Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
File: LokBk3Q73yTdIsPtbyizAxouyAY.mft (raw, json)
Hash identifier: NZpYQn09XHZ+CkkP+/qyLcmbeuX+cZKFxepaTSOxZiU=
Subject key identifier: 5C:BA:2A:2E:43:D8:03:8D:5B:1A:C6:77:2A:E6:2F:5E:B8:C8:E2:A2
Authority key identifier: 2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06
Certificate issuer: /CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806
Certificate serial: 019D9AAC46412A1AD360CA0F4B58764874FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
Manifest number: 1450
Signing time: Fri 17 Apr 2026 09:01:14 +0000
Manifest this update: Fri 17 Apr 2026 09:01:14 +0000
Manifest next update: Sat 18 Apr 2026 09:01:14 +0000
Files and hashes: 1: D53jq87Ju_5W2NurMBsvi2B8EpQ.roa (hash: EUilHlQj2DNSvq/wFdSzVtzevf4M4P6120duAQtu7rI=)
2: LokBk3Q73yTdIsPtbyizAxouyAY.crl (hash: weNXC07Oi3f6sCoYWbGU9613nE1cOd+7M7I/y47xnX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:46:41:2a:1a:d3:60:ca:0f:4b:58:76:48:74:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806
Validity
Not Before: Apr 17 09:01:14 2026 GMT
Not After : Apr 18 09:01:14 2026 GMT
Subject: CN=5cba2a2e43d8038d5b1ac6772ae62f5eb8c8e2a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e3:fa:6d:2a:50:24:09:26:74:13:4a:1b:ce:
03:d8:13:2f:fd:f8:46:9c:d7:df:9f:30:52:ff:4c:
c2:a8:b9:88:f4:96:63:4a:21:85:ee:5f:60:4e:2f:
c0:2d:ee:fd:85:72:48:44:ff:91:39:1c:d3:bb:6d:
42:0d:f4:c2:76:99:fd:c6:de:76:2b:1c:6f:f1:d8:
76:20:a3:2e:0e:40:ba:08:ce:4e:e1:21:b9:ed:da:
df:9c:a7:fa:a6:1d:28:c0:e1:cb:cd:96:93:b9:63:
b3:b5:14:c9:8f:94:1c:c9:c8:8f:0c:ee:7b:5e:8b:
15:7c:4d:7f:45:6b:25:cc:82:20:02:9a:85:9d:50:
55:ae:79:75:12:38:d9:12:7d:d9:61:9f:6d:cb:be:
a5:67:37:e1:a7:d4:18:ef:d4:b4:f1:b4:ba:98:9d:
a1:28:00:3c:91:2f:05:96:8b:7a:0f:22:63:88:98:
a1:74:18:29:f3:62:63:f2:c0:c2:d6:21:cb:e9:b6:
6c:59:23:c2:98:f5:1a:d6:bb:54:4e:7c:0c:4c:49:
df:57:1c:95:d7:12:ef:7b:40:4b:f6:e2:a9:00:85:
d0:b0:aa:1d:1a:91:88:64:27:64:20:91:db:03:54:
30:2c:07:1d:5a:b9:d7:7d:58:8b:35:fe:22:af:c7:
a9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BA:2A:2E:43:D8:03:8D:5B:1A:C6:77:2A:E6:2F:5E:B8:C8:E2:A2
X509v3 Authority Key Identifier:
keyid:2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:f6:60:b2:3b:d8:6f:40:d7:48:fb:88:d0:d8:da:c7:4f:7b:
27:61:07:6b:01:a0:c0:98:df:60:04:21:98:41:2d:10:31:d1:
11:d8:55:20:7d:64:47:cb:f3:f4:a2:09:62:88:5f:6c:f4:fc:
19:7d:54:50:2c:34:e6:ff:d0:bd:09:72:81:8e:b4:bf:02:4f:
2a:e4:01:76:90:d8:a1:e6:b9:ff:35:76:8c:79:2a:13:ba:30:
61:a0:34:2f:56:82:a1:54:a9:07:aa:dd:f9:48:d0:50:9a:31:
40:48:59:aa:e0:d4:7f:c8:1e:90:49:61:65:97:7e:59:9b:a3:
46:d3:4f:76:d7:91:dd:27:32:48:04:d8:8c:a9:4d:f0:4d:91:
67:54:b1:64:0e:e6:6c:f5:ca:4d:49:9f:ab:86:f7:99:56:f9:
00:15:17:b9:4b:c9:df:1f:2d:26:a6:bb:a7:5f:e2:f7:d2:56:
92:ac:34:d3:ea:8e:33:6f:1a:57:2f:0f:c9:01:20:31:d9:49:
09:91:d6:e4:cf:c8:c1:82:fc:6a:ac:6d:2e:8f:ac:47:fb:13:
4b:2c:a2:12:51:0f:d6:23:27:84:36:27:19:10:26:20:17:08:
49:fc:86:3f:cb:e6:42:31:89:98:ad:2b:4d:5d:ac:6c:d8:d9:
b1:87:03:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:07:26 2026 by rpki-client