Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft
File: LQcZ69mnslPhSyXN7EzdFUoRHjA.mft (raw, json)
Hash identifier: oE3FfyM9WGsKiy3bbXtUuOMdaZTk7r/KUBR8OwKACJg=
Subject key identifier: 19:5A:28:D2:EA:EF:F8:C1:F2:80:B9:97:81:56:76:03:5F:23:41:F1
Authority key identifier: 2D:07:19:EB:D9:A7:B2:53:E1:4B:25:CD:EC:4C:DD:15:4A:11:1E:30
Certificate issuer: /CN=2d0719ebd9a7b253e14b25cdec4cdd154a111e30
Certificate serial: 019D3977647E98F42482C9C3D9C88FE1DCDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LQcZ69mnslPhSyXN7EzdFUoRHjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft
Manifest number: 0513
Signing time: Sun 29 Mar 2026 12:00:18 +0000
Manifest this update: Sun 29 Mar 2026 12:00:18 +0000
Manifest next update: Mon 30 Mar 2026 12:00:18 +0000
Files and hashes: 1: LQcZ69mnslPhSyXN7EzdFUoRHjA.crl (hash: FLUb1j9rUw+sBf9r7CZpqRZj6qo/P2y96a6rN9wkXJk=)
2: QY5IABNKSh9wzdwDFAlBjYGLgBY.roa (hash: DKFoMZra8knldwWf2JPXIqtTY/e0bpiT44EwSqV2A2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft
rsync://rpki.ripe.net/repository/DEFAULT/LQcZ69mnslPhSyXN7EzdFUoRHjA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:64:7e:98:f4:24:82:c9:c3:d9:c8:8f:e1:dc:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d0719ebd9a7b253e14b25cdec4cdd154a111e30
Validity
Not Before: Mar 29 12:00:18 2026 GMT
Not After : Mar 30 12:00:18 2026 GMT
Subject: CN=195a28d2eaeff8c1f280b997815676035f2341f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:fe:f4:5a:6c:8c:69:d0:5a:e7:a8:5e:31:ba:
0c:5f:89:87:c6:e2:b8:10:af:a9:3f:27:08:95:6c:
41:56:6d:1d:79:9e:09:2a:ab:12:32:88:e8:4d:45:
5a:ad:7f:1b:8b:7a:73:c2:1d:b3:0c:1d:50:c5:4e:
60:38:45:de:9a:48:0a:cb:f7:7a:e1:24:05:29:fc:
32:74:75:d7:7e:42:d5:77:79:85:d9:e7:03:a6:10:
42:fe:9b:1f:92:62:31:1a:5e:4c:30:c8:2d:3c:58:
e8:8a:82:cc:bd:e1:ff:90:4d:b3:d8:29:f6:76:a8:
1a:2d:ef:58:72:47:e1:ef:10:de:0e:bc:76:55:4d:
16:51:16:98:f3:37:53:78:cd:fe:e5:a3:20:1e:d2:
5b:1e:ab:2e:c1:08:f9:a9:f3:47:43:66:46:ec:9f:
9d:41:e5:62:cb:eb:b6:4f:ab:9d:1b:cc:ba:a0:b4:
0d:c9:f2:20:f1:27:d7:c3:af:49:1c:5a:18:d3:ef:
f3:d1:f1:39:0a:4e:3c:c2:4b:38:8d:43:59:4b:eb:
cd:73:aa:31:5d:b7:f8:9b:cf:b1:f1:a3:4d:b7:0b:
63:22:26:df:8b:a3:17:d0:33:55:db:de:6b:45:69:
84:bb:0d:8d:82:3e:ad:bc:09:d6:a8:03:1c:a2:36:
e6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:5A:28:D2:EA:EF:F8:C1:F2:80:B9:97:81:56:76:03:5F:23:41:F1
X509v3 Authority Key Identifier:
keyid:2D:07:19:EB:D9:A7:B2:53:E1:4B:25:CD:EC:4C:DD:15:4A:11:1E:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LQcZ69mnslPhSyXN7EzdFUoRHjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:1c:1b:11:f8:ad:92:fa:90:f5:ee:3d:6a:12:c3:93:8d:f9:
3a:48:19:f6:23:71:55:ae:31:e8:ed:ad:99:b9:8c:1d:bc:09:
6d:ac:92:b5:fc:fb:f2:1c:53:de:33:1e:6b:8a:39:fb:4d:3a:
9b:69:81:a9:c0:f7:c5:c7:9d:77:ed:b5:5e:d9:f3:e7:3c:68:
56:02:bb:40:c9:37:7b:f8:09:01:c5:b1:56:6f:0c:cd:4f:d0:
38:ba:b7:ce:d5:7d:59:0d:23:7c:ca:b1:96:b3:a4:26:ad:cb:
88:ab:bf:4e:ab:24:15:9d:42:29:b6:8b:59:7b:fa:46:0c:5b:
81:03:85:c0:6b:2e:b1:27:45:ca:11:c7:e3:6e:91:5c:e7:00:
08:a5:82:15:8b:80:55:67:1f:ed:10:c6:46:85:40:7e:76:b1:
c2:3b:38:ad:c1:6c:3b:7e:92:24:ab:e4:65:1d:12:11:5d:af:
05:f4:3a:98:66:29:c6:ac:8b:96:39:d3:ae:cd:8d:fd:52:76:
31:d0:ee:b9:47:6b:c1:76:c5:a8:c7:96:85:ea:c1:f2:68:8f:
ee:20:0b:cb:b1:6e:fd:33:d3:60:d4:71:45:e9:e5:fe:ad:71:
43:a1:44:25:46:6d:bc:d6:9e:26:c5:da:75:30:0c:67:66:09:
29:5e:a0:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:59:53 2026 by rpki-client