Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
File: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft (raw, json)
Hash identifier: 9AVH72cAMnkafq4AKyIfcWPKbrmdjgIOFICsZTf58Pg=
Subject key identifier: F5:2F:55:FC:1A:66:B9:B3:C1:43:16:5D:5D:18:F2:2C:F6:33:B4:D2
Authority key identifier: 96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
Certificate issuer: /CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Certificate serial: 019EB80F749509B17AABF1F9943C3B09DC1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
Manifest number: 108D
Signing time: Thu 11 Jun 2026 19:01:20 +0000
Manifest this update: Thu 11 Jun 2026 19:01:20 +0000
Manifest next update: Fri 12 Jun 2026 19:01:20 +0000
Files and hashes: 1: Qb_RZp-mahSy8KfrU77wNxpfg_E.roa (hash: u1xd1aPYepFZHPAZOvL3xwts9hFrIKK/yaiHVAix9zo=)
2: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl (hash: 6h04qYAB+TXxVNUHOlbmW6SpwY2OIJc1F/1fvqh7bwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 19:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:0f:74:95:09:b1:7a:ab:f1:f9:94:3c:3b:09:dc:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Validity
Not Before: Jun 11 19:01:20 2026 GMT
Not After : Jun 12 19:01:20 2026 GMT
Subject: CN=f52f55fc1a66b9b3c143165d5d18f22cf633b4d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0b:8a:23:f3:31:b0:ee:92:ed:34:3a:ec:0f:
48:dd:5e:be:de:ae:a5:4d:05:ac:43:a8:d1:63:77:
1f:43:1e:42:1b:d2:c7:98:d0:ec:0d:03:13:5b:3a:
fa:f0:2a:8c:78:78:f5:5b:1a:14:be:2b:97:a1:bd:
17:dd:45:77:3e:da:63:84:7f:06:a4:4a:78:c2:15:
fa:b8:89:98:1f:d7:dd:2e:1f:1f:45:e4:28:b5:24:
2c:53:27:b3:b4:95:42:f9:54:f3:a4:5d:26:0e:ef:
a9:00:74:57:a0:22:86:9d:e3:20:64:0d:98:83:8a:
e4:50:9d:62:31:83:c0:08:bc:54:c4:10:6c:4c:16:
7c:c2:36:29:9c:73:3f:76:d0:02:ef:fb:71:4a:a5:
81:79:c2:a1:c9:8c:e9:35:91:b0:d8:48:8b:f6:31:
61:2f:49:6b:b5:5e:09:ce:40:f9:14:ff:f5:63:b7:
b4:b7:45:0a:9c:21:f6:98:4b:8a:54:96:81:71:01:
6c:d5:68:cb:5e:5e:e8:08:d4:67:9b:ab:80:2b:1c:
14:50:36:40:3f:9d:96:45:eb:00:2b:99:97:3c:81:
0c:3f:36:9e:9f:c9:87:4d:af:fb:33:99:5a:83:30:
7f:bd:52:4a:d6:d5:55:d9:27:34:8c:e0:31:99:cf:
1c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2F:55:FC:1A:66:B9:B3:C1:43:16:5D:5D:18:F2:2C:F6:33:B4:D2
X509v3 Authority Key Identifier:
keyid:96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:79:8b:b4:68:c5:8d:68:59:66:c2:c6:1c:27:ef:a5:5a:a1:
b8:66:53:f6:25:e9:10:0f:50:6e:f6:b1:81:90:57:10:4f:08:
f0:e4:73:be:ad:6e:11:4d:d3:d5:ba:09:75:e1:29:c4:6b:f5:
13:cb:87:02:f8:ae:27:ed:50:a0:7b:92:6d:e0:f4:95:10:7e:
d5:f4:c8:69:88:60:b2:f4:da:d9:da:63:17:c7:2b:73:bc:89:
a0:b1:a8:19:d8:f2:b6:75:63:fb:80:e5:8a:01:60:80:7f:1e:
54:41:f2:c0:28:84:9e:0a:cf:65:8b:97:57:9c:bb:1c:87:84:
fa:c9:01:86:a4:a9:1c:5e:05:83:2c:31:56:d0:fa:66:82:52:
66:83:cf:8f:e0:ee:25:13:f2:45:a2:35:b2:57:bc:3b:4c:f6:
14:47:fc:6e:90:d5:46:81:b3:71:dd:59:11:0e:66:47:09:ae:
ce:e3:bf:84:6d:64:21:57:2f:25:79:c6:70:9e:a2:f2:bd:42:
ef:04:91:cd:03:ce:46:cb:fa:15:44:81:89:07:a3:0c:37:51:
7f:2e:75:37:aa:cf:0f:b9:61:9e:41:6f:2f:f6:bd:32:60:9e:
c4:a6:01:36:46:4f:42:21:39:4f:54:4c:be:26:d2:f0:94:ea:
54:73:aa:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:56:00 2026 by rpki-client