Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
File: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft (raw, json)
Hash identifier: LiftUOS9/LrLDaMPoUDQr10Er/vH8qyz6lFEV5LiHgA=
Subject key identifier: A8:72:E4:90:4D:3D:09:A0:4F:07:3C:CE:68:C6:9C:3C:BC:45:0E:8B
Authority key identifier: 96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
Certificate issuer: /CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Certificate serial: 019CE0D93E0A29B1F021AAA026A15DF6748D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
Manifest number: 0F99
Signing time: Thu 12 Mar 2026 07:00:59 +0000
Manifest this update: Thu 12 Mar 2026 07:00:59 +0000
Manifest next update: Fri 13 Mar 2026 07:00:59 +0000
Files and hashes: 1: Qb_RZp-mahSy8KfrU77wNxpfg_E.roa (hash: u1xd1aPYepFZHPAZOvL3xwts9hFrIKK/yaiHVAix9zo=)
2: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl (hash: iwW32dpFoRcwvN/y5YThfBD7vtboyivUwsx7JfGzOIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 07:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e0:d9:3e:0a:29:b1:f0:21:aa:a0:26:a1:5d:f6:74:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Validity
Not Before: Mar 12 07:00:59 2026 GMT
Not After : Mar 13 07:00:59 2026 GMT
Subject: CN=a872e4904d3d09a04f073cce68c69c3cbc450e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1c:fa:4c:cb:e3:33:5b:ad:58:23:a4:ec:a8:
7c:4e:3e:f1:6b:eb:e5:aa:ec:f7:a2:e3:e8:0a:cc:
8d:99:ac:1d:8d:97:c7:a6:a0:ba:06:7d:47:6a:fa:
1b:24:8d:ba:72:a4:c2:8e:29:dc:15:1f:9f:f3:22:
c4:45:74:f4:48:77:fe:1a:f1:c5:83:45:fb:57:61:
3d:15:85:db:0c:b3:d1:a8:1f:bb:0d:7c:d9:37:fa:
a0:b3:f6:0e:fa:7d:7a:bc:94:58:db:41:ac:7b:7e:
2e:ad:3f:16:91:a1:31:78:fd:b7:a0:97:49:63:5a:
68:10:89:d6:08:36:22:95:b9:a8:90:33:17:25:08:
18:52:0d:02:52:8c:e5:58:23:6b:18:b5:68:9f:e0:
c4:a6:00:f3:02:a2:d5:6f:1d:36:a7:80:a5:66:15:
c4:f1:89:22:c2:2b:96:9b:91:b5:3d:9b:6c:62:d0:
a0:d4:09:85:6c:2f:4f:57:53:68:af:23:4e:32:0e:
dd:31:85:85:56:e2:4f:5e:06:ac:79:33:7c:e9:54:
80:b5:42:c1:bb:d6:b0:77:ae:5f:e5:98:c1:69:58:
17:b9:e5:88:e3:eb:3a:3a:fd:07:51:d1:1b:c5:91:
58:7e:80:a8:db:c9:99:a6:a3:13:06:4b:dc:a5:a0:
b5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:72:E4:90:4D:3D:09:A0:4F:07:3C:CE:68:C6:9C:3C:BC:45:0E:8B
X509v3 Authority Key Identifier:
keyid:96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:4f:d2:05:2d:8a:2d:d5:96:c7:4a:15:cd:4e:02:50:6b:c4:
18:6b:d8:e5:c8:79:30:7c:aa:0b:f0:ca:48:5d:3a:71:81:7d:
c3:05:f6:44:64:16:63:64:99:b4:01:05:df:32:0e:bd:fe:7b:
e2:d9:62:cb:13:79:db:86:1e:3b:7a:6f:21:05:04:62:03:59:
b4:bf:8b:5b:26:94:29:5f:64:a0:c0:1a:bb:a0:b4:10:86:fd:
71:ac:d6:eb:f2:1d:f8:bb:d9:f6:1b:2b:51:cf:fc:c6:da:1c:
e6:6c:44:39:94:6c:8b:ad:36:dc:de:cb:06:6f:6f:f6:0c:e5:
c7:85:75:a2:c1:89:04:5d:22:47:7f:05:fd:85:e9:0c:e0:05:
e2:af:5a:6c:bc:cc:ea:ca:2c:89:91:a5:89:f8:a6:38:02:74:
26:c2:a6:b9:76:4a:52:44:fb:60:d2:d5:e4:b6:7f:35:00:ef:
40:b7:db:3e:24:22:3e:83:83:3a:ed:22:4d:3a:f4:72:d8:7a:
a3:05:a7:9a:ac:43:0c:9a:f1:e1:6c:a8:f3:42:24:5b:4e:79:
28:c4:fa:80:f6:54:4a:34:15:48:e9:f4:f8:a8:56:cf:86:fb:
55:c3:7c:f7:38:c5:ce:6d:eb:38:88:7f:c9:b8:56:0a:0d:60:
73:ad:f7:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzg2T4KKbHwIaqgJqFd9nSNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2Yjg3ZTVmZDFhYWRjMWJiZWEzNzJiNDI2OWVlYmQzOTNj
NWNkNjcwHhcNMjYwMzEyMDcwMDU5WhcNMjYwMzEzMDcwMDU5WjAzMTEwLwYDVQQD
EyhhODcyZTQ5MDRkM2QwOWEwNGYwNzNjY2U2OGM2OWMzY2JjNDUwZThiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhz6TMvjM1utWCOk7Kh8Tj7xa+vl
quz3ouPoCsyNmawdjZfHpqC6Bn1HavobJI26cqTCjincFR+f8yLERXT0SHf+GvHF
g0X7V2E9FYXbDLPRqB+7DXzZN/qgs/YO+n16vJRY20Gse34urT8WkaExeP23oJdJ
Y1poEInWCDYilbmokDMXJQgYUg0CUozlWCNrGLVon+DEpgDzAqLVbx02p4ClZhXE
8YkiwiuWm5G1PZtsYtCg1AmFbC9PV1NoryNOMg7dMYWFVuJPXgaseTN86VSAtULB
u9awd65f5ZjBaVgXueWI4+s6Ov0HUdEbxZFYfoCo28mZpqMTBkvcpaC10QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKhy5JBNPQmgTwc8zmjGnDy8RQ6LMB8GA1UdIwQY
MBaAFJa4fl/RqtwbvqNytCae69OTxc1nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHJoLVg5R3EzQnUtbzNLMEpwN3IwNVBGeldjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi82YTg4YWMtZWZiNC00NWU0LTkxOTkt
MmFiZGIyMTk0MWJjLzEvbHJoLVg5R3EzQnUtbzNLMEpwN3IwNVBGeldjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi82YTg4YWMtZWZiNC00NWU0LTkxOTktMmFiZGIyMTk0MWJj
LzEvbHJoLVg5R3EzQnUtbzNLMEpwN3IwNVBGeldjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYE/SBS2K
LdWWx0oVzU4CUGvEGGvY5ch5MHyqC/DKSF06cYF9wwX2RGQWY2SZtAEF3zIOvf57
4tliyxN524YeO3pvIQUEYgNZtL+LWyaUKV9koMAau6C0EIb9cazW6/Id+LvZ9hsr
Uc/8xtoc5mxEOZRsi6023N7LBm9v9gzlx4V1osGJBF0iR38F/YXpDOAF4q9abLzM
6sosiZGlifimOAJ0JsKmuXZKUkT7YNLV5LZ/NQDvQLfbPiQiPoODOu0iTTr0cth6
owWnmqxDDJrx4Wyo80IkW055KMT6gPZUSjQVSOn0+KhWz4b7VcN89zjFzm3rOIh/
ybhWCg1gc633vA==
-----END CERTIFICATE-----
Generated at Thu Mar 12 17:26:50 2026 by rpki-client