Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json)
Hash identifier: axXzzXAPF+2FX7brqxEuyhw76KIhJ84c2exDGBIWjkg=
Subject key identifier: 83:CB:83:BB:E7:9F:4C:17:09:CA:07:D7:E0:0A:F5:E1:A3:3A:8B:49
Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Certificate serial: 019D25F17A0586DBCA75DF7199BDA1187244
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
Manifest number: 0D2B
Signing time: Wed 25 Mar 2026 17:01:15 +0000
Manifest this update: Wed 25 Mar 2026 17:01:15 +0000
Manifest next update: Thu 26 Mar 2026 17:01:15 +0000
Files and hashes: 1: 5tq-dphgnapNG8uID0bzWyuSiiI.roa (hash: Geh8HxvdWtRdjQA8GTRZhRKQeMt/TQkbrTaKQX7hwuM=)
2: SNXaMmatRq7Y2yZacERGh_Byx3c.roa (hash: 1VfAG/PWe9ADh3l7lJxuP3CaKheNhNOZc9+mMKVHmsc=)
3: aeJRC_Zrs1Xdsza3m-Bp94bJ1dk.roa (hash: 31o9/oasTnGfM4n9yp1biNvrc9x/A8EYFBmDcG491Fg=)
4: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: NCYVSrEYjX8BS3gPYQs9cZ6YrQ1vPi2SjvRGdd8GE5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:7a:05:86:db:ca:75:df:71:99:bd:a1:18:72:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Validity
Not Before: Mar 25 17:01:15 2026 GMT
Not After : Mar 26 17:01:15 2026 GMT
Subject: CN=83cb83bbe79f4c1709ca07d7e00af5e1a33a8b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a6:c8:dc:fd:13:04:b6:ae:36:9a:cb:10:0e:
0e:4f:d8:ec:12:19:aa:c7:4c:2e:a5:de:f8:66:a6:
86:5f:84:28:c7:95:4e:1c:b3:0b:57:0c:e6:14:c6:
5b:a9:7f:0c:60:17:85:60:7d:c3:0a:6c:cb:4e:9e:
a4:19:08:ff:dd:c4:0d:18:10:ec:b8:42:8c:50:50:
09:97:c1:03:70:35:87:45:e9:e3:93:16:b4:de:ea:
04:1f:c5:4c:1d:fd:3e:e2:06:24:d4:1a:f7:32:05:
ec:2b:c0:7b:cf:30:81:53:96:04:26:df:13:c9:3b:
13:84:62:ba:8c:d7:6c:a3:12:e1:d7:1e:ac:69:42:
d9:99:2b:ec:13:ae:e9:11:a5:75:59:74:c1:29:bf:
ec:d5:47:0f:9e:b4:6c:d0:d3:8b:10:0f:45:68:94:
01:96:eb:ea:20:b0:10:ac:0d:1f:46:b7:76:db:6e:
dd:e4:f8:f2:3a:42:fe:25:b2:e4:8a:57:2f:0a:27:
59:15:d9:a2:60:d0:72:1d:aa:7f:40:65:67:3a:d5:
15:68:df:c0:82:5d:a9:0a:8a:bf:9b:5e:10:8c:a5:
e7:d7:43:3d:31:f3:dc:bc:ff:62:2a:75:9d:af:d7:
30:d6:ce:fa:07:9c:09:65:2d:01:f4:b4:45:b1:57:
45:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:CB:83:BB:E7:9F:4C:17:09:CA:07:D7:E0:0A:F5:E1:A3:3A:8B:49
X509v3 Authority Key Identifier:
keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:0d:51:9e:51:22:5e:cf:f3:1f:ac:18:b2:ac:b8:c4:7f:47:
ac:b8:da:e2:34:1b:f9:d0:7c:18:70:05:14:75:76:d0:5a:90:
61:e9:ca:68:2f:2e:90:84:99:ee:a0:40:41:3d:a6:df:08:e8:
75:b0:77:bf:33:61:e0:27:e8:62:18:c7:79:e8:c0:93:ea:28:
bf:33:cf:02:50:05:61:bb:5d:2f:c6:09:f9:bc:11:8d:1d:c0:
e9:f1:2a:e8:5e:35:a7:13:19:ae:52:7b:70:4f:78:1c:6b:33:
4c:62:01:a2:de:5d:2e:3f:4f:62:5c:51:d1:28:20:35:b1:f6:
fe:ab:13:82:ee:8b:74:2d:eb:b9:52:30:e3:90:d9:45:f0:a6:
08:1d:4a:06:a7:b0:13:59:6a:0b:9c:15:57:00:08:ad:0d:f0:
46:1d:b8:ce:14:66:b8:2b:17:13:b7:a0:a7:d9:fe:80:c6:82:
24:dc:d7:46:07:f5:55:ee:79:46:38:90:71:23:0b:d5:80:32:
1c:e6:b8:a7:1e:60:a2:c5:fa:f3:b7:b5:a2:d9:5f:18:6d:93:
6d:d7:3e:6c:06:3d:90:c5:c8:21:2c:3a:b5:df:09:84:7e:86:
3f:81:76:3c:27:b2:98:e2:25:b2:f0:3b:c2:ea:2d:3c:af:0f:
d9:66:42:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:38:26 2026 by rpki-client