Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json)
Hash identifier: TgjqjZhCW0SnInkA/QOThoPEo30PWElNBmoeOX8bx/M=
Subject key identifier: 90:BB:CC:44:04:B6:4C:41:00:9D:E4:BD:7D:FF:F6:40:8E:F6:D4:18
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 019E1DFE52BDE5D6F194B1FDD6C8C7CADD78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
Manifest number: 0D88
Signing time: Tue 12 May 2026 21:01:06 +0000
Manifest this update: Tue 12 May 2026 21:01:06 +0000
Manifest next update: Wed 13 May 2026 21:01:06 +0000
Files and hashes: 1: kE66fhDE4xBKZgP00aDSZ5wUo8Q.roa (hash: Xz3m7rpESDDSay6iugLcdgSAsdxY3IOPYIq5I7x/X5M=)
2: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: f27jgzWnAvjvNvzxk1dQzK54+GMwXXLeRTuWrATmmEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:52:bd:e5:d6:f1:94:b1:fd:d6:c8:c7:ca:dd:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: May 12 21:01:06 2026 GMT
Not After : May 13 21:01:06 2026 GMT
Subject: CN=90bbcc4404b64c41009de4bd7dfff6408ef6d418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:cb:35:a9:75:d6:2c:1c:28:a8:db:e5:15:e1:
e5:75:e4:b1:99:10:0d:56:4b:2c:36:3c:e2:3e:c4:
7f:2d:e2:db:97:b9:b3:bd:89:31:32:3d:0e:ed:d6:
a7:05:14:6a:63:ea:2f:ba:57:b4:96:c5:c3:9a:14:
98:ca:b6:a8:ca:9a:f3:80:30:19:58:60:b9:5f:91:
df:ce:db:31:6f:89:ba:06:f4:e1:e6:4e:72:9c:92:
0e:97:e7:07:1a:13:e4:04:13:4e:a4:5a:4a:d1:dd:
a2:1d:6b:61:99:60:17:c9:3f:4a:ef:fd:3a:37:3d:
a7:26:ce:d0:1b:b5:6e:83:f6:4e:23:7b:ba:29:17:
b8:08:95:8b:8f:1c:be:9f:64:cb:ad:e2:31:39:e9:
d8:8a:1d:f6:c7:8b:ee:1c:16:c7:6a:a8:95:9e:ca:
c3:09:12:1c:dd:5e:25:67:8d:87:71:0d:81:40:ce:
52:0f:9a:e8:1d:e5:8b:4c:f3:28:11:0e:5f:92:cc:
d6:9c:36:e3:af:2f:22:c4:fe:f5:b3:10:07:89:dc:
41:d0:aa:52:96:75:72:6e:a3:0f:67:ca:b5:b8:e3:
55:57:32:ef:28:e1:21:bd:5b:e7:18:47:31:4c:c6:
9f:ab:bb:1f:e8:61:e1:02:3e:c7:a0:05:af:e4:4d:
a8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:BB:CC:44:04:B6:4C:41:00:9D:E4:BD:7D:FF:F6:40:8E:F6:D4:18
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:52:4c:cf:8f:22:6f:5c:4c:d1:40:36:72:3a:60:92:5d:a7:
42:cf:40:22:0f:f3:af:b7:79:32:56:a5:09:a2:43:0d:32:78:
d6:7c:1f:45:50:81:a8:15:1b:96:a4:bd:14:0f:44:53:d4:59:
00:d8:92:a6:fc:0e:98:27:42:d5:ec:f8:38:df:3a:fc:20:f7:
b5:ee:ae:e7:3c:59:ac:6d:8b:1a:69:45:11:49:f8:d9:d1:49:
3d:74:09:06:41:2e:85:7c:85:0a:04:d9:7e:6d:d4:8b:04:0d:
77:36:ab:e6:41:bc:2f:73:9c:b9:c1:8b:5b:51:5f:65:41:fb:
fa:08:a1:f0:8b:ba:be:e8:1a:ab:2b:ae:b8:b7:23:b0:eb:40:
bb:d3:2e:8e:74:4a:7c:69:b7:e7:90:43:af:9b:6c:43:36:cf:
14:b1:d5:1d:63:5a:f7:98:0e:3c:f1:dc:83:f8:00:e4:3b:1c:
4a:ac:85:c1:1d:f0:ab:04:c2:e4:f5:44:de:97:23:c7:20:88:
03:b2:39:75:4e:8b:04:b1:06:4f:f5:93:85:1f:fa:b9:62:3b:
7e:78:1a:bd:e0:95:3e:93:15:71:74:b0:ea:fb:f8:91:44:e5:
07:10:96:9b:4e:e8:9d:80:ca:3f:b6:90:ca:a4:ad:b9:83:33:
86:31:54:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:02:59 2026 by rpki-client