Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
File: lJgy8CXL76HqG8oMOQtjwXaUjNI.mft (raw, json)
Hash identifier: pA/gSvtS0XS1OmNM7xEt9mI9kEF+T8KTV2kFgw4l194=
Subject key identifier: B2:E6:7E:44:ED:3A:FA:8D:1D:B6:DD:56:73:2D:A4:F0:26:7B:FF:B3
Authority key identifier: 94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
Certificate issuer: /CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Certificate serial: 019E28EFF763EB50BAE6697E344E7804520C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
Manifest number: 0786
Signing time: Fri 15 May 2026 00:01:15 +0000
Manifest this update: Fri 15 May 2026 00:01:15 +0000
Manifest next update: Sat 16 May 2026 00:01:15 +0000
Files and hashes: 1: cb-mqGrD9TdvPSnuiFKPTNSp4k0.roa (hash: 3D9GKzTfBklRbCdmXiO06QWtVtwBT318N1GZYxQn0ZA=)
2: lJgy8CXL76HqG8oMOQtjwXaUjNI.crl (hash: rGuBBeCh6ev3wZ4NqRxhkV1CTv1IwBL9Jhxfd5kFgyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 00:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:ef:f7:63:eb:50:ba:e6:69:7e:34:4e:78:04:52:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=949832f025cbefa1ea1bca0c390b63c176948cd2
Validity
Not Before: May 15 00:01:15 2026 GMT
Not After : May 16 00:01:15 2026 GMT
Subject: CN=b2e67e44ed3afa8d1db6dd56732da4f0267bffb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:14:46:60:51:1f:16:f5:84:43:7b:23:6b:6e:
27:78:fc:6f:c7:14:01:ef:79:10:a2:24:c3:f9:c8:
7d:72:91:e0:78:ad:91:76:2c:0d:f3:9e:34:a7:7b:
80:8e:98:d1:86:aa:30:f5:1b:b6:c1:78:3e:b8:c0:
03:47:9f:59:3b:e3:2e:c0:26:e0:12:2a:65:0a:00:
30:a5:51:ab:5c:d2:25:f7:0d:71:b5:3c:01:1c:0e:
f7:40:cc:77:a7:0e:fb:e8:d2:b8:04:da:d6:87:b5:
f3:34:8b:b6:30:95:b3:ba:1a:66:39:c1:8b:0b:9f:
7e:66:5e:6f:6f:1c:28:99:9c:8d:51:9d:80:44:0b:
0b:16:57:45:24:db:09:92:46:1a:83:e9:ba:14:ba:
23:be:47:a3:bf:24:47:66:87:8b:de:0f:58:19:3f:
b2:3f:6e:9c:31:36:7b:8b:bd:47:bc:80:6a:ef:9d:
83:ce:01:0a:07:94:d4:4b:9c:0e:b3:30:75:d5:97:
aa:06:5a:e9:9e:2c:38:7b:57:9b:7d:ce:f8:7a:1e:
dd:1b:88:dc:c7:52:63:c9:ca:08:0c:ff:33:ff:02:
9b:9c:9a:22:ff:49:45:df:7c:82:e6:46:26:eb:cc:
b0:ea:d9:4a:1d:c6:eb:09:1e:fe:a1:25:54:a5:c8:
5c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E6:7E:44:ED:3A:FA:8D:1D:B6:DD:56:73:2D:A4:F0:26:7B:FF:B3
X509v3 Authority Key Identifier:
keyid:94:98:32:F0:25:CB:EF:A1:EA:1B:CA:0C:39:0B:63:C1:76:94:8C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJgy8CXL76HqG8oMOQtjwXaUjNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5c056-03b1-46a9-b214-78fc3bc28ba1/1/lJgy8CXL76HqG8oMOQtjwXaUjNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:5e:91:a2:a0:00:f2:ec:c7:c9:d4:ed:ae:06:ec:14:5e:69:
96:f7:3f:2a:95:3d:44:24:72:6c:7d:8a:80:24:52:b4:d2:fd:
1b:b3:32:ed:14:6c:0b:d4:cb:52:7b:4c:12:11:46:26:7e:3c:
2b:b6:9d:ab:55:49:55:21:cc:31:59:a5:3f:f0:e2:0f:0c:f4:
bd:f8:67:e4:ca:2f:b5:86:a6:5f:ce:94:d6:62:37:b7:68:09:
d0:61:8f:aa:08:2d:fe:c9:08:01:2d:f1:a7:29:00:e1:71:89:
2f:1d:b3:6f:7a:8e:ad:15:ee:67:a5:92:1e:17:62:74:92:2b:
21:eb:31:47:8f:d9:01:c6:48:66:44:2b:2e:5a:5c:f1:db:aa:
71:e6:8f:2a:1b:ca:d3:8c:6a:2e:a3:c1:d0:c4:f5:0b:fb:2b:
27:19:4b:0b:5d:ea:5f:7c:3c:c9:a2:2c:ff:96:1b:ac:39:3d:
40:a3:ef:e1:fe:ca:af:55:92:bb:27:e8:ee:c5:5b:48:98:4a:
15:81:f3:c7:2c:24:d4:33:d2:c2:39:e4:85:9c:0a:8b:e6:71:
70:ad:87:11:4e:b9:b2:e3:9c:0c:83:18:f5:38:99:f7:d1:24:
97:7a:42:50:87:a2:e9:93:53:1e:ee:7a:99:6a:9c:e5:8e:eb:
ca:a1:14:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 07:04:05 2026 by rpki-client