Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
File: LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft (raw, json)
Hash identifier: LJ0WPGXTscVcVVXLR4AXBBB3QNekp8BtRMo9kR8XALk=
Subject key identifier: 8A:E9:C8:AE:61:69:B2:40:75:8B:B4:0D:B3:CF:94:40:16:28:28:BF
Authority key identifier: 2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01
Certificate issuer: /CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01
Certificate serial: 019E1D9099FB9DD91EBF5E6F8608361FE04A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
Manifest number: 023D
Signing time: Tue 12 May 2026 19:01:16 +0000
Manifest this update: Tue 12 May 2026 19:01:16 +0000
Manifest next update: Wed 13 May 2026 19:01:16 +0000
Files and hashes: 1: Bf-kgPolKWlpqLCjiXuRyWUMvOg.roa (hash: MYsif03ryw6vdmDjCofd2KTIbWmT1q0FEmKDj3mHFcA=)
2: LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl (hash: dZu3rgecu4A9Mv/U+tNKwxhiCKXpdv4KWsEIOw3dlVU=)
3: c4PWOTsWtb2BHJ2drzbMurS1uj4.roa (hash: GfaIz/k9kQAzF2LqeZrCe55euhWttcaoPzS2hsKifpc=)
4: p38nf1_J-hf5pJoRzzg0ttvCGMc.roa (hash: VNYm4Y42SOlQ9dXOHkzUE+m/pzdyaj+7nbqcjEjzt8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:99:fb:9d:d9:1e:bf:5e:6f:86:08:36:1f:e0:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01
Validity
Not Before: May 12 19:01:16 2026 GMT
Not After : May 13 19:01:16 2026 GMT
Subject: CN=8ae9c8ae6169b240758bb40db3cf9440162828bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7f:45:aa:77:80:8a:a6:8f:07:73:01:27:1e:
7b:8b:87:21:f6:17:2a:ce:99:a0:a4:63:81:53:c4:
37:2e:86:53:e8:e1:83:e8:0f:fd:8d:4e:01:e0:63:
28:ef:07:c7:f0:1f:a6:c0:35:93:5a:de:4f:c8:48:
78:20:5b:c8:4b:be:4f:34:31:50:58:49:08:c5:67:
20:5f:c6:12:7d:25:25:9f:87:0c:48:5c:d7:a1:56:
50:6c:4c:57:2c:cf:22:3e:b9:71:e4:a9:16:62:0b:
ba:3f:cf:dd:08:20:c7:02:7d:e7:cf:95:aa:f3:c0:
ef:10:30:c3:59:56:f8:ca:5b:c9:c0:74:ec:b1:2f:
ac:ad:39:3f:42:36:27:4d:91:44:26:71:b2:c4:09:
2c:42:c2:f2:5e:c5:b3:98:f7:e0:e9:2e:9f:3b:57:
51:fd:f0:d0:aa:f4:c5:c4:a5:74:65:50:f9:1b:11:
4c:2d:64:9d:cc:f8:77:b6:51:f2:6d:ae:d7:0f:d6:
d6:dd:ca:b0:e5:d1:a5:4f:fb:37:7b:99:e5:92:89:
2c:09:36:04:15:94:cc:1d:da:3c:8e:66:d7:5f:b3:
5f:c1:7f:fd:29:79:39:17:cf:56:5c:7a:85:86:6a:
19:85:dd:a0:2f:ef:ee:1c:8e:cf:32:44:e1:b5:c5:
2a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E9:C8:AE:61:69:B2:40:75:8B:B4:0D:B3:CF:94:40:16:28:28:BF
X509v3 Authority Key Identifier:
keyid:2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:de:1a:51:b5:2b:83:80:21:bf:5c:1d:4a:0b:4e:87:e7:57:
cc:c2:ec:fe:8d:e0:f9:3c:dd:a8:85:09:ac:3f:b7:a6:49:cc:
9e:b6:e1:79:fc:ee:c4:c5:3b:6c:ac:d0:33:17:19:6d:fe:5a:
e8:d9:e6:c5:3b:83:c0:43:d7:37:19:2d:b1:e4:8f:94:cf:b5:
00:0a:a1:2c:53:24:34:4a:eb:d3:ab:39:f5:c9:3e:a5:29:52:
24:95:80:c2:a4:54:72:31:3e:68:d2:12:e0:68:4d:d8:70:8b:
60:c3:49:0c:f3:d4:a5:d9:be:6d:13:97:1e:40:fa:6f:ed:c9:
e4:49:05:fa:34:9e:53:20:55:0f:b6:92:3c:16:51:66:67:ab:
16:ee:33:a3:73:07:63:79:33:d9:e1:8d:54:05:95:67:76:7c:
bb:39:1b:9a:e2:f9:71:ce:a2:4f:fe:59:22:62:c3:f2:d0:66:
0f:b1:5f:29:f6:1e:f8:60:d7:3c:b5:75:3e:c5:60:f9:aa:43:
ca:7f:6d:00:30:f6:37:27:cb:da:a7:6a:b6:64:1d:cf:70:1b:
ea:1f:25:a1:a3:c9:dd:8f:9d:8e:50:49:3b:43:c2:a0:98:e1:
90:7e:56:8c:09:10:53:c1:97:9e:86:ba:be:a9:ee:48:46:5a:
70:fb:e5:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:06:54 2026 by rpki-client