Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
File: lUoq7ghhdLAScvrnea1DHrCSrrc.mft (raw, json)
Hash identifier: XX95aXXOBjoIqRHaU+XAi/wgjycDrl6pHtJz9WXBEfs=
Subject key identifier: 95:5F:63:20:5F:E2:94:62:13:A3:00:03:4F:A4:60:A4:C0:27:D3:83
Authority key identifier: 95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7
Certificate issuer: /CN=954a2aee086174b01272fae779ad431eb092aeb7
Certificate serial: 019E1D23366104CA7BA1B8BFBEF0E2676810
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
Manifest number: 1916
Signing time: Tue 12 May 2026 17:01:47 +0000
Manifest this update: Tue 12 May 2026 17:01:47 +0000
Manifest next update: Wed 13 May 2026 17:01:47 +0000
Files and hashes: 1: DVTf_5yCOBj02L0_BNQxFYZ6k8w.roa (hash: cTTE0xiWdv+38wchcvOHNRPPWHdMRDsNTimSJDnJNbE=)
2: Dgf7cfRVG5UYWu4NmVQUsVHPJPg.roa (hash: DkeQXBgFh9ImmmNOzjwgdsw8I8ss1Ec5+5QbfzAbm4I=)
3: H66jiOjIkB87nIobF_YVreGxebg.roa (hash: nX0dPkscOxKWgmYZHhHlPPDOqJnygv6Vqh3rpPBUOoA=)
4: KrB7uvE9bKw3yAKVJCQvXlGLopk.roa (hash: 8K9bI6nkeysWqiudvR2q+I1t8ttPCPC4qoTAEiGR6EE=)
5: YHBsZomTG35HAfmE_uB3LbMxZEo.asa (hash: GX8nCIEdgXEZ2URE92YvWD2jw8z2DJ0jEPDWiYwJ7ec=)
6: YrEr9LA-khkmEW07gT8B8DqCy0I.roa (hash: 7DVEFprnSovyw9V4VwxHhpglukSCBrVRzQ4rkmRgg34=)
7: lUoq7ghhdLAScvrnea1DHrCSrrc.crl (hash: OStb9srCo398EhfVJ+3NqkbAm4rBUe7KBIvt8o5DrjA=)
8: nZDMDILCeZBaSe8pGgkQFEMoBB8.roa (hash: XlYgESaX6EJLoA/4185eSc5A384E8E++jev4s9MD0rI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:23:36:61:04:ca:7b:a1:b8:bf:be:f0:e2:67:68:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=954a2aee086174b01272fae779ad431eb092aeb7
Validity
Not Before: May 12 17:01:47 2026 GMT
Not After : May 13 17:01:47 2026 GMT
Subject: CN=955f63205fe2946213a300034fa460a4c027d383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:11:c8:8c:ad:bd:48:99:37:c0:ac:ca:66:5b:
5a:44:4c:f4:3d:6e:e5:c9:a0:6a:07:f9:ab:c7:64:
31:9c:99:09:96:fe:f3:19:23:38:5e:b7:26:2f:b3:
2d:eb:e3:77:bb:91:72:48:69:f5:a7:20:97:15:24:
60:31:7a:27:f9:55:6e:2f:57:42:6c:c9:b5:df:3a:
ba:f5:c7:7c:90:48:24:e4:97:e9:b9:7c:7a:fc:d3:
00:11:2c:19:54:92:6d:63:f7:ab:5a:a3:e5:0b:2e:
1f:b9:3d:e2:71:99:9f:a9:4b:21:61:6d:7e:eb:5d:
93:69:2a:f4:18:f0:52:35:1b:60:19:b3:95:96:6b:
3c:b8:fa:64:43:fc:ac:32:17:d0:97:cf:a4:38:1a:
93:c9:8c:69:05:ca:80:68:8f:78:1e:76:ff:26:fb:
39:25:57:84:17:47:e6:24:b7:fd:c4:b7:42:90:0e:
be:39:87:ec:87:fb:af:26:45:8f:c1:9b:74:3b:11:
65:50:df:5d:8d:a4:ba:b8:9b:d0:cb:ac:e8:8a:b6:
f0:9f:6d:dd:50:11:07:c8:fd:14:88:80:6c:15:1b:
19:be:ef:75:26:0e:2d:07:e5:26:5e:89:1e:ee:57:
17:84:c9:74:ea:cd:d5:a6:ea:03:66:b6:4b:4a:a5:
bb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:5F:63:20:5F:E2:94:62:13:A3:00:03:4F:A4:60:A4:C0:27:D3:83
X509v3 Authority Key Identifier:
keyid:95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:3c:9e:6e:0c:c2:f6:92:2a:88:91:47:03:d3:0a:9b:95:b8:
81:e9:75:de:61:4b:e2:7b:2d:69:51:ce:b9:c3:b7:de:e6:0f:
2a:76:f4:31:b6:bf:4e:d1:47:b4:00:78:ee:bd:96:b5:6d:d2:
ed:ee:62:b9:10:90:30:66:94:63:a4:70:e3:92:d7:75:07:35:
cb:2b:7a:18:12:48:c8:84:bc:33:de:c2:e5:7f:5b:35:58:94:
7a:df:50:79:ad:49:8f:3b:d8:ed:1d:d6:a2:df:c1:8d:30:0f:
d0:1f:ca:d7:4c:ac:f1:7c:b7:dc:b4:4f:fe:9d:a6:2b:98:49:
f0:81:53:4a:09:4c:ab:a4:b9:36:1d:81:16:ca:46:7e:99:5d:
69:12:8f:4c:81:45:1d:8f:00:11:39:7e:b7:b1:65:e1:ae:b9:
bf:4c:dc:d1:a4:b2:96:3d:74:11:a5:2b:19:16:4d:30:b2:37:
2f:9d:08:0e:76:24:6f:48:91:be:85:e7:7e:ed:25:20:8a:b0:
ac:d4:09:a5:4b:7c:16:3c:b1:b8:99:2b:95:31:ce:49:19:87:
d7:33:01:68:c8:e5:ad:88:7a:85:aa:36:57:4a:9e:ac:5b:80:
31:74:f6:f5:5d:cf:21:dc:e2:dc:e2:14:7e:1d:b3:da:ff:a5:
31:f0:a0:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:37:49 2026 by rpki-client