Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
File: lb24W36o8fqvdR52xBR8gbYOmU0.mft (raw, json)
Hash identifier: airMHNMgv9Xk+OBQflo90nRueulpkMfTl1gljo6lVJE=
Subject key identifier: D0:30:E2:DB:E8:45:58:35:C5:03:1A:5A:06:91:B0:45:BC:34:82:D9
Authority key identifier: 95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
Certificate issuer: /CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Certificate serial: 019E20FF13065DD22EC6DED1AA94EB6F7BAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
Manifest number: 02BB
Signing time: Wed 13 May 2026 11:00:47 +0000
Manifest this update: Wed 13 May 2026 11:00:47 +0000
Manifest next update: Thu 14 May 2026 11:00:47 +0000
Files and hashes: 1: X3R-floHCctncemlohut39fAAWo.roa (hash: HcALHXWtxViwkG5KOnEw6VMEEbxHOixZaFpjLNGdypY=)
2: lb24W36o8fqvdR52xBR8gbYOmU0.crl (hash: O/cHBOBl9dZ6QbQcTOYgzyRJycpaaWES76PDscEdSP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:13:06:5d:d2:2e:c6:de:d1:aa:94:eb:6f:7b:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95bdb85b7ea8f1faaf751e76c4147c81b60e994d
Validity
Not Before: May 13 11:00:47 2026 GMT
Not After : May 14 11:00:47 2026 GMT
Subject: CN=d030e2dbe8455835c5031a5a0691b045bc3482d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a2:16:4b:b1:ae:5a:e3:c0:03:81:b1:d8:de:
87:9c:a5:4e:54:78:9b:7d:1b:4a:c0:78:d6:2a:f6:
e9:6a:11:3b:82:b6:e0:90:b2:9d:87:d4:a3:a5:89:
ad:82:be:0a:d1:be:0b:d7:7b:3f:c3:9b:2c:98:40:
de:6a:f6:38:72:3a:6a:ec:12:d9:c5:70:91:e9:09:
83:15:fb:9d:c0:87:6b:d7:e4:d8:11:d1:7f:fb:5c:
78:62:d4:91:02:b3:27:6f:38:f8:bc:b8:c3:fe:b4:
bd:1a:9a:96:e6:24:c3:0a:9a:bb:1c:f0:ea:9d:c5:
bd:42:d5:14:78:6a:99:d6:7b:6a:fb:89:13:c0:9c:
e1:db:c4:3a:de:80:50:c7:db:b2:5d:96:a8:b6:57:
c2:1e:6a:15:d3:5e:d2:7e:97:54:4a:fa:42:e6:f3:
00:06:6f:de:c4:4d:2f:c5:97:14:14:fc:c2:88:60:
6a:c2:f0:a0:9c:79:5d:ae:3e:fe:97:3d:46:2e:2a:
fb:f1:dd:88:f5:09:72:8e:43:28:50:e0:79:e3:f6:
5c:04:b0:75:50:88:af:bf:7e:bb:c3:cc:86:a8:74:
21:ed:0e:da:4e:4d:44:2f:c1:86:ef:c7:96:03:a4:
4d:43:06:c3:0d:26:22:f1:78:d4:e8:83:22:33:bf:
ff:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:30:E2:DB:E8:45:58:35:C5:03:1A:5A:06:91:B0:45:BC:34:82:D9
X509v3 Authority Key Identifier:
keyid:95:BD:B8:5B:7E:A8:F1:FA:AF:75:1E:76:C4:14:7C:81:B6:0E:99:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lb24W36o8fqvdR52xBR8gbYOmU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/033700-f904-422f-a4ac-10240ca0b182/1/lb24W36o8fqvdR52xBR8gbYOmU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:55:b8:e9:99:17:ae:0e:1b:0f:df:23:08:a8:e4:18:d0:48:
07:82:36:1f:6b:9d:55:3e:55:ce:9d:87:86:91:d2:3b:60:e9:
6e:33:36:58:5d:82:c3:8f:2f:fe:c6:98:2d:ee:5b:53:15:0f:
19:17:ea:1f:88:f0:ca:0a:e1:1d:12:d8:c4:f1:86:58:1e:a8:
bb:90:7f:46:38:02:cb:73:cb:dd:f3:b6:09:ce:f1:79:e7:36:
8b:e4:c2:eb:93:00:59:93:90:c4:d6:3c:c2:c6:c3:d9:37:b0:
4f:18:06:8e:9c:62:4c:48:94:b9:4d:e8:1c:d8:92:53:6e:c9:
7d:a9:c2:37:49:dc:bd:2d:c5:97:6d:4f:29:8b:07:62:ae:dc:
9a:b1:a5:be:62:b6:f5:86:f6:cf:60:1a:7e:15:94:61:2e:6d:
f2:22:83:11:04:3f:a6:fa:d1:eb:0b:ae:f2:fa:db:ff:a5:17:
4f:50:48:f8:e1:bb:eb:6a:79:a3:42:70:a5:61:41:69:f1:2d:
f1:ee:58:71:e7:6f:18:d6:64:1d:46:88:40:99:3a:1a:f8:95:
20:37:60:5d:76:3a:28:62:cf:9c:b5:ec:8c:4a:24:2b:4e:07:
ed:1c:9d:91:67:ad:cb:ef:c2:57:b2:14:01:c6:91:82:fc:32:
94:7e:92:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:18:52 2026 by rpki-client