Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
File: LokBk3Q73yTdIsPtbyizAxouyAY.mft (raw, json)
Hash identifier: xNIpbXzscejbzYfwNk5nJfz5p6rMqfuLBUz3HncEDqo=
Subject key identifier: 92:51:5E:1A:48:85:1A:91:97:0D:0B:7B:60:7C:53:35:28:61:24:B4
Authority key identifier: 2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06
Certificate issuer: /CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806
Certificate serial: 019CAB34975B7A06C39C87C67D949B94F8E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
Manifest number: 13D4
Signing time: Sun 01 Mar 2026 21:01:16 +0000
Manifest this update: Sun 01 Mar 2026 21:01:16 +0000
Manifest next update: Mon 02 Mar 2026 21:01:16 +0000
Files and hashes: 1: D53jq87Ju_5W2NurMBsvi2B8EpQ.roa (hash: EUilHlQj2DNSvq/wFdSzVtzevf4M4P6120duAQtu7rI=)
2: LokBk3Q73yTdIsPtbyizAxouyAY.crl (hash: ctCJI1xzgvOOx+j2u5WVQJceCani/S61dxjK2IdgV+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:97:5b:7a:06:c3:9c:87:c6:7d:94:9b:94:f8:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806
Validity
Not Before: Mar 1 21:01:16 2026 GMT
Not After : Mar 2 21:01:16 2026 GMT
Subject: CN=92515e1a48851a91970d0b7b607c5335286124b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7b:f7:80:c2:40:ec:06:e2:9f:97:b7:0e:ba:
60:a6:c8:c3:79:be:aa:5a:8e:a3:68:e8:8e:b6:ce:
04:93:3c:d5:8d:9a:73:cd:c0:dd:b3:02:63:c1:19:
7c:ff:e0:d9:ef:a1:2e:dd:48:69:d9:98:5c:6d:39:
ef:89:cf:8e:e5:7f:fc:54:32:4c:c7:6a:74:12:14:
b4:8f:a7:81:43:22:b0:0c:58:52:50:2f:cc:53:f2:
23:2d:79:37:09:7a:c0:a3:41:3a:42:fe:60:da:70:
4d:82:55:ec:fc:83:fa:e1:10:4b:fa:c7:89:c4:e5:
fb:f1:ad:a9:e4:79:71:09:0a:c7:72:0e:14:24:f7:
70:8e:3b:67:b7:f5:20:6d:88:29:ac:fc:6c:62:52:
29:40:28:7b:2a:02:38:f9:cb:0e:9e:ac:36:fc:64:
dc:15:84:d4:43:54:fb:f0:6b:b5:79:02:76:64:ba:
2a:0d:dc:c7:8f:6d:7f:10:35:78:ea:45:3f:7b:bd:
8f:38:df:a4:12:39:35:f3:1c:99:a6:6e:8b:6a:67:
3a:9f:f1:40:9d:29:e7:4b:c5:e0:62:ac:d7:f9:5e:
05:95:b3:1c:98:47:2c:cb:92:01:2e:3f:76:83:7c:
e1:40:9b:d9:6e:e1:02:5e:30:0c:7d:4c:8c:ff:3c:
86:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:51:5E:1A:48:85:1A:91:97:0D:0B:7B:60:7C:53:35:28:61:24:B4
X509v3 Authority Key Identifier:
keyid:2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:24:81:28:99:a6:8b:ce:ca:57:4b:73:40:03:4d:c7:83:8c:
38:c0:12:d6:30:ad:4e:56:fd:0f:5e:0d:7f:60:0e:e5:74:69:
1b:15:f4:e2:6e:2b:e7:b4:f4:93:71:a3:12:d6:07:63:bf:13:
3d:c4:9c:8d:0b:cc:48:a5:13:16:4c:df:a5:32:c7:c8:fa:94:
f7:2d:a8:92:28:2d:b4:68:af:24:cf:34:56:03:b9:50:4c:50:
9a:d3:2c:4a:60:8a:70:c5:7d:f1:d4:49:a7:cb:07:66:b0:ba:
44:6f:a4:9b:8e:f5:6f:79:38:98:36:dd:dd:33:4e:6d:b5:01:
91:14:22:32:11:00:06:64:42:8b:52:f3:64:5d:a4:5f:5f:3b:
6b:43:e4:93:62:07:72:42:d4:64:0f:00:29:28:55:d1:9d:0e:
90:25:be:11:24:f5:de:16:c1:82:50:8a:3b:b2:17:19:95:32:
a2:b0:53:b0:f1:4f:08:43:da:d1:15:5a:6b:b0:b7:be:19:46:
c4:93:3d:43:32:8a:ca:d5:41:b5:d1:ce:f1:3b:53:47:64:62:
83:34:aa:c8:19:3e:bb:3a:a1:75:ac:4a:96:dc:ea:74:e5:c2:
4f:98:e0:f6:45:91:60:d6:e1:6c:85:51:f6:32:f9:d5:59:ec:
48:0d:f4:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:13:00 2026 by rpki-client