Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.mft
File: lYBh2AAMuD07iWfmb7ikwn6RImI.mft (raw, json)
Hash identifier: LBvJMtbTi03iN2QQV+oMsiWDjLjXf/q1xpZKGaGjgBI=
Subject key identifier: 02:4E:2E:A3:DF:FE:7E:A1:C0:53:C7:88:8D:DD:FE:B1:9E:AA:05:FA
Authority key identifier: 95:80:61:D8:00:0C:B8:3D:3B:89:67:E6:6F:B8:A4:C2:7E:91:22:62
Certificate issuer: /CN=958061d8000cb83d3b8967e66fb8a4c27e912262
Certificate serial: 019E1EA3D86072F8FEB3BDAA4C2E84CBA881
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYBh2AAMuD07iWfmb7ikwn6RImI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.mft
Manifest number: A9
Signing time: Wed 13 May 2026 00:01:54 +0000
Manifest this update: Wed 13 May 2026 00:01:54 +0000
Manifest next update: Thu 14 May 2026 00:01:54 +0000
Files and hashes: 1: hzG3EgOx_N3fgyx_9u23eo8eYmM.roa (hash: ll5FuHzISV8wV67N7kq5bfMOA6gO76/cY1UBY4egjOc=)
2: lYBh2AAMuD07iWfmb7ikwn6RImI.crl (hash: HtwCIXp7r6yRiBDFvx1TDkMgIk3IaccID2z1mBp02v8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYBh2AAMuD07iWfmb7ikwn6RImI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:d8:60:72:f8:fe:b3:bd:aa:4c:2e:84:cb:a8:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=958061d8000cb83d3b8967e66fb8a4c27e912262
Validity
Not Before: May 13 00:01:54 2026 GMT
Not After : May 14 00:01:54 2026 GMT
Subject: CN=024e2ea3dffe7ea1c053c7888dddfeb19eaa05fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:a3:fd:d3:27:9f:20:e5:47:ae:9e:f3:61:b6:
bd:d3:76:a4:bf:82:eb:f7:11:c0:ff:6e:66:66:1a:
81:eb:85:89:1a:34:54:4a:36:69:b4:c8:b5:2d:9a:
63:1c:8b:44:dc:f8:2f:68:12:31:6e:eb:86:ee:71:
d8:26:13:08:f9:c1:9c:ec:99:d4:01:e0:cb:6b:0c:
79:06:d5:e4:96:05:ef:40:50:5f:60:bc:45:16:b4:
dc:7b:33:99:45:41:5d:da:1f:8d:2e:f1:dc:e3:e0:
bc:68:3c:f7:9a:92:a7:23:04:7e:13:0b:54:c3:02:
e5:61:2d:4f:ea:21:d4:3e:4e:64:30:4f:5d:79:b4:
14:1c:80:f0:63:2d:ac:66:7c:72:7f:9d:32:20:de:
a3:e9:27:a5:6f:0a:fb:dd:a7:cd:3d:0c:63:8f:a7:
8d:97:d4:0c:85:98:aa:e8:28:2a:6d:bd:3f:4f:25:
cf:69:ec:66:d6:7a:45:8a:63:48:d1:f3:f9:ad:71:
6c:ec:be:b6:d6:37:62:bd:96:2d:3e:e8:bb:64:59:
31:0b:75:48:5c:06:a7:1c:91:1a:11:d4:f7:0d:18:
17:7f:e3:e3:f8:4c:6c:29:7d:22:b5:29:88:20:d3:
80:74:fc:0e:33:f5:c2:ee:f3:0e:89:fb:46:a8:ec:
8e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:4E:2E:A3:DF:FE:7E:A1:C0:53:C7:88:8D:DD:FE:B1:9E:AA:05:FA
X509v3 Authority Key Identifier:
keyid:95:80:61:D8:00:0C:B8:3D:3B:89:67:E6:6F:B8:A4:C2:7E:91:22:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYBh2AAMuD07iWfmb7ikwn6RImI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/122f6a-c132-49aa-b496-b92ce21ca409/1/lYBh2AAMuD07iWfmb7ikwn6RImI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:5f:99:63:ce:f0:c3:41:a8:c4:f4:b2:8e:00:6f:c1:a3:c2:
76:aa:4e:84:af:c7:77:52:a5:82:71:e1:af:01:2f:2f:6f:d1:
8d:6e:6e:0f:0e:f1:dd:2a:8a:3c:d6:e8:4b:6f:23:77:74:da:
bc:61:8d:65:05:74:93:c9:3f:aa:69:82:70:43:e9:32:25:6f:
8b:4b:7b:73:a4:a9:91:1e:52:bd:12:ef:86:a3:e2:3f:9c:49:
00:fb:4f:1f:56:7d:ab:ca:b8:66:0a:c1:cb:aa:8a:c2:94:f5:
96:d4:f5:62:b2:e7:10:1d:1c:2d:b7:fe:83:96:c8:87:b2:11:
59:37:d4:82:aa:42:63:ee:e3:bf:49:72:84:42:bc:bd:f5:50:
36:24:a5:11:9e:4c:34:d4:a4:7f:29:19:ff:59:83:1e:a9:40:
a2:5e:f8:80:50:18:43:26:29:30:22:75:7a:ae:e6:e3:92:78:
5e:95:b6:86:9d:13:79:c7:14:84:74:75:3e:86:c6:26:d9:90:
e9:5b:5c:56:fc:15:0d:43:a3:d7:fe:52:6b:f6:0d:91:a3:eb:
67:c7:87:59:6b:cf:b1:3b:7b:1e:f2:75:33:ae:5a:45:4b:9a:
8b:0a:91:29:a6:0c:5a:27:2b:75:5b:33:0e:a3:1f:1e:9f:d8:
48:38:d9:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:33:06 2026 by rpki-client