Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
File: lSGiYvUHXiSys8m2nIr0DimIoeQ.mft (raw, json)
Hash identifier: FiR2o/BTg8vcR72Nm7YuyGAB7NbSKTGD2uAy3ehonbE=
Subject key identifier: 5F:34:AB:C8:A0:F7:46:44:CB:B2:FF:34:D6:FD:1A:CC:DB:65:90:91
Authority key identifier: 95:21:A2:62:F5:07:5E:24:B2:B3:C9:B6:9C:8A:F4:0E:29:88:A1:E4
Certificate issuer: /CN=9521a262f5075e24b2b3c9b69c8af40e2988a1e4
Certificate serial: 019D27A8DAF16A1B24BD8C853445DA455E0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
Manifest number: 05A7
Signing time: Thu 26 Mar 2026 01:01:10 +0000
Manifest this update: Thu 26 Mar 2026 01:01:10 +0000
Manifest next update: Fri 27 Mar 2026 01:01:10 +0000
Files and hashes: 1: Us6LmDa2YeON0ni7ME7KB6TjHTo.roa (hash: 3dbTQjtAd+rn0Ht0LtA0Xi1wOrgAsw7gilT3TC7acgs=)
2: arPUcXSO6F2hXmotLmbEkPslkyo.roa (hash: +PNrD3DQwa3lDAFBlDnjQZ5Mt4rCaOW5cH8zFw/pSq0=)
3: lSGiYvUHXiSys8m2nIr0DimIoeQ.crl (hash: 34a1WRqpPU/sty18TXtsst4iwQW1F6+HyV76Obn8EJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:da:f1:6a:1b:24:bd:8c:85:34:45:da:45:5e:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9521a262f5075e24b2b3c9b69c8af40e2988a1e4
Validity
Not Before: Mar 26 01:01:10 2026 GMT
Not After : Mar 27 01:01:10 2026 GMT
Subject: CN=5f34abc8a0f74644cbb2ff34d6fd1accdb659091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:6d:bb:dc:11:78:c0:61:81:43:3f:31:10:e7:
9e:f7:9c:56:3e:45:b2:76:e5:ea:15:73:b8:50:ca:
86:83:07:cb:1e:08:a0:ab:9f:83:2d:82:86:cd:bb:
13:65:96:c4:37:61:c6:a3:8c:45:0f:dd:21:e7:98:
ce:fc:17:9a:f7:d0:55:2d:09:bd:0f:85:1e:1f:45:
56:3f:9c:6b:34:17:3a:37:4e:16:5c:29:41:98:47:
39:df:e7:8d:19:64:05:9a:9d:16:7c:d2:a5:6e:36:
b6:73:55:05:52:d4:70:15:d8:96:4d:c4:0d:94:0d:
73:36:00:ee:52:6a:d0:3c:00:0f:57:6e:a8:c6:d6:
c0:b8:55:52:fa:14:92:49:f6:51:88:19:c7:d1:2b:
45:05:b4:34:44:67:92:cb:fc:44:4d:10:cc:5e:bb:
3c:06:02:ab:6f:2b:ec:3c:ac:ba:4f:84:ba:73:45:
a8:0c:6f:8b:08:34:69:2b:c0:f0:38:58:30:66:af:
fc:52:19:ca:8e:75:46:51:46:65:ac:fc:86:51:02:
4d:99:76:a6:54:86:78:30:9d:1e:0e:b5:d8:9a:31:
c7:4e:8b:f7:46:a7:48:fb:bf:23:72:c6:41:39:35:
c0:03:97:dd:1c:9e:18:aa:81:64:ae:80:e4:4d:fb:
8d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:34:AB:C8:A0:F7:46:44:CB:B2:FF:34:D6:FD:1A:CC:DB:65:90:91
X509v3 Authority Key Identifier:
keyid:95:21:A2:62:F5:07:5E:24:B2:B3:C9:B6:9C:8A:F4:0E:29:88:A1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:6e:40:0d:8c:35:aa:d7:cf:d3:20:6f:a8:58:35:37:d6:52:
94:f3:b6:aa:58:59:05:31:7e:97:8d:a3:d0:6b:3e:61:46:29:
de:f1:68:44:8c:bb:d9:47:14:1e:fe:b6:32:eb:0f:05:e2:ce:
81:40:2a:0c:a6:ca:ed:3a:d5:1a:02:5d:bd:c2:89:b4:f1:01:
35:e9:02:f8:e9:14:bb:b7:4a:fa:5b:fc:13:ab:d4:7c:44:40:
b7:38:8a:7f:69:51:e5:72:aa:be:52:8f:e6:ca:f5:f5:1d:4a:
45:ba:67:a9:0a:1b:a9:0e:a5:93:44:c0:5b:63:3d:f8:bc:a2:
05:84:d0:9a:41:24:9f:c0:8f:ce:56:5c:40:2d:2c:88:0d:0a:
5e:0b:04:d2:bd:a8:e4:cb:c7:ea:dd:11:ef:9c:85:7e:a1:18:
49:3b:3b:88:28:18:a9:01:9e:8c:57:b3:ee:8c:70:f6:65:e5:
74:f7:ff:33:ce:13:e1:17:ce:11:60:cc:8e:24:1e:32:72:56:
27:f5:8a:56:db:3b:a2:8a:d8:4a:10:75:0a:2c:14:d0:df:37:
92:41:b1:e3:3f:23:86:b7:5b:ec:3e:27:b8:72:b6:b5:7d:4e:
b6:eb:c9:d4:8a:f0:e6:b5:21:08:a4:30:3c:f9:dc:1a:0a:3e:
50:25:f9:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:37:17 2026 by rpki-client