Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
File: lUoq7ghhdLAScvrnea1DHrCSrrc.mft (raw, json)
Hash identifier: u4qIy6bLFjbCvlsjlZQ9rO/mOdVdNq5FPjovh4hFXUs=
Subject key identifier: 45:44:EE:E2:6F:23:2D:F2:20:64:CE:E1:7C:E9:A4:73:DC:67:68:F0
Authority key identifier: 95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7
Certificate issuer: /CN=954a2aee086174b01272fae779ad431eb092aeb7
Certificate serial: 019D25F106140697460AA1BEB6318312AF99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
Manifest number: 1895
Signing time: Wed 25 Mar 2026 17:00:45 +0000
Manifest this update: Wed 25 Mar 2026 17:00:45 +0000
Manifest next update: Thu 26 Mar 2026 17:00:45 +0000
Files and hashes: 1: DVTf_5yCOBj02L0_BNQxFYZ6k8w.roa (hash: cTTE0xiWdv+38wchcvOHNRPPWHdMRDsNTimSJDnJNbE=)
2: Dgf7cfRVG5UYWu4NmVQUsVHPJPg.roa (hash: DkeQXBgFh9ImmmNOzjwgdsw8I8ss1Ec5+5QbfzAbm4I=)
3: H66jiOjIkB87nIobF_YVreGxebg.roa (hash: nX0dPkscOxKWgmYZHhHlPPDOqJnygv6Vqh3rpPBUOoA=)
4: KrB7uvE9bKw3yAKVJCQvXlGLopk.roa (hash: 8K9bI6nkeysWqiudvR2q+I1t8ttPCPC4qoTAEiGR6EE=)
5: YrEr9LA-khkmEW07gT8B8DqCy0I.roa (hash: 7DVEFprnSovyw9V4VwxHhpglukSCBrVRzQ4rkmRgg34=)
6: lUoq7ghhdLAScvrnea1DHrCSrrc.crl (hash: MyykZ4/T5BsF9F1U6hsTbsiuuLXyB1BppTx9C3hPERM=)
7: nZDMDILCeZBaSe8pGgkQFEMoBB8.roa (hash: XlYgESaX6EJLoA/4185eSc5A384E8E++jev4s9MD0rI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:06:14:06:97:46:0a:a1:be:b6:31:83:12:af:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=954a2aee086174b01272fae779ad431eb092aeb7
Validity
Not Before: Mar 25 17:00:45 2026 GMT
Not After : Mar 26 17:00:45 2026 GMT
Subject: CN=4544eee26f232df22064cee17ce9a473dc6768f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:51:68:d4:d6:51:af:7c:54:8c:a0:f5:c1:54:
1b:88:f7:5a:71:d9:ca:2c:37:16:ea:79:8b:ad:23:
d1:b2:6b:ad:80:42:c1:aa:e6:1d:3f:5f:4d:2f:fb:
39:9a:c4:79:77:84:44:a9:87:f3:37:79:91:1b:0a:
90:f0:44:e9:68:d2:e0:b4:ee:b6:82:11:5b:ff:11:
a6:13:1c:03:b3:a3:3f:82:ca:5c:25:4b:64:73:b6:
72:43:08:03:80:e6:c0:a9:da:d5:d2:f8:71:3c:15:
42:c0:8a:13:c8:ea:fb:b9:75:cc:ab:22:47:f1:6d:
b4:6b:02:2f:8b:41:33:04:46:35:f6:f5:dd:2e:68:
74:46:bf:2b:08:98:ef:84:c1:7b:9e:de:4d:7e:22:
49:db:69:d7:23:70:30:37:4b:37:e0:a9:eb:25:4e:
bd:b3:ee:69:8e:02:c0:ee:65:06:b3:dd:86:f7:37:
22:b4:f0:98:f8:8a:d2:ca:bc:3a:3e:ab:46:f8:49:
71:40:63:2d:67:f4:12:e6:c3:ff:03:69:49:01:ad:
e8:65:80:40:a8:d3:43:87:b8:bb:eb:d1:c9:cb:3f:
c3:a2:7d:7b:7b:9a:45:de:49:72:35:ae:6f:28:33:
ee:94:ac:68:1b:6f:bc:68:3f:68:e6:65:6b:86:3e:
68:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:44:EE:E2:6F:23:2D:F2:20:64:CE:E1:7C:E9:A4:73:DC:67:68:F0
X509v3 Authority Key Identifier:
keyid:95:4A:2A:EE:08:61:74:B0:12:72:FA:E7:79:AD:43:1E:B0:92:AE:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUoq7ghhdLAScvrnea1DHrCSrrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235396-0e42-4377-855a-4565f04f8d85/1/lUoq7ghhdLAScvrnea1DHrCSrrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:b1:fd:9d:5b:39:4a:57:a3:9b:17:24:0e:93:ab:b2:70:39:
03:92:8c:76:47:5e:07:6c:09:04:9e:56:df:99:16:4a:76:c9:
5c:76:f3:ea:ae:c9:44:50:6a:6d:3d:17:c1:3d:c5:cb:ea:04:
f6:4d:02:8c:42:a9:9e:11:9b:b1:ac:24:3c:d5:13:84:44:30:
2c:f4:80:a5:fa:55:cd:a1:60:0d:b6:bd:a9:e6:1b:aa:d5:4f:
08:4d:f1:df:04:f5:04:a7:0a:42:41:ef:a8:7e:18:46:38:d1:
37:9b:fa:4f:09:a7:8c:cb:05:0c:92:6d:0a:15:35:ed:be:d3:
02:e5:04:ae:b8:fa:77:27:f5:fd:1f:22:cb:4f:85:74:41:98:
d5:9b:41:2b:2b:13:a7:b0:7b:ff:77:9d:b7:74:5c:72:11:7c:
6c:04:cf:56:e9:4e:11:19:fa:52:a8:3c:36:50:3b:25:4a:d0:
eb:61:0a:26:85:72:3d:07:44:61:06:30:40:f8:8f:3c:2c:85:
72:2f:4b:83:e2:fc:c5:a7:14:cb:cc:36:e0:74:37:78:c9:49:
13:e3:2e:4b:96:ef:9e:d9:66:61:ab:3e:9d:a6:58:2c:d3:68:
2b:f2:8a:d6:e9:54:18:18:2f:71:d4:7a:0d:21:40:1a:c6:cf:
af:8d:42:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 23:15:46 2026 by rpki-client