Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File: lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier: kegqBXBz36hhvW4pBPGZ76Sq88sGlEHFXPhE7E4eULQ=
Subject key identifier: 0A:76:39:00:4F:A3:2C:DD:22:80:34:BE:72:89:46:EF:35:B2:B9:7C
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 019D273AD3F3C7EBBF0089499C2E1F21CBBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number: 0FE6
Signing time: Wed 25 Mar 2026 23:00:59 +0000
Manifest this update: Wed 25 Mar 2026 23:00:59 +0000
Manifest next update: Thu 26 Mar 2026 23:00:59 +0000
Files and hashes: 1: aS1ACilZRTqrbOcoV0BzU5rsa0s.roa (hash: 9Yo0a2cgZRu9PRv1j6tfX41H+k9FzWqSbGbTCe992JA=)
2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: CN79VNaOJt+2l/qRNIw+feI87td7f3I0DA4fFo4vKwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:d3:f3:c7:eb:bf:00:89:49:9c:2e:1f:21:cb:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Mar 25 23:00:59 2026 GMT
Not After : Mar 26 23:00:59 2026 GMT
Subject: CN=0a7639004fa32cdd228034be728946ef35b2b97c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ad:f7:4e:1d:ac:f8:31:af:36:9c:46:3c:24:
8e:04:a8:04:05:29:49:8f:af:b5:02:84:da:26:0b:
d4:3e:de:a1:fc:a3:bb:8f:65:dd:27:33:c3:38:d1:
21:30:04:a4:3e:8f:3b:b3:b4:a4:8d:ca:47:27:fe:
b2:8c:0c:2f:3d:dd:08:18:ed:53:32:46:de:79:f0:
12:d0:b6:c4:37:40:e1:17:ba:cf:25:0b:04:5a:21:
e1:91:a0:59:40:61:10:5b:14:eb:ac:52:fb:7c:78:
c1:2f:58:79:f5:ab:7f:e4:f2:e3:00:eb:b8:aa:28:
be:d5:4d:53:bd:de:63:21:79:dc:92:a4:a0:68:89:
01:2d:6c:f5:f6:84:ad:60:4f:f6:e2:57:e1:ed:80:
55:79:0b:0a:f9:2e:a4:5c:47:04:17:ca:b6:84:b4:
db:bf:51:97:10:b5:9e:1b:5e:e0:59:70:e6:89:71:
e8:6b:bd:f3:28:1b:19:d1:e8:71:8e:f5:c0:66:e1:
a6:72:c2:8b:d8:d1:02:b4:f8:54:ad:9d:bd:33:7c:
6b:95:a8:a6:89:30:18:4b:4f:7f:53:8c:21:f0:e6:
27:8b:bc:d3:3b:92:00:c8:e6:9d:b8:cf:14:5d:9e:
07:6c:2a:18:2d:3c:c4:42:e1:09:eb:3d:41:44:0e:
2d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:76:39:00:4F:A3:2C:DD:22:80:34:BE:72:89:46:EF:35:B2:B9:7C
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:b4:3c:93:fd:67:d5:2a:f2:d9:1d:f9:b1:5a:9d:d5:eb:49:
b0:1c:09:46:4f:9d:14:68:d3:c0:7c:17:23:dd:0d:4c:51:8e:
5e:aa:0c:c4:11:3d:25:05:85:88:c2:d9:0c:93:12:a7:ed:ed:
7d:cb:b4:a3:12:89:0d:65:a8:00:0d:50:b9:1b:a5:14:d7:1e:
07:72:53:63:ae:c1:55:a6:d0:33:5a:c6:c6:41:88:81:0f:1a:
c2:4c:55:6d:e9:f5:62:1f:8a:c3:39:62:41:dd:9b:7c:65:01:
3a:59:57:97:09:93:ab:11:a9:7b:7b:fb:da:1f:ef:de:97:20:
d0:aa:33:24:20:4b:f1:d4:b5:e4:5a:10:b2:75:96:5a:a0:e8:
3d:05:50:91:67:bb:3e:35:7f:2e:e7:87:68:ab:c2:09:ea:ff:
ed:5b:70:11:8a:f8:d7:b6:a1:0d:31:6b:0d:1e:66:12:ad:9e:
66:b2:7f:57:d0:eb:0c:04:c7:0d:56:be:e8:d3:72:d3:74:a3:
ab:28:58:bb:e6:6c:9f:3b:93:8d:c7:ea:4f:29:7a:85:87:67:
0a:77:23:30:d0:21:63:a7:ca:6a:16:93:e3:e6:4a:a1:0b:15:
17:15:5e:ec:f2:fc:9e:20:d1:70:b1:32:5d:1a:a2:c7:52:a4:
b8:b6:0e:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:52:40 2026 by rpki-client