Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: 2uGUCRuGWe+VqOZ94xFuhG+OS4hnqJlcbZKBztiCo8E=
Subject key identifier: 7D:78:74:D2:E1:A7:A7:AF:51:22:60:7F:78:21:03:10:72:CD:B6:5D
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 019E1EDA5E62DDBE4676425EB69B520FBB18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 1907
Signing time: Wed 13 May 2026 01:01:27 +0000
Manifest this update: Wed 13 May 2026 01:01:27 +0000
Manifest next update: Thu 14 May 2026 01:01:27 +0000
Files and hashes: 1: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: X/kt668r8h8uGJBfHByj/YhlxL5WEBLlVzxQ9NOZNZI=)
2: tz4P9nF3Ei3wUS8VYP6Gfwtlguc.roa (hash: WI+TvaMT1Y9cC04iUl0U1l9xEwrwqSAkBoEDvp55Sj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:5e:62:dd:be:46:76:42:5e:b6:9b:52:0f:bb:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: May 13 01:01:27 2026 GMT
Not After : May 14 01:01:27 2026 GMT
Subject: CN=7d7874d2e1a7a7af5122607f7821031072cdb65d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:45:e7:14:2a:60:9d:e5:c4:0a:6f:0b:b6:00:
f8:23:72:3e:fc:03:6c:d0:c1:f1:de:63:27:29:89:
8f:a1:1d:dc:80:0c:36:ad:e0:7e:16:5d:eb:73:91:
84:71:7e:be:b5:b6:e2:96:b3:8a:ec:4f:30:6f:f1:
3c:f7:fd:fe:eb:c7:55:12:f3:56:0f:00:af:5e:10:
12:25:c7:7d:40:af:cb:96:cc:3f:e9:05:a7:5d:81:
4f:c6:dc:52:f0:87:e5:c9:d0:7b:ec:ce:52:e1:7a:
86:97:3a:e6:70:39:b9:4a:6c:26:4b:b8:5a:44:b0:
d1:eb:2e:6f:59:d9:21:74:a9:13:54:76:78:ba:f3:
ad:0b:cd:c1:22:50:34:2c:b4:b3:f6:df:9b:3b:4d:
c6:62:cc:1e:7e:50:cf:48:21:df:a2:2a:b3:bc:2f:
27:cb:ff:0d:aa:5a:25:46:91:9b:15:63:ad:f9:67:
3f:d4:9f:89:e7:3b:f0:c6:9d:1e:5d:0c:3c:a3:64:
b5:1d:06:ea:95:8f:e3:d2:72:2d:8c:fa:16:61:1b:
0c:da:1d:d7:b5:fd:26:52:23:37:08:71:ab:7e:da:
2a:23:71:19:84:b3:be:a8:84:f4:5a:83:89:50:26:
a1:f2:b1:14:57:7d:ca:a5:2b:de:9a:d7:15:09:26:
b4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:78:74:D2:E1:A7:A7:AF:51:22:60:7F:78:21:03:10:72:CD:B6:5D
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:87:51:d0:8e:39:63:4e:4e:36:b5:eb:d5:0d:46:84:c7:38:
0c:e9:9b:2f:f7:5a:f9:b3:7e:46:44:16:8c:ae:42:7e:31:66:
c2:a8:df:df:df:c5:51:5c:c7:9f:c8:6c:c5:16:35:90:f9:b1:
e3:03:1c:ea:d4:67:9f:c1:19:58:ea:ef:25:89:d3:fd:5e:5f:
4f:c8:8e:0f:ec:fa:be:e8:82:d9:28:21:07:7f:3b:1b:3d:de:
89:41:f9:96:93:b5:f7:0d:11:4f:65:2e:07:b3:bd:ee:5b:ca:
cb:b5:32:4d:51:32:95:c1:72:50:8f:a1:dd:0e:2e:02:9f:51:
a0:82:14:80:16:a6:85:74:07:15:42:e5:a3:fe:66:d2:de:34:
3e:04:10:98:cc:21:d7:6b:90:9c:93:aa:51:a9:f4:80:47:16:
b5:bf:d1:55:10:29:ed:e4:05:94:00:69:0b:4c:f5:63:9f:24:
bf:77:c6:fb:ec:11:ae:2f:77:6b:77:30:21:81:c4:12:61:70:
b1:59:0b:f0:8a:89:38:6f:f2:63:d3:e7:f0:fd:95:ba:f5:35:
ef:e5:f9:b3:7d:bc:e8:fa:da:cc:86:35:00:61:c1:20:eb:21:
14:d9:6c:de:1b:7c:b4:34:e8:68:af:a9:2a:25:4c:93:be:cd:
07:1a:3f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:33:19 2026 by rpki-client