Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
File: lSGiYvUHXiSys8m2nIr0DimIoeQ.mft (raw, json)
Hash identifier: 8FgfR0ITxF1iKuy7l1qUu5t4QqwRS/eSTRq+4aKHoW4=
Subject key identifier: 5E:6C:9C:7E:DE:A4:F0:C3:A5:E6:9E:22:60:D6:79:41:A5:95:7B:94
Authority key identifier: 95:21:A2:62:F5:07:5E:24:B2:B3:C9:B6:9C:8A:F4:0E:29:88:A1:E4
Certificate issuer: /CN=9521a262f5075e24b2b3c9b69c8af40e2988a1e4
Certificate serial: 019E1ED9ACE01AC12971A47FC54BD599539A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
Manifest number: 0627
Signing time: Wed 13 May 2026 01:00:42 +0000
Manifest this update: Wed 13 May 2026 01:00:42 +0000
Manifest next update: Thu 14 May 2026 01:00:42 +0000
Files and hashes: 1: Us6LmDa2YeON0ni7ME7KB6TjHTo.roa (hash: 3dbTQjtAd+rn0Ht0LtA0Xi1wOrgAsw7gilT3TC7acgs=)
2: arPUcXSO6F2hXmotLmbEkPslkyo.roa (hash: +PNrD3DQwa3lDAFBlDnjQZ5Mt4rCaOW5cH8zFw/pSq0=)
3: lSGiYvUHXiSys8m2nIr0DimIoeQ.crl (hash: pa3o3QFe4ymxCd58OfRNy/unKFhP7FBG/UQr5jvG2/I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:ac:e0:1a:c1:29:71:a4:7f:c5:4b:d5:99:53:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9521a262f5075e24b2b3c9b69c8af40e2988a1e4
Validity
Not Before: May 13 01:00:42 2026 GMT
Not After : May 14 01:00:42 2026 GMT
Subject: CN=5e6c9c7edea4f0c3a5e69e2260d67941a5957b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d3:a2:bc:21:2f:e9:99:d5:ba:c0:3f:76:b9:
9f:1c:73:5f:d6:a7:ef:dd:1e:6b:81:25:45:e2:c8:
e8:82:c2:51:f1:2f:34:2b:33:3f:eb:1f:04:3f:57:
10:aa:2e:e3:16:d0:8a:31:39:82:81:ad:77:0f:be:
8e:7b:de:02:d7:74:6e:07:c8:c1:8e:e4:f9:b5:9d:
bd:0f:22:0f:76:4f:bc:97:67:49:b3:43:02:98:39:
55:a6:f5:b6:7f:33:42:3d:2f:a8:66:57:3e:a7:79:
01:cc:94:7e:b0:6f:b1:a8:40:a0:08:e4:e5:67:11:
02:67:d3:61:7a:f2:6f:81:66:39:cc:8d:6b:04:17:
dc:83:9e:bb:59:00:62:50:f9:2c:9b:3d:50:f6:50:
c0:54:b5:53:bd:27:bd:bc:5e:08:e6:6b:b4:c7:df:
6b:fe:3a:93:2c:e5:6e:78:9c:ab:09:87:7b:7d:24:
88:db:fc:c7:1c:25:cc:d2:79:68:3d:cb:73:80:21:
c2:b5:2b:44:85:a7:1c:d9:ac:9e:f5:dd:b3:26:6f:
ee:e9:ab:ec:d6:2a:fe:ed:13:ed:f0:31:a4:5b:47:
c9:45:ec:9c:6c:82:85:19:9e:cb:14:af:01:04:7d:
cc:93:1a:d9:94:25:0f:4b:7b:70:c7:94:70:d9:4f:
c7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:6C:9C:7E:DE:A4:F0:C3:A5:E6:9E:22:60:D6:79:41:A5:95:7B:94
X509v3 Authority Key Identifier:
keyid:95:21:A2:62:F5:07:5E:24:B2:B3:C9:B6:9C:8A:F4:0E:29:88:A1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSGiYvUHXiSys8m2nIr0DimIoeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c1f20e-d94f-43c5-bb8d-ad3629b202c0/1/lSGiYvUHXiSys8m2nIr0DimIoeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:c7:d0:b8:6b:01:a6:37:f4:92:73:53:f9:43:60:ba:b9:98:
fb:18:6e:98:dd:47:80:48:69:2b:e4:0f:9c:e9:ab:09:d4:80:
69:ef:e2:81:14:fc:bd:e6:e5:fb:76:db:6f:ff:d7:ee:ad:a8:
a5:60:13:f8:43:5e:ec:eb:0a:73:c2:49:c2:29:7e:a6:f7:00:
b4:34:4f:52:55:18:12:d5:c6:06:71:f5:d7:56:97:5c:8a:66:
ce:3e:2f:00:0d:e0:a3:45:60:9b:98:0f:34:0f:08:4e:5d:71:
6b:78:91:b5:81:d2:f6:15:7f:ca:d2:81:20:b8:99:f2:16:69:
1d:6d:c5:7f:58:85:ee:71:e6:3f:cb:f9:0b:74:8c:da:47:5a:
ea:d3:86:f7:e0:eb:be:31:a8:b7:31:c3:ca:75:84:d7:55:ea:
f3:ee:94:b5:8e:ab:61:c3:09:ed:2b:f3:d5:3d:95:7c:2a:a9:
b6:e1:f8:86:e6:04:59:c5:c6:b2:a1:a5:3d:bf:59:61:f5:ee:
67:d6:2c:6d:f7:09:47:68:9e:a4:9b:c9:f9:66:55:83:c0:c0:
06:0e:9e:3e:91:00:5b:36:7b:5d:28:f6:1f:9c:78:4c:ff:80:
53:c1:66:c8:ab:ba:e3:92:b4:49:d7:29:62:6d:a9:eb:af:3b:
b7:e7:7e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:13:38 2026 by rpki-client