2D:D8:00:8D:E3:CF:F6:2D:2F:AC:A1:0D:99:FF:20:C3:E8:78:DC:DF
Certificate issuer: /CN=2dd8008de3cff62d2faca10d99ff20c3e878dcdf
Certificate serial: 019CAD5A3B4D4F0011B72917F74DDAE1868E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
Manifest number: 0708
Signing time: Mon 02 Mar 2026 07:01:37 +0000
Manifest this update: Mon 02 Mar 2026 07:01:37 +0000
Manifest next update: Tue 03 Mar 2026 07:01:37 +0000
Files and hashes: 1: LdgAjePP9i0vrKENmf8gw-h43N8.crl (hash: 5OYRbAnZEqzHTV/Oub+lQWGyFqyYznuKktihGWb7Hu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:3b:4d:4f:00:11:b7:29:17:f7:4d:da:e1:86:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dd8008de3cff62d2faca10d99ff20c3e878dcdf
Validity
Not Before: Mar 2 07:01:37 2026 GMT
Not After : Mar 3 07:01:37 2026 GMT
Subject: CN=29f7ecbaeab47666260bda3a08d9e455e8ccf8a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:93:9b:ad:d0:0d:36:4b:83:1d:97:30:cf:e3:
a5:06:33:7b:60:c8:8c:d7:cc:8a:12:1a:72:33:7b:
15:4a:49:bd:83:e6:e3:17:3d:b2:48:36:8a:d6:2c:
03:dc:bf:b2:34:cc:5c:ac:c0:04:9a:09:a6:8b:a2:
cf:0c:d7:6b:a2:e3:ad:30:00:84:81:02:5c:37:cc:
fc:49:3a:2e:57:4f:f9:51:55:a9:56:98:2d:99:ef:
74:6b:30:5c:46:54:1b:8a:30:53:91:1a:10:81:2f:
ed:85:af:14:6d:50:7e:eb:d5:92:e2:4c:61:88:c8:
e7:78:a5:46:e5:bb:4c:f1:e4:fd:3d:65:0f:82:e4:
eb:92:5f:e3:b4:8c:01:95:0a:82:4e:e9:f0:73:3c:
2c:ce:b3:4c:d6:d7:5a:97:07:d9:3d:04:5d:d6:87:
8b:dd:af:4a:d8:74:b7:b9:2f:f2:63:b6:65:4e:74:
95:49:d7:2c:5e:86:b8:82:6b:f6:13:18:81:ee:2a:
da:d7:4e:1f:85:30:0c:32:d3:72:be:ac:a6:90:af:
84:89:95:79:79:9d:c3:6d:df:a3:f5:18:87:09:83:
bf:c2:f7:9b:eb:66:31:68:ac:d9:b3:77:46:c0:50:
c9:32:eb:d5:37:95:c2:9c:9e:6d:08:12:e0:29:95:
52:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F7:EC:BA:EA:B4:76:66:26:0B:DA:3A:08:D9:E4:55:E8:CC:F8:A8
X509v3 Authority Key Identifier:
keyid:2D:D8:00:8D:E3:CF:F6:2D:2F:AC:A1:0D:99:FF:20:C3:E8:78:DC:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LdgAjePP9i0vrKENmf8gw-h43N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e67956-de18-40c4-b013-951e5afae9e7/1/LdgAjePP9i0vrKENmf8gw-h43N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:72:26:6d:a6:dd:6b:46:cd:22:7e:24:e2:65:ea:4e:24:04:
97:c0:32:4f:e2:9f:02:58:fe:40:c5:40:2f:50:fe:dc:88:84:
aa:77:b9:f7:c6:9b:9c:ab:2c:37:e0:9e:1c:48:81:17:75:66:
16:eb:b2:79:f5:c0:07:32:21:21:75:01:19:f9:2d:a2:00:9f:
c4:4c:93:8a:49:7c:a1:78:58:ff:c8:16:d1:42:a8:fd:af:d7:
72:9c:70:b0:b7:fb:b0:ee:8d:95:9f:9e:0b:6b:b4:29:87:43:
51:47:08:05:70:95:fd:74:f3:24:95:36:c4:07:63:9d:3d:ae:
19:b3:cc:4e:89:e3:24:98:b3:10:67:32:44:d2:49:51:0b:44:
7f:33:c9:f8:3f:14:4e:3d:75:b5:e5:64:1b:8d:d9:3e:c8:8d:
25:19:20:99:a1:e9:f8:16:b4:53:bd:f1:60:47:f4:f2:8f:5b:
97:8a:b7:61:3e:55:74:62:f5:cb:b0:1f:61:0a:68:8e:6f:4c:
ce:37:36:0f:79:b7:a3:fe:e3:36:d1:62:e1:06:a1:db:91:0f:
12:34:fa:7c:5b:5e:0a:ae:83:58:47:8f:ec:73:e8:93:b1:70:
91:8a:d4:d6:0e:51:4f:1e:68:61:7a:00:cc:c2:38:bf:d8:13:
b1:40:65:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:39:30 2026 by rpki-client