Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json)
Hash identifier: ZgU+ORxWXyJqpvE3+bGNbs/GVGxxDaWqIQyTuf3dC1Y=
Subject key identifier: 75:56:2C:05:0B:0F:32:58:04:79:1A:09:CD:FB:90:4A:A2:43:06:55
Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066
Certificate serial: 019E2091A00E0C0841098CA21366FB5A2D97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
Manifest number: 1908
Signing time: Wed 13 May 2026 09:01:14 +0000
Manifest this update: Wed 13 May 2026 09:01:14 +0000
Manifest next update: Thu 14 May 2026 09:01:14 +0000
Files and hashes: 1: RZP_EJvUPRy8N5V44f-ykW1wgg8.roa (hash: LUUspyCZgfPy/9PXdd/3xbh9XNVlKFlsig4SSBadF24=)
2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: mbci932WPW9kN1mpvOgfefLn0nRYOQNqzH/qrU3jSw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:a0:0e:0c:08:41:09:8c:a2:13:66:fb:5a:2d:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066
Validity
Not Before: May 13 09:01:14 2026 GMT
Not After : May 14 09:01:14 2026 GMT
Subject: CN=75562c050b0f325804791a09cdfb904aa2430655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5b:bf:d0:71:04:7c:b1:65:48:2a:0a:e4:bc:
b4:86:a3:14:b1:06:dc:ce:05:79:90:f6:12:80:52:
7d:3c:77:4d:c7:46:43:7a:0c:38:89:57:e9:36:cb:
d8:1d:2f:ee:e2:2f:8c:9c:6d:89:bb:7e:a2:0a:cc:
b8:b7:dc:e9:06:03:6e:e1:c7:a3:b5:46:fd:bf:3d:
4c:8a:2a:b6:b4:d9:da:51:88:e0:f8:09:23:42:6b:
82:46:6f:cf:66:cc:05:6e:98:88:e8:1b:0f:dd:b3:
8b:c7:07:51:05:2a:11:c4:28:e0:0f:a7:05:48:8c:
0d:19:2d:e3:d5:57:4c:ac:ed:b1:d5:fc:3c:4d:ec:
fb:fe:60:c6:7d:ff:8c:8c:f0:cc:ae:df:e7:58:a4:
e4:d8:95:6f:99:4c:7b:e6:d8:92:aa:90:4a:8a:0c:
f4:3c:73:f4:93:c5:85:14:4b:e1:a4:09:78:0a:ca:
f1:ec:26:bf:e3:5e:32:b5:1a:b7:ba:85:4c:e5:44:
ca:37:cb:10:95:26:2e:4c:d8:43:8b:0b:28:8b:a2:
77:fe:87:48:65:44:76:52:54:46:54:8d:1d:88:09:
05:93:3e:01:7a:2e:3a:4a:a0:73:b1:9e:f7:dc:42:
86:af:26:ba:87:3e:63:3a:ad:97:c5:fe:80:57:ee:
26:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:56:2C:05:0B:0F:32:58:04:79:1A:09:CD:FB:90:4A:A2:43:06:55
X509v3 Authority Key Identifier:
keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:3a:6e:fb:af:53:31:98:25:c2:ff:7f:1d:a3:28:75:34:85:
ed:3e:e1:1b:78:fe:65:de:17:56:bb:8d:d9:a9:af:da:0d:75:
89:42:ce:76:55:ac:1f:df:13:05:19:84:f4:fc:94:c9:f1:64:
e7:40:41:1d:ad:e8:ca:f8:11:bf:6d:d5:6a:f1:68:06:1d:20:
bb:1e:dd:29:d9:e2:fd:ce:b8:e4:a7:77:cf:30:18:52:8a:2d:
0b:53:67:fb:bc:dc:c0:7f:98:d1:f5:a5:07:af:04:70:56:8e:
02:cb:0e:4c:b2:54:fa:ed:40:03:15:83:d3:6f:c2:84:5e:e0:
9e:1d:ef:04:b2:20:a7:1e:91:50:42:74:fb:bb:82:ba:90:85:
d3:57:25:30:2f:3e:04:e1:96:e5:eb:53:c5:ea:73:67:ed:94:
f8:bf:cb:33:08:23:58:68:c3:1c:49:aa:c9:4b:1d:ad:c4:77:
cc:a1:f5:3f:e5:10:26:8f:7b:e4:5b:c7:5f:2b:64:7b:0a:63:
db:e6:f9:8b:96:9c:52:10:1b:52:8d:42:c3:08:c6:89:ae:ae:
fb:35:ff:a1:9f:d8:de:6b:ed:a9:42:40:47:4a:62:3c:4a:9b:
6f:96:14:ac:95:e4:0f:3c:0f:ef:92:2d:d1:21:3e:f9:05:7f:
7a:1e:54:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:20:15 2026 by rpki-client