Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
File: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft (raw, json)
Hash identifier: kyjaucRJhnPZnKhKbX0Yyphk7zoJ7SULPrufrJU4WpQ=
Subject key identifier: E7:0E:33:AA:69:5B:60:74:2A:50:E0:0F:B2:6A:5E:E5:CC:51:92:A8
Authority key identifier: 96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
Certificate issuer: /CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Certificate serial: 019DCC743D79D32131379D4B44A387AB2224
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
Manifest number: 1013
Signing time: Mon 27 Apr 2026 01:01:03 +0000
Manifest this update: Mon 27 Apr 2026 01:01:03 +0000
Manifest next update: Tue 28 Apr 2026 01:01:03 +0000
Files and hashes: 1: Qb_RZp-mahSy8KfrU77wNxpfg_E.roa (hash: u1xd1aPYepFZHPAZOvL3xwts9hFrIKK/yaiHVAix9zo=)
2: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl (hash: A+h0pDSmbg3mOVTdgfK/4+qLxBFpJgZNLfj1+ZKToyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 01:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:74:3d:79:d3:21:31:37:9d:4b:44:a3:87:ab:22:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Validity
Not Before: Apr 27 01:01:03 2026 GMT
Not After : Apr 28 01:01:03 2026 GMT
Subject: CN=e70e33aa695b60742a50e00fb26a5ee5cc5192a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:32:a9:49:e7:3a:61:27:84:95:2e:73:53:be:
1e:bb:dc:42:33:46:07:1a:9f:0f:be:fc:f9:a0:74:
67:db:54:53:82:b1:17:8c:fb:5e:49:15:f3:47:72:
da:5f:de:64:1e:07:db:85:df:46:2c:33:64:17:43:
7b:3f:9b:d6:f4:df:59:5e:fe:bf:d0:18:9a:c6:42:
b2:df:2a:19:0c:74:dd:3b:58:dc:ba:6a:7d:c8:0d:
3f:0e:f4:0c:c9:91:78:da:eb:3a:4a:a2:33:37:f0:
85:21:8b:6f:27:b7:5d:e1:8f:f7:74:c8:c9:7c:0b:
82:40:0c:49:a8:e0:50:ca:37:ea:e9:45:40:0d:ce:
7b:a8:3b:0e:39:ec:c1:d8:46:80:e9:b5:b7:8c:e7:
f2:ea:0f:ca:61:e9:de:23:37:18:2c:2f:9b:16:2f:
bc:c1:03:05:65:f0:2a:c5:99:f5:35:4a:98:ee:a1:
eb:45:13:fb:2c:8d:1d:8e:b6:db:fe:8b:e6:a7:d6:
aa:3b:1f:0b:05:56:1a:1b:79:10:21:79:a1:87:46:
4d:1d:23:48:60:43:74:fa:6b:5d:1b:40:27:93:ca:
71:d5:9a:a9:c7:b5:84:ed:16:a5:a8:28:91:90:87:
28:61:3a:bf:19:48:0e:64:8d:5a:97:ab:80:c1:cf:
72:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:0E:33:AA:69:5B:60:74:2A:50:E0:0F:B2:6A:5E:E5:CC:51:92:A8
X509v3 Authority Key Identifier:
keyid:96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:26:70:b2:05:2d:d5:db:4e:3c:6b:21:be:9f:33:25:9d:d8:
5a:92:85:9e:5f:a0:41:ca:b3:1f:23:61:5a:c8:84:20:1a:3e:
0a:47:24:62:94:81:2c:da:8d:1a:d7:1a:cf:dc:05:3e:3e:38:
82:0b:0c:6b:d9:52:2c:f8:1d:16:d2:74:fb:38:19:8d:b8:32:
30:36:83:87:06:8c:d1:64:1a:22:2e:db:87:36:b9:8b:ae:88:
0e:6c:6c:bb:34:2c:bc:89:1e:e8:e4:81:51:4b:91:56:c3:c3:
1d:64:6b:4a:c1:ae:b3:18:53:8a:b6:67:f0:53:86:9c:87:f6:
41:47:97:d7:0c:65:2b:62:44:bf:9f:db:d4:70:a5:c5:26:07:
72:9f:00:03:b2:c6:a7:1e:8c:93:1e:54:84:90:e7:34:41:fe:
96:2d:36:d3:ef:59:f5:21:62:a0:f2:6d:c8:85:c2:da:51:76:
bf:bc:ac:6c:7b:07:a2:07:1f:ab:93:17:6f:ae:5d:cf:9b:04:
0e:94:65:d5:4c:34:61:18:14:06:e1:60:6a:05:a4:6c:a2:be:
82:c3:f4:ee:40:1f:34:ba:74:9c:25:2e:60:75:d9:ed:56:87:
df:71:88:50:dd:99:0e:c5:76:f3:16:69:a6:62:22:aa:55:6c:
53:1b:cb:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 10:45:36 2026 by rpki-client