Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
File: lER-sxl6ox5-aEnxavVaslMB-oI.mft (raw, json)
Hash identifier: KutVpdU7vlJd90RqiIic5MimIq2fMZveA2ek7hRUc74=
Subject key identifier: 9F:86:B7:B8:30:CF:8A:E6:C1:C3:02:FD:03:FB:36:7B:5D:7F:23:EB
Authority key identifier: 94:44:7E:B3:19:7A:A3:1E:7E:68:49:F1:6A:F5:5A:B2:53:01:FA:82
Certificate issuer: /CN=94447eb3197aa31e7e6849f16af55ab25301fa82
Certificate serial: 019E1DFDE83DCAFAA4851AAFD96DC9577D60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
Manifest number: 087F
Signing time: Tue 12 May 2026 21:00:39 +0000
Manifest this update: Tue 12 May 2026 21:00:39 +0000
Manifest next update: Wed 13 May 2026 21:00:39 +0000
Files and hashes: 1: DQ38TRCVnXEsSBsusAK4wA5cM7E.roa (hash: LYfpTTUhsNjJzAKWOxzbHYKnI3ctEnoDEml27mltRUs=)
2: lER-sxl6ox5-aEnxavVaslMB-oI.crl (hash: d4fMxE0NeQwV/Nepo4u6bcr57EYh2uM4KkDiRi8FJiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fd:e8:3d:ca:fa:a4:85:1a:af:d9:6d:c9:57:7d:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94447eb3197aa31e7e6849f16af55ab25301fa82
Validity
Not Before: May 12 21:00:39 2026 GMT
Not After : May 13 21:00:39 2026 GMT
Subject: CN=9f86b7b830cf8ae6c1c302fd03fb367b5d7f23eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4c:3e:4e:00:2a:86:81:19:6b:34:4a:e6:bb:
10:42:e6:24:b3:06:b6:18:72:ab:25:8e:48:74:30:
bb:c2:ea:90:85:91:eb:17:f4:d9:12:a7:3c:e8:86:
cb:74:26:24:0d:4e:e4:b6:61:9c:4a:8f:6f:2f:ed:
0a:01:cc:62:aa:d6:ae:02:1f:49:38:5b:f8:61:ab:
f9:11:1b:38:e2:0e:5c:2f:a1:5d:6c:7e:39:1c:f7:
3f:5f:48:28:cc:7d:9b:ea:1e:b0:9d:ac:28:c1:3e:
9f:21:e4:99:81:7a:e0:65:67:09:95:d8:bf:9f:23:
6f:7b:76:13:a8:c5:1c:1e:98:10:1e:48:19:e1:c2:
ad:c4:3e:65:88:3a:5d:31:6e:7b:6b:31:36:27:41:
77:92:1f:5f:d1:b4:b3:3a:75:f3:8b:60:26:14:a3:
f6:8e:dd:4c:8b:87:36:f1:0a:57:74:c9:6c:be:e9:
df:8e:50:e1:6f:93:3e:a3:1b:3a:43:f7:14:6c:6b:
81:bc:4b:19:66:e1:66:0b:4e:52:6d:35:99:1f:5e:
da:7e:c8:f9:c5:b4:60:ff:05:b9:d1:85:d1:61:df:
c4:f6:24:ba:68:24:77:94:25:34:8d:11:e6:98:42:
63:f3:00:69:b0:2d:f2:ea:c4:5b:e4:49:aa:7f:5d:
a5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:86:B7:B8:30:CF:8A:E6:C1:C3:02:FD:03:FB:36:7B:5D:7F:23:EB
X509v3 Authority Key Identifier:
keyid:94:44:7E:B3:19:7A:A3:1E:7E:68:49:F1:6A:F5:5A:B2:53:01:FA:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lER-sxl6ox5-aEnxavVaslMB-oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8d0b05-263f-403a-abf4-238bde0e1ef7/1/lER-sxl6ox5-aEnxavVaslMB-oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:2b:fb:5a:c8:e0:ff:90:03:2c:09:2d:eb:7d:9f:18:59:5b:
fa:3d:f4:99:51:1d:a0:14:a1:27:f0:da:00:e6:98:17:2c:fa:
a7:ab:8b:8a:f6:19:28:22:9a:ba:c5:8d:84:01:fb:2b:e6:5e:
43:67:98:1e:9d:e0:59:e6:d4:fe:ac:f7:ee:b9:f9:21:4f:54:
48:41:2c:83:d1:0f:70:02:98:57:f5:ea:06:f1:09:93:78:0d:
40:90:c2:88:eb:36:29:f7:de:a4:e7:e0:38:0a:be:db:64:a5:
d9:21:bb:f1:93:4b:07:79:d4:b4:5b:61:4c:01:a1:f5:c7:62:
91:73:f8:b5:f0:94:ca:ac:8b:80:f4:c0:66:9a:3b:c6:e9:3e:
6e:07:6b:9e:27:04:fb:2d:f3:e8:cc:49:e0:13:bf:d1:c5:80:
18:05:cb:2e:a4:01:59:13:12:1c:2f:3c:fc:0f:b8:11:60:6f:
0c:5b:e2:cf:21:28:86:ff:fb:6b:2c:89:93:1a:5b:64:6a:52:
96:b8:21:21:94:31:37:6e:43:4a:c2:cd:8d:2b:8b:fa:cc:ae:
ef:c2:4f:f8:bf:b7:89:8a:9d:51:bf:36:da:48:51:53:24:b0:
54:2e:44:8e:fc:b2:7c:38:50:0a:2f:85:99:93:b0:ce:97:08:
d1:89:7a:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4d/eg9yvqkhRqv2W3JV31gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0NDQ3ZWIzMTk3YWEzMWU3ZTY4NDlmMTZhZjU1YWIyNTMw
MWZhODIwHhcNMjYwNTEyMjEwMDM5WhcNMjYwNTEzMjEwMDM5WjAzMTEwLwYDVQQD
Eyg5Zjg2YjdiODMwY2Y4YWU2YzFjMzAyZmQwM2ZiMzY3YjVkN2YyM2ViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskw+TgAqhoEZazRK5rsQQuYkswa2
GHKrJY5IdDC7wuqQhZHrF/TZEqc86IbLdCYkDU7ktmGcSo9vL+0KAcxiqtauAh9J
OFv4Yav5ERs44g5cL6FdbH45HPc/X0gozH2b6h6wnawowT6fIeSZgXrgZWcJldi/
nyNve3YTqMUcHpgQHkgZ4cKtxD5liDpdMW57azE2J0F3kh9f0bSzOnXzi2AmFKP2
jt1Mi4c28QpXdMlsvunfjlDhb5M+oxs6Q/cUbGuBvEsZZuFmC05SbTWZH17afsj5
xbRg/wW50YXRYd/E9iS6aCR3lCU0jRHmmEJj8wBpsC3y6sRb5Emqf12lDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ+Gt7gwz4rmwcMC/QP7NntdfyPrMB8GA1UdIwQY
MBaAFJREfrMZeqMefmhJ8Wr1WrJTAfqCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEVSLXN4bDZveDUtYUVueGF2VmFzbE1CLW9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84ZDBiMDUtMjYzZi00MDNhLWFiZjQt
MjM4YmRlMGUxZWY3LzEvbEVSLXN4bDZveDUtYUVueGF2VmFzbE1CLW9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC84ZDBiMDUtMjYzZi00MDNhLWFiZjQtMjM4YmRlMGUxZWY3
LzEvbEVSLXN4bDZveDUtYUVueGF2VmFzbE1CLW9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgCv7Wsjg
/5ADLAkt632fGFlb+j30mVEdoBShJ/DaAOaYFyz6p6uLivYZKCKausWNhAH7K+Ze
Q2eYHp3gWebU/qz37rn5IU9USEEsg9EPcAKYV/XqBvEJk3gNQJDCiOs2KffepOfg
OAq+22Sl2SG78ZNLB3nUtFthTAGh9cdikXP4tfCUyqyLgPTAZpo7xuk+bgdrnicE
+y3z6MxJ4BO/0cWAGAXLLqQBWRMSHC88/A+4EWBvDFvizyEohv/7ayyJkxpbZGpS
lrghIZQxN25DSsLNjSuL+syu78JP+L+3iYqdUb822khRUySwVC5EjvyyfDhQCi+F
mZOwzpcI0Yl6Yg==
-----END CERTIFICATE-----
Generated at Wed May 13 07:26:09 2026 by rpki-client