Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: pPcw/utfw0ZdO4Jvvb/bBbpIk7T/Iuuj4uEtwx6Mvx4=
Subject key identifier: AA:2A:26:E1:14:61:EC:E0:35:23:4E:F9:8A:79:1B:49:63:2D:CD:22
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 019E1D90A7B0FEBBB76B6DD619F0B0745BA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 1917
Signing time: Tue 12 May 2026 19:01:19 +0000
Manifest this update: Tue 12 May 2026 19:01:19 +0000
Manifest next update: Wed 13 May 2026 19:01:19 +0000
Files and hashes: 1: 1-zEgOYWTHaiqMcDqGEot8D9hfIE.roa (hash: jVaMeN32gu4WLb8RXEU7QtT8NJ8As10+YaSSTQDJyMM=)
2: 77UuERyh3Z3AUcULCIiJEdc-fQo.roa (hash: DnHBthnf/STbIAi1O3tZFh2P5fMOYtzdif9FPjsRkXU=)
3: I74vLo5CklRsbzCPNYnKrvIvLj4.roa (hash: ylSWG2wfgpUMhcZpBHxBahFVE1pyuX6ebVuzOtGSKVo=)
4: OA8Bk3tPUiZSmiAzbm0eBXa4nuE.roa (hash: oWNPNPjgcKmmhmYQ0/KR/N+7+UQanOVovcIMTSyV2uo=)
5: hYxTxK4AHKTY1TwSA43oGaIbwvI.roa (hash: pXMygWt3Q3zIvm4RuMnURnfNgvmTHNGm+Wsjn0P2p18=)
6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: +jaKHsOP8d3m3pK02880Gw/myvvYRC/c0yEaN2jcpyE=)
7: nS-qR-87gGJ6pBf2l7_HCJOIeHM.roa (hash: uHfPOVPyEDve9s1ba9V4RroyQ1/pD8S/mdaAMdEB9is=)
8: pxTDDl8HD6hZo5qJKIkeKUT3PHY.roa (hash: FICr2xp4vd+7n3rWeWvKoKoWXhNvU50pS0gZxwPllVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:a7:b0:fe:bb:b7:6b:6d:d6:19:f0:b0:74:5b:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: May 12 19:01:19 2026 GMT
Not After : May 13 19:01:19 2026 GMT
Subject: CN=aa2a26e11461ece035234ef98a791b49632dcd22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:05:16:4e:46:e9:38:8d:e5:50:21:c9:a0:cd:
51:1c:bf:44:53:94:33:d3:f8:50:c8:fc:3f:e4:d1:
b0:0b:65:7c:17:56:2c:d4:6b:7c:d0:83:0c:b4:2f:
68:19:73:ba:a6:90:dd:51:28:20:81:47:e4:61:f6:
b0:2c:33:67:db:2e:d3:e9:cd:db:db:53:ae:1d:64:
93:bb:98:e5:e3:c7:73:6f:67:cc:b4:de:09:57:3b:
1a:e3:ac:64:60:53:92:80:af:07:7b:28:35:2b:46:
f2:a7:33:9a:23:98:83:f4:9d:c5:15:75:ea:0e:c5:
4f:e0:03:30:c2:f4:3f:04:b5:9b:b2:49:cb:22:61:
91:9c:f4:91:63:78:6e:f8:40:21:42:7e:d4:85:61:
ef:37:77:2e:0c:42:9b:77:5d:75:fd:6e:00:ee:09:
d6:29:af:c7:b2:23:d6:bb:83:25:f8:44:fd:5c:64:
1a:ad:18:c9:0e:01:d8:2b:79:ac:25:06:95:3e:72:
a1:48:89:5f:51:16:ce:02:0b:f4:94:ae:eb:12:22:
45:6f:8c:fa:96:af:77:8b:95:6c:63:80:2b:2e:e3:
e2:c5:f9:d6:f0:16:de:81:7f:7d:7f:df:c2:b8:95:
a7:68:4f:c4:3c:f7:3a:03:00:7c:59:31:9b:5a:01:
16:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:2A:26:E1:14:61:EC:E0:35:23:4E:F9:8A:79:1B:49:63:2D:CD:22
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:b7:cf:d3:58:fb:1b:10:bb:f3:f1:76:eb:dd:f4:18:9d:f2:
cd:5d:8d:8a:24:38:d1:02:8a:40:a1:2c:68:13:0f:d7:82:c9:
17:36:1c:17:bc:89:46:eb:a1:0b:fa:38:a8:06:33:90:ac:09:
87:9f:89:58:24:7d:fe:d9:9d:62:30:56:24:34:08:29:b4:7a:
0c:eb:71:d7:e6:c9:29:59:82:8c:fe:90:13:8c:6d:6b:f4:4f:
bd:31:66:8f:94:29:ce:96:b3:68:63:c9:c0:dd:67:86:d4:c1:
77:ad:5a:2a:f8:18:7e:0d:ef:c8:f8:ff:73:4a:b3:e8:eb:c7:
db:c6:4b:d2:28:67:d6:4c:62:21:d8:dc:66:9d:22:b3:31:62:
57:38:d2:92:ac:5c:30:2a:a4:06:11:95:fd:96:d4:30:6e:db:
7f:02:e6:bd:39:89:1c:a6:12:38:e4:ae:29:7e:9f:a9:ff:2e:
6f:52:f8:db:8c:54:ed:6d:df:2d:4a:08:11:f3:bd:cd:84:76:
c7:1f:1d:a7:06:c3:23:31:63:4d:f5:8c:9b:79:f5:08:bf:82:
ad:53:63:c9:50:65:8d:d9:5a:b3:ad:b0:90:0e:7f:88:eb:9c:
b7:7c:87:d3:2d:c2:b6:cf:35:08:17:4e:61:19:f8:fa:50:43:
8a:bd:37:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:20:27 2026 by rpki-client