Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json)
Hash identifier: lBBYLujypDp+ekL9he8zNgkm73KlLebRQDR7LJyubYc=
Subject key identifier: 00:91:EF:2B:59:58:87:81:7A:33:4A:9B:08:B7:10:B0:36:58:AD:B1
Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Certificate serial: 019E1F10EDB2C26D6B8718C5669EC547385A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
Manifest number: 0DAC
Signing time: Wed 13 May 2026 02:01:03 +0000
Manifest this update: Wed 13 May 2026 02:01:03 +0000
Manifest next update: Thu 14 May 2026 02:01:03 +0000
Files and hashes: 1: 5tq-dphgnapNG8uID0bzWyuSiiI.roa (hash: Geh8HxvdWtRdjQA8GTRZhRKQeMt/TQkbrTaKQX7hwuM=)
2: SNXaMmatRq7Y2yZacERGh_Byx3c.roa (hash: 1VfAG/PWe9ADh3l7lJxuP3CaKheNhNOZc9+mMKVHmsc=)
3: aeJRC_Zrs1Xdsza3m-Bp94bJ1dk.roa (hash: 31o9/oasTnGfM4n9yp1biNvrc9x/A8EYFBmDcG491Fg=)
4: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: mqPFt6Rg89zHYXzsJErYQl0ABCyaAJJYOIgYiNvqw0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:ed:b2:c2:6d:6b:87:18:c5:66:9e:c5:47:38:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Validity
Not Before: May 13 02:01:03 2026 GMT
Not After : May 14 02:01:03 2026 GMT
Subject: CN=0091ef2b595887817a334a9b08b710b03658adb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b5:30:6d:f6:6b:bb:40:7d:b5:4f:af:85:5f:
5b:62:18:b0:10:f4:b2:81:f0:54:da:29:46:65:28:
65:d5:18:65:88:1d:43:87:be:69:d7:3c:5b:8f:d2:
27:28:3b:76:a1:fc:4d:32:e9:64:73:87:0c:be:51:
5f:20:0a:43:c5:bd:f2:65:a6:04:1c:c3:96:4a:bf:
8a:cb:ae:30:f9:13:47:63:0b:9c:68:8c:ac:d4:2e:
63:8f:b2:f3:db:a3:2f:0c:82:b4:3b:81:cc:7a:79:
78:6e:59:fc:c7:d7:04:58:0a:93:76:75:b9:30:80:
20:9f:87:2a:9c:0b:9b:bc:58:75:81:87:1c:58:dd:
b2:0c:a1:df:e4:ab:ce:a2:ce:67:8c:37:51:03:f9:
5f:6f:5b:07:b9:e7:56:73:a1:02:24:66:33:8a:70:
33:86:bb:1e:63:95:3c:68:03:4c:94:9a:f9:96:da:
95:77:31:ee:83:cc:15:4f:7b:d8:7b:11:f4:48:84:
ac:c1:8b:9f:25:84:16:62:5d:27:e2:70:a1:4d:d5:
3c:cf:57:14:d8:9d:86:d9:b7:28:e8:ba:4b:1a:52:
01:f5:8a:e7:07:32:a4:b0:30:a5:5d:5f:75:bf:ab:
83:90:35:97:8d:a2:ec:8f:d3:01:cc:49:0b:50:08:
0b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:91:EF:2B:59:58:87:81:7A:33:4A:9B:08:B7:10:B0:36:58:AD:B1
X509v3 Authority Key Identifier:
keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:82:e1:bc:de:6b:53:8d:31:76:87:8d:cf:64:d2:cc:bc:5a:
d0:78:7f:e9:c9:a3:2e:22:64:3b:e2:ec:6f:90:73:c7:4d:f7:
81:fa:ba:51:95:a6:60:fe:2b:09:70:8e:ed:01:9c:2a:60:d1:
c3:4b:af:9e:8c:ec:b9:b2:9b:80:64:9a:99:0a:e9:a3:c3:c2:
2e:c6:31:0d:40:9e:81:3e:4a:e2:0b:67:5e:f0:c3:dd:6f:38:
19:b6:73:1b:30:69:8c:a2:ba:49:79:93:e5:c3:8e:8f:06:d7:
1c:d9:5f:55:8c:bb:2c:96:86:6f:7c:dc:32:e0:9f:e7:cc:fb:
5e:79:47:93:d5:b8:d4:fe:47:b3:b5:5f:af:cb:ca:3b:96:ed:
32:04:6a:0c:91:a9:2f:9d:7c:d5:68:6e:d8:c4:fb:4a:78:d0:
d9:92:8c:37:59:3b:c4:c6:46:e8:4c:bf:85:6e:25:a0:b6:fc:
52:ce:a6:5e:44:9c:32:da:63:bf:0b:bc:74:35:6a:f9:96:48:
18:96:ec:d6:fe:f3:6f:0d:8f:71:b8:14:89:b7:f6:5e:1d:e9:
7f:09:13:0c:c0:bc:0f:51:50:b8:e5:c7:91:cf:65:0d:9f:bf:
34:ef:f7:97:58:32:7f:22:93:68:0f:cd:02:fc:29:b9:4e:f6:
f5:b4:27:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:16:47 2026 by rpki-client