Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
File: lHEhWA7QLt309eWofTfgF7Mt9xs.mft (raw, json)
Hash identifier: ksIptxDUMXYxXk7pX4cy4XUKydpbaLpM+Sf4I0fN7CE=
Subject key identifier: 82:8A:65:F2:68:42:3B:D2:B9:A6:DF:C9:F8:47:26:C4:35:82:8B:E1
Authority key identifier: 94:71:21:58:0E:D0:2E:DD:F4:F5:E5:A8:7D:37:E0:17:B3:2D:F7:1B
Certificate issuer: /CN=947121580ed02eddf4f5e5a87d37e017b32df71b
Certificate serial: 019D273B060768CF92003BAC607B16C5672F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 23:01:12 +0000
Manifest this update: Wed 25 Mar 2026 23:01:12 +0000
Manifest next update: Thu 26 Mar 2026 23:01:12 +0000
Files and hashes: 1: lHEhWA7QLt309eWofTfgF7Mt9xs.crl (hash: c7Y88HYT8LURFloU+y5wqarQrk0+tK7lP8eFpwOe5Ho=)
2: xINjkJL8qvMAVDbIJ4LyV80MllA.roa (hash: kboYGMyjJk+EgYXIB3KXdvFsdQ20CMBg3E1UOGt17HY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:06:07:68:cf:92:00:3b:ac:60:7b:16:c5:67:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947121580ed02eddf4f5e5a87d37e017b32df71b
Validity
Not Before: Mar 25 23:01:12 2026 GMT
Not After : Mar 26 23:01:12 2026 GMT
Subject: CN=828a65f268423bd2b9a6dfc9f84726c435828be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ed:75:c2:ee:61:5c:d7:0f:9d:b6:c1:dd:33:
79:f0:d0:75:1d:14:5f:b4:d3:a3:92:a3:ea:ea:a8:
d2:c3:e5:60:73:07:f0:67:5b:a7:af:f5:4d:48:0e:
6b:84:a7:7e:4d:f0:ee:4a:53:14:f4:0d:b7:18:c0:
c5:91:c5:b3:ff:00:e1:e5:dc:37:4f:fd:14:d7:d7:
c0:4a:d6:26:e5:4c:d1:9b:a6:a0:2d:bd:bb:44:27:
d1:09:2e:f9:40:b4:6b:00:24:0e:ee:8f:56:d6:f6:
0e:79:12:b3:54:54:2c:16:2b:b6:2c:83:55:d0:2d:
d8:27:5f:c2:87:df:0e:d9:e4:15:01:96:79:e7:9d:
54:91:4f:6e:cb:81:fd:48:a8:6f:84:28:58:94:8f:
11:ad:c4:da:99:95:8a:63:a6:9a:bf:d3:42:eb:96:
a8:f5:43:c5:f0:24:f0:1e:14:19:32:0f:cf:77:f2:
f4:3f:1e:1a:bf:b0:4e:64:da:be:a7:21:4e:99:73:
78:ff:aa:8c:0d:18:e8:50:2f:6a:f0:3e:9f:cd:aa:
52:8d:59:e8:1a:92:96:ca:e6:43:83:03:92:19:93:
b0:41:f6:4e:99:e6:7d:8c:12:3c:4a:0b:de:22:f5:
ce:82:80:d6:2e:6c:f5:3d:d3:73:6b:b5:3f:dc:92:
eb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:8A:65:F2:68:42:3B:D2:B9:A6:DF:C9:F8:47:26:C4:35:82:8B:E1
X509v3 Authority Key Identifier:
keyid:94:71:21:58:0E:D0:2E:DD:F4:F5:E5:A8:7D:37:E0:17:B3:2D:F7:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:82:a6:22:c4:c9:af:86:36:87:65:1d:f4:2f:57:09:5d:9f:
76:55:18:e8:18:62:3a:d4:9e:65:61:1b:6c:be:ae:d6:1c:6d:
52:2b:87:59:0a:3c:5f:bf:71:08:c7:6f:46:9b:e8:33:d7:90:
98:97:5c:6b:b2:2d:96:a3:47:c7:03:fe:0c:5e:26:9e:eb:95:
49:7c:9d:2a:f2:a6:70:fa:cc:a8:2b:76:c8:90:a0:2e:28:ba:
19:c4:68:62:a4:59:8c:47:28:93:59:38:be:7a:7f:86:e1:aa:
4a:bb:cb:8e:19:ff:f6:6f:6e:b5:89:a7:70:a8:c6:15:f2:d6:
46:bd:15:b1:09:6d:ca:ec:08:3a:a7:f0:4a:89:c7:3d:cc:ee:
eb:a0:c1:a6:2e:2e:31:96:3e:2f:50:5f:1c:a1:9b:fc:fb:7d:
d7:94:a1:cd:d0:9f:98:d3:7f:64:cb:c2:f1:0e:4f:10:b9:34:
88:84:8b:e6:76:91:6c:77:93:cc:9e:ce:d0:36:51:54:60:81:
43:9b:8a:7b:9a:98:13:ed:b3:0b:b1:50:9d:38:0f:e0:dc:5a:
fc:52:e5:01:00:c6:12:38:a6:3e:ad:4c:00:dd:60:aa:01:a2:
a9:0a:5d:39:54:b4:e4:83:e2:e4:cb:12:14:52:3b:d8:17:3f:
34:fd:28:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOwYHaM+SADusYHsWxWcvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0NzEyMTU4MGVkMDJlZGRmNGY1ZTVhODdkMzdlMDE3YjMy
ZGY3MWIwHhcNMjYwMzI1MjMwMTEyWhcNMjYwMzI2MjMwMTEyWjAzMTEwLwYDVQQD
Eyg4MjhhNjVmMjY4NDIzYmQyYjlhNmRmYzlmODQ3MjZjNDM1ODI4YmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqu11wu5hXNcPnbbB3TN58NB1HRRf
tNOjkqPq6qjSw+VgcwfwZ1unr/VNSA5rhKd+TfDuSlMU9A23GMDFkcWz/wDh5dw3
T/0U19fAStYm5UzRm6agLb27RCfRCS75QLRrACQO7o9W1vYOeRKzVFQsFiu2LINV
0C3YJ1/Ch98O2eQVAZZ5551UkU9uy4H9SKhvhChYlI8RrcTamZWKY6aav9NC65ao
9UPF8CTwHhQZMg/Pd/L0Px4av7BOZNq+pyFOmXN4/6qMDRjoUC9q8D6fzapSjVno
GpKWyuZDgwOSGZOwQfZOmeZ9jBI8SgveIvXOgoDWLmz1PdNza7U/3JLrlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIKKZfJoQjvSuabfyfhHJsQ1govhMB8GA1UdIwQY
MBaAFJRxIVgO0C7d9PXlqH034BezLfcbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEhFaFdBN1FMdDMwOWVXb2ZUZmdGN010OXhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS83OWM1YmItNjE5ZC00YmViLTg2NDkt
YTJmNDI1NjAwZGIzLzEvbEhFaFdBN1FMdDMwOWVXb2ZUZmdGN010OXhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS83OWM1YmItNjE5ZC00YmViLTg2NDktYTJmNDI1NjAwZGIz
LzEvbEhFaFdBN1FMdDMwOWVXb2ZUZmdGN010OXhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGoKmIsTJ
r4Y2h2Ud9C9XCV2fdlUY6BhiOtSeZWEbbL6u1hxtUiuHWQo8X79xCMdvRpvoM9eQ
mJdca7ItlqNHxwP+DF4mnuuVSXydKvKmcPrMqCt2yJCgLii6GcRoYqRZjEcok1k4
vnp/huGqSrvLjhn/9m9utYmncKjGFfLWRr0VsQltyuwIOqfwSonHPczu66DBpi4u
MZY+L1BfHKGb/Pt915ShzdCfmNN/ZMvC8Q5PELk0iISL5naRbHeTzJ7O0DZRVGCB
Q5uKe5qYE+2zC7FQnTgP4Nxa/FLlAQDGEjimPq1MAN1gqgGiqQpdOVS05IPi5MsS
FFI72Bc/NP0oqw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:59:24 2026 by rpki-client