Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
File: lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft (raw, json)
Hash identifier: AnENLORjo0cjpi+9zkqJRxODcM+352TvcAHp9dO/4bM=
Subject key identifier: 14:AC:5B:4B:5A:FD:3B:A8:EC:60:94:98:F0:37:44:C4:5F:24:20:53
Authority key identifier: 95:46:46:5C:A5:B8:6C:25:A0:2E:52:EC:BF:04:C4:CF:BC:07:65:4D
Certificate issuer: /CN=9546465ca5b86c25a02e52ecbf04c4cfbc07654d
Certificate serial: 019E1F47F4A813422D212350090812DE1C20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
Manifest number: 0751
Signing time: Wed 13 May 2026 03:01:09 +0000
Manifest this update: Wed 13 May 2026 03:01:09 +0000
Manifest next update: Thu 14 May 2026 03:01:09 +0000
Files and hashes: 1: McifzUNxziI8WsCXgZeHNz10iWQ.roa (hash: 1R6rZYh+m87Flh7dOcMYHRsZeD59VMaEbBnj6Shuhfs=)
2: lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl (hash: tilo4AFuM9Hi+obB11XZrLm35t6Z9LEZYoWL0j+iAv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:f4:a8:13:42:2d:21:23:50:09:08:12:de:1c:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9546465ca5b86c25a02e52ecbf04c4cfbc07654d
Validity
Not Before: May 13 03:01:09 2026 GMT
Not After : May 14 03:01:09 2026 GMT
Subject: CN=14ac5b4b5afd3ba8ec609498f03744c45f242053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:34:3a:32:bc:06:fa:d5:74:5f:fa:4b:7b:bd:
5f:03:96:c3:c6:b4:1b:41:3c:94:d3:f9:d1:2a:d4:
ab:99:d6:15:f9:e2:26:44:0d:b1:64:1b:8c:e5:62:
7f:53:4a:b4:93:96:c6:86:7f:7f:0d:a3:b2:f5:df:
cd:49:3c:f0:19:b9:8b:cb:e6:c0:5e:49:56:8b:8e:
fb:dc:ed:21:45:0d:78:21:a5:8b:53:c3:d5:fc:2b:
bb:fc:87:38:52:52:94:bd:1b:ae:a5:f9:3e:67:de:
84:b0:6f:1a:2e:91:80:99:6c:9c:3e:90:68:ae:2c:
d0:c9:f9:b9:5b:81:c4:02:6a:dc:22:75:6a:5d:da:
30:1a:59:33:93:6b:8c:0e:1e:b5:d4:a0:55:a2:d9:
e2:0d:45:54:e7:10:3d:a2:82:c1:c9:73:47:1c:da:
c9:ce:0d:46:61:c7:d3:21:96:7f:44:c9:2f:20:2d:
74:e7:96:05:f4:0c:21:8a:fd:db:68:9b:96:8d:1f:
d9:e0:70:38:51:ae:ad:17:ae:76:b9:5e:71:1c:cb:
bb:e6:e0:75:bf:42:eb:60:fc:d0:79:48:a6:9a:c7:
d0:cf:6b:30:7c:cb:c4:7f:53:45:4a:63:b7:7d:ed:
e7:69:dd:f6:70:11:47:a6:c9:1e:02:4a:11:07:ca:
77:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:AC:5B:4B:5A:FD:3B:A8:EC:60:94:98:F0:37:44:C4:5F:24:20:53
X509v3 Authority Key Identifier:
keyid:95:46:46:5C:A5:B8:6C:25:A0:2E:52:EC:BF:04:C4:CF:BC:07:65:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:e9:d5:f6:b0:a6:47:f3:67:b2:14:e7:a6:82:82:fb:4d:4a:
7c:e9:2b:09:02:cd:6f:9a:59:82:63:1d:bb:f1:70:03:82:e1:
89:e0:51:27:d9:c5:8f:88:9e:d7:7d:77:81:f1:22:ea:79:c4:
42:f0:f4:3e:7e:0b:33:09:fa:83:64:0b:bd:9f:c2:84:a5:52:
59:ee:01:62:ed:99:a5:f8:14:26:6f:21:f4:41:11:33:45:0e:
3b:69:9f:e2:95:94:c6:0e:04:1e:68:ec:18:fa:fb:06:22:6e:
d2:ca:c4:39:32:3d:cd:5d:7d:5d:70:c0:1f:4a:df:5b:db:e7:
63:58:e5:b2:1c:a5:5a:6c:55:07:22:bf:9b:f0:a7:7b:bb:79:
e8:aa:63:68:c3:49:39:38:7c:13:28:33:64:6d:5f:b6:43:11:
b1:01:31:fe:b1:97:48:c2:e1:ac:4a:a2:7e:37:4a:93:d2:52:
aa:7a:29:fe:d9:09:ee:88:56:01:7a:37:2b:c1:b6:8c:4f:bc:
63:e1:1a:a7:cb:7a:4c:5e:a9:ee:e5:2d:00:c9:98:7b:8d:f7:
26:a1:aa:8e:17:dd:60:23:55:08:44:c5:b9:14:c3:80:f7:4d:
a7:1a:02:6b:27:e9:b3:39:82:a6:14:0a:85:f9:0d:7b:b3:19:
ef:7d:d3:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:31:56 2026 by rpki-client