Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: fivokzCcuwuLZ1hWtAeYTwcRsXdfAAmwUK8g8TifDGM=
Subject key identifier: 61:56:6E:27:AF:2D:CA:42:8A:16:80:41:0B:F2:F7:2D:B7:7F:67:00
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 019EB76A1863442D8EBBB7B5BCAA2D912EB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 1956
Signing time: Thu 11 Jun 2026 16:00:44 +0000
Manifest this update: Thu 11 Jun 2026 16:00:44 +0000
Manifest next update: Fri 12 Jun 2026 16:00:44 +0000
Files and hashes: 1: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: vKAdEZnKdizkHVog7BkmybAvWEjCuDyjn+2XpQLHJLE=)
2: tz4P9nF3Ei3wUS8VYP6Gfwtlguc.roa (hash: WI+TvaMT1Y9cC04iUl0U1l9xEwrwqSAkBoEDvp55Sj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 16:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:6a:18:63:44:2d:8e:bb:b7:b5:bc:aa:2d:91:2e:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Jun 11 16:00:44 2026 GMT
Not After : Jun 12 16:00:44 2026 GMT
Subject: CN=61566e27af2dca428a1680410bf2f72db77f6700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5a:8d:f0:de:2e:9f:7f:4f:58:be:d9:44:f1:
0f:d9:64:f7:cd:41:b3:96:ca:21:30:e5:ca:11:12:
19:3a:e9:ad:67:87:66:91:47:d7:92:03:b0:48:e9:
06:97:9a:bb:dc:41:3f:cc:4e:69:e3:9a:c5:2f:05:
6e:6c:cf:87:11:0d:99:b1:18:2f:72:e6:58:d1:1a:
81:2e:48:ee:3c:8b:54:0f:16:80:f0:72:e1:78:ff:
8a:e0:28:3e:8e:0c:96:c5:72:74:ce:ee:d7:5a:a4:
8b:be:79:60:99:90:5a:14:28:a7:bb:a7:c6:c1:9c:
a3:69:26:c0:f9:06:26:a8:2c:4b:04:8d:aa:04:8d:
a4:05:19:03:55:78:ac:04:71:21:77:cb:b1:82:ff:
82:d9:59:b3:a9:52:cb:70:82:96:74:4b:30:9c:ce:
d9:45:8a:be:70:67:b1:81:e2:fd:6b:b2:9f:69:c2:
24:ce:49:01:7e:cc:9b:aa:cb:62:60:e8:bb:2e:52:
e2:b4:f4:2c:72:f9:d2:ba:a6:18:40:45:12:dd:3b:
84:a5:52:00:27:80:f7:a6:26:2d:3a:da:8f:66:6c:
d7:95:90:86:ea:2a:b2:dd:7c:a3:4a:80:da:9c:d6:
63:5c:69:42:46:de:8f:cf:4f:62:a5:30:6e:ad:6e:
f8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:56:6E:27:AF:2D:CA:42:8A:16:80:41:0B:F2:F7:2D:B7:7F:67:00
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:17:7f:2e:46:43:5d:67:07:43:a6:d7:11:7f:e4:8c:03:78:
87:e7:14:3b:38:3a:af:20:3b:15:f0:2f:7f:82:83:cc:73:bb:
04:e6:ca:1e:18:e0:96:7b:4b:8a:4a:e6:83:10:54:54:ca:65:
72:69:c6:18:a9:da:cd:77:e6:6a:cf:ee:e3:3c:95:3a:b0:a4:
1e:ab:55:79:19:dc:7a:bb:02:29:f1:49:f1:23:e0:b8:56:53:
e1:fe:e0:d7:06:1f:45:a2:b2:71:ca:17:95:47:bc:e8:31:41:
ff:ea:d7:e7:b6:55:9c:de:0d:a5:be:9a:9b:e4:c5:80:00:ea:
80:1c:15:53:d7:11:1c:3d:81:46:06:bb:25:e4:fe:1e:6e:b0:
63:da:cc:bd:fa:2b:af:90:3a:e8:d0:5c:04:74:b3:d1:5b:7a:
38:60:02:1e:79:19:c9:c5:f3:e8:ab:d3:94:2b:37:cb:c3:35:
e6:e4:ae:c1:aa:d5:7e:10:30:f1:a8:3a:2a:c2:ce:b9:1e:b6:
1d:3c:fe:50:3f:69:c2:91:32:f2:95:c9:75:2f:a8:ee:a0:f6:
93:cc:84:5e:29:dd:ec:e6:8d:b6:1d:b2:7f:fa:e6:a3:6f:f5:
d8:58:6e:16:d8:e8:db:21:dc:f2:ef:29:b6:7f:c7:12:fc:03:
e9:c8:4c:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:47:52 2026 by rpki-client