Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier: ZnyE8zsiEPrap3mTk3xKqE/STk+ZoEz4F72/J2J3JFw=
Subject key identifier: 0F:7E:38:35:DA:10:37:5C:71:5F:04:F6:4D:25:CD:D3:40:2C:56:6E
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial: 019D2884C5235C792E11D5D51927804EB4A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number: 15F0
Signing time: Thu 26 Mar 2026 05:01:23 +0000
Manifest this update: Thu 26 Mar 2026 05:01:23 +0000
Manifest next update: Fri 27 Mar 2026 05:01:23 +0000
Files and hashes: 1: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: RuLp6kOZaCkeiKP0JfDcmIqmQDm1dDlyNvn4JPT4Qek=)
2: xR-_0CxJhk7opaVLnqtilVW0u5k.roa (hash: smIJQKujLMH2xBq3OokVMe7VXadkyznDo/jDUgPKJpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:c5:23:5c:79:2e:11:d5:d5:19:27:80:4e:b4:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
Validity
Not Before: Mar 26 05:01:23 2026 GMT
Not After : Mar 27 05:01:23 2026 GMT
Subject: CN=0f7e3835da10375c715f04f64d25cdd3402c566e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:13:a8:31:19:57:f5:55:2f:e0:c8:da:ee:8c:
eb:91:ee:68:25:85:03:24:e8:fa:3e:07:f2:1b:72:
0c:5e:07:88:0e:57:72:7b:2c:40:91:cf:3d:b7:b7:
dc:05:5b:30:96:ed:43:19:37:a5:ad:e8:26:1a:93:
e0:d4:22:98:29:78:ab:b5:a4:bc:ad:2a:07:7a:1a:
02:06:e5:c2:6a:b8:a7:19:82:76:cb:8a:2c:34:8f:
5d:c0:74:46:bf:9b:0d:8e:3d:92:74:ef:d2:64:18:
06:b6:8f:20:fb:85:d1:ce:ff:0b:c0:76:66:70:a4:
4f:87:ca:d7:64:df:59:af:24:13:3d:b3:6e:57:a1:
ab:4e:ff:ec:c2:6b:9f:d3:49:8c:bc:22:10:41:9d:
33:8e:8e:cd:64:0a:f7:d3:7c:53:0e:bb:28:17:e9:
f5:bd:af:1e:c6:81:a3:3f:23:e4:d5:57:2a:05:8b:
f6:ff:e6:76:d7:36:14:b8:a7:93:d5:16:f2:82:ef:
42:d8:5b:f7:00:09:c2:0b:9f:e2:ec:7e:2d:85:45:
ec:52:77:48:fe:ad:77:87:48:78:37:c6:ee:bb:f2:
cd:e7:68:56:a5:bc:59:bc:a1:5d:67:a4:bb:58:81:
6d:91:31:b7:d2:00:cc:d2:d2:af:1a:6e:70:d7:1b:
d0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:7E:38:35:DA:10:37:5C:71:5F:04:F6:4D:25:CD:D3:40:2C:56:6E
X509v3 Authority Key Identifier:
keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:bd:11:1e:b6:b7:f8:d1:7c:c6:1d:c1:28:10:a8:28:4f:27:
db:97:ea:5a:b1:6b:24:70:84:0c:d8:9e:df:1d:76:4b:26:cf:
dd:7e:ec:ca:eb:b8:cc:2c:4a:97:77:ab:fe:48:88:c1:25:c7:
68:f6:75:7a:a2:8e:98:19:28:9f:d2:ff:79:57:d0:25:d4:81:
a2:f7:75:c6:fe:57:1a:e7:c7:e6:84:09:84:93:0c:17:d9:94:
3d:ff:cf:26:7b:4d:db:99:56:9e:b8:a2:14:67:1c:54:ff:3b:
14:51:89:eb:ef:ad:64:62:49:6a:71:2b:ad:94:4b:96:2d:27:
76:e7:53:ee:de:08:0c:42:c5:11:b1:8b:8b:aa:30:c3:ec:6b:
07:c6:41:90:ba:e2:93:cf:fe:5e:0d:08:20:8b:fd:47:65:1f:
25:b0:78:e3:7d:26:6d:f1:10:eb:c1:a3:4e:ba:12:b3:6a:c8:
c7:a2:61:80:99:13:ed:04:de:e9:b7:4b:69:ad:ca:de:2a:07:
4e:d7:ec:56:58:cc:77:d8:6c:f1:ce:93:cd:05:4d:a4:b0:13:
a6:49:14:08:51:9b:ee:10:8c:11:0c:06:88:a8:6d:67:26:71:
9b:e9:3a:19:ae:8a:41:ac:64:46:a3:74:c0:25:4a:1a:8a:ef:
ab:3e:7d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:15:27 2026 by rpki-client