Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft
File: lZI0IMz-4DjNyutDkjEKBZivej4.mft (raw, json)
Hash identifier: /lBzmFDplbwJ4rZtAU0DqxIhq3M8zUIpNvCPmc3JMeM=
Subject key identifier: 60:81:4E:8C:BB:29:92:6F:D7:56:47:A0:84:47:F5:C2:77:DB:35:BB
Authority key identifier: 95:92:34:20:CC:FE:E0:38:CD:CA:EB:43:92:31:0A:05:98:AF:7A:3E
Certificate issuer: /CN=95923420ccfee038cdcaeb4392310a0598af7a3e
Certificate serial: 019E9C60B43E3190B08EA01DA604B05E3980
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft
Manifest number: 054F
Signing time: Sat 06 Jun 2026 10:00:43 +0000
Manifest this update: Sat 06 Jun 2026 10:00:43 +0000
Manifest next update: Sun 07 Jun 2026 10:00:43 +0000
Files and hashes: 1: IM21zWEfSOh921Z1zwkT3vvGFfs.roa (hash: W640/PCpAKPhrBYklv0d8kY3i3xSr0Wn6L53wsJDrnQ=)
2: b9vcmhhWmTdDD16HAHP6D8RbDkA.roa (hash: FBfH9P35YtWY9xE6pYzf6Mz1MG4bSL4q1phGJQRtJTw=)
3: lZI0IMz-4DjNyutDkjEKBZivej4.crl (hash: ipfE6gRyM91bMxOjVHx3KqiFrdeOmvJfeX7wZNlrgBk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 10:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:60:b4:3e:31:90:b0:8e:a0:1d:a6:04:b0:5e:39:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95923420ccfee038cdcaeb4392310a0598af7a3e
Validity
Not Before: Jun 6 10:00:43 2026 GMT
Not After : Jun 7 10:00:43 2026 GMT
Subject: CN=60814e8cbb29926fd75647a08447f5c277db35bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:dc:58:df:19:67:13:44:83:f1:2a:a6:81:a6:
f1:96:b3:1c:5a:10:21:de:be:e7:53:bf:33:ad:d1:
69:98:5a:54:6f:af:f3:50:c2:f0:fc:e9:1c:00:49:
07:bc:ec:7c:12:96:5a:a7:36:72:8b:a9:1c:2e:61:
d2:31:f0:0c:c6:4b:64:7e:13:da:31:14:8f:38:50:
af:37:14:ce:0c:20:47:81:24:18:6f:fb:02:c9:00:
8d:88:d2:45:68:de:38:28:81:2c:13:82:e0:0e:a0:
87:94:b7:5e:b4:72:9f:5e:29:79:d3:3c:19:4c:39:
1f:e4:11:d1:6f:40:7d:d5:19:85:5a:ac:f9:4c:22:
d6:92:83:58:ea:0e:f6:ae:6b:bf:2e:7d:8b:2a:7f:
a6:27:b1:41:5f:0b:6b:ad:10:86:6b:f5:e6:e9:95:
43:c3:e2:19:19:86:a0:16:26:52:2a:49:16:96:0c:
46:73:92:1d:2d:07:86:d3:ea:25:8c:67:85:75:1e:
a8:4d:a8:98:3a:6b:f5:de:39:e6:f1:33:bc:4b:da:
65:d8:e1:c5:e6:b1:37:7f:51:c7:88:81:54:20:33:
20:73:73:5d:48:f9:d8:5d:3e:8d:77:85:50:61:55:
f0:92:d2:1d:0d:4b:78:14:6c:7c:71:ca:1a:54:bc:
6c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:81:4E:8C:BB:29:92:6F:D7:56:47:A0:84:47:F5:C2:77:DB:35:BB
X509v3 Authority Key Identifier:
keyid:95:92:34:20:CC:FE:E0:38:CD:CA:EB:43:92:31:0A:05:98:AF:7A:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lZI0IMz-4DjNyutDkjEKBZivej4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/b80405-d19b-4e0f-ac37-5200fc16ff8c/1/lZI0IMz-4DjNyutDkjEKBZivej4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:5c:a9:20:50:5a:30:6b:a6:b6:61:aa:48:9d:b7:fd:f7:40:
49:65:a1:09:15:f6:fe:3b:bb:f8:55:7d:36:e5:e5:0c:f6:23:
fa:ed:3c:48:4f:82:f8:db:86:4d:94:82:a2:8e:76:d8:01:e0:
73:5a:e9:67:e6:64:57:0a:d6:03:a4:a6:cd:3b:4c:47:95:0f:
8e:ba:34:f2:dd:b0:3d:c3:36:0d:56:87:49:16:0a:e3:ba:f2:
a8:54:a4:9e:1c:64:c8:9d:0f:34:eb:67:11:10:4d:08:c2:ce:
cd:4e:b5:e4:89:e8:ff:5d:7a:0c:0e:92:e5:95:c9:bf:bf:06:
00:21:54:80:fb:b0:41:84:e7:e3:cc:6c:ce:79:4a:0b:c2:44:
8b:bc:93:75:1f:c9:00:dc:28:ee:be:6c:f7:44:e4:0c:50:4b:
ba:98:94:bf:66:44:55:9e:97:be:cd:d1:c2:21:13:50:70:29:
65:43:b8:49:8f:69:61:14:92:30:54:d5:8c:6a:55:17:63:99:
7f:9f:a8:e1:32:7a:32:93:e8:50:d0:ac:76:85:7b:f2:61:2a:
99:a5:73:58:ad:c4:09:9a:a1:dc:8b:4a:c5:18:97:8b:de:16:
7e:b7:65:2a:ba:87:1f:f1:54:98:00:eb:e8:01:6c:cb:6b:c9:
a3:eb:23:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6cYLQ+MZCwjqAdpgSwXjmAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1OTIzNDIwY2NmZWUwMzhjZGNhZWI0MzkyMzEwYTA1OThh
ZjdhM2UwHhcNMjYwNjA2MTAwMDQzWhcNMjYwNjA3MTAwMDQzWjAzMTEwLwYDVQQD
Eyg2MDgxNGU4Y2JiMjk5MjZmZDc1NjQ3YTA4NDQ3ZjVjMjc3ZGIzNWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9xY3xlnE0SD8SqmgabxlrMcWhAh
3r7nU78zrdFpmFpUb6/zUMLw/OkcAEkHvOx8EpZapzZyi6kcLmHSMfAMxktkfhPa
MRSPOFCvNxTODCBHgSQYb/sCyQCNiNJFaN44KIEsE4LgDqCHlLdetHKfXil50zwZ
TDkf5BHRb0B91RmFWqz5TCLWkoNY6g72rmu/Ln2LKn+mJ7FBXwtrrRCGa/Xm6ZVD
w+IZGYagFiZSKkkWlgxGc5IdLQeG0+oljGeFdR6oTaiYOmv13jnm8TO8S9pl2OHF
5rE3f1HHiIFUIDMgc3NdSPnYXT6Nd4VQYVXwktIdDUt4FGx8ccoaVLxsfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGCBToy7KZJv11ZHoIRH9cJ32zW7MB8GA1UdIwQY
MBaAFJWSNCDM/uA4zcrrQ5IxCgWYr3o+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFpJMElNei00RGpOeXV0RGtqRUtCWml2ZWo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iODA0MDUtZDE5Yi00ZTBmLWFjMzct
NTIwMGZjMTZmZjhjLzEvbFpJMElNei00RGpOeXV0RGtqRUtCWml2ZWo0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9iODA0MDUtZDE5Yi00ZTBmLWFjMzctNTIwMGZjMTZmZjhj
LzEvbFpJMElNei00RGpOeXV0RGtqRUtCWml2ZWo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW1ypIFBa
MGumtmGqSJ23/fdASWWhCRX2/ju7+FV9NuXlDPYj+u08SE+C+NuGTZSCoo522AHg
c1rpZ+ZkVwrWA6SmzTtMR5UPjro08t2wPcM2DVaHSRYK47ryqFSknhxkyJ0PNOtn
ERBNCMLOzU615Ino/116DA6S5ZXJv78GACFUgPuwQYTn48xsznlKC8JEi7yTdR/J
ANwo7r5s90TkDFBLupiUv2ZEVZ6Xvs3RwiETUHApZUO4SY9pYRSSMFTVjGpVF2OZ
f5+o4TJ6MpPoUNCsdoV78mEqmaVzWK3ECZqh3ItKxRiXi94WfrdlKrqHH/FUmADr
6AFsy2vJo+sjCQ==
-----END CERTIFICATE-----
Generated at Sat Jun 6 14:42:35 2026 by rpki-client