Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
File: Lg1AUXqHO33CrrKNDtai-ZOj100.mft (raw, json)
Hash identifier: NczRBYExSQteLMDdON8uNnOG1V3ru2ijQGmX5IL2720=
Subject key identifier: A0:2C:7A:A3:00:99:1A:D4:BD:ED:5C:0D:2B:D0:53:99:06:54:1D:C2
Authority key identifier: 2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D
Certificate issuer: /CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d
Certificate serial: 019EB958240B690E309E9480A4F17A9C1732
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
Manifest number: 163D
Signing time: Fri 12 Jun 2026 01:00:21 +0000
Manifest this update: Fri 12 Jun 2026 01:00:21 +0000
Manifest next update: Sat 13 Jun 2026 01:00:21 +0000
Files and hashes: 1: Lg1AUXqHO33CrrKNDtai-ZOj100.crl (hash: 2iOw1d1qOscV2kmzD109NP5vtVw7bvcmxgTQNpMkDBo=)
2: mgEpeI12MEc1I9Yl4CGTBmBk2bE.roa (hash: +I2yVa8SpbahJZG3cLdGFLaq+xiLLvaqsYXX2ZnSZ5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 01:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:58:24:0b:69:0e:30:9e:94:80:a4:f1:7a:9c:17:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e0d40517a873b7dc2aeb28d0ed6a2f993a3d74d
Validity
Not Before: Jun 12 01:00:21 2026 GMT
Not After : Jun 13 01:00:21 2026 GMT
Subject: CN=a02c7aa300991ad4bded5c0d2bd0539906541dc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c9:27:d9:89:68:b4:e6:60:80:e3:14:97:11:
8b:58:7a:90:5b:81:eb:45:bf:cd:7f:16:65:6d:a6:
49:b8:72:78:94:0e:0c:6e:5b:84:72:c9:17:eb:e3:
cb:00:47:62:18:d1:7d:64:b3:ad:89:2a:4c:20:dc:
ab:41:00:74:f2:d3:4e:92:ea:5c:74:a0:8d:73:c8:
37:ea:36:67:43:43:5c:4f:36:66:01:47:9e:d8:f5:
17:70:de:48:be:18:12:8d:0e:aa:d6:8f:85:e6:fe:
85:da:d0:00:3d:2b:55:2e:58:5f:cd:d8:dd:8a:bf:
0f:55:c4:d0:fc:70:c2:09:73:df:50:15:66:b1:6f:
17:a5:a6:fa:f0:ad:59:e0:eb:ae:50:c2:44:cc:cb:
63:92:7d:39:a8:b7:97:cf:1f:ca:e0:be:2f:6b:7c:
d3:0a:84:89:04:ef:53:83:ed:63:10:a7:cc:93:2a:
a2:91:2f:e5:97:25:27:84:75:cc:f4:ed:6a:00:39:
c4:2c:18:a5:35:a7:de:4f:82:f2:2b:1b:68:67:36:
5f:da:a0:32:bc:28:a5:c9:f4:3d:2b:d4:e0:f7:a2:
d5:c2:cc:52:99:b1:8f:22:52:3d:85:15:0c:88:49:
02:74:fe:94:19:e9:49:24:18:e5:6e:d2:bf:52:93:
02:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:2C:7A:A3:00:99:1A:D4:BD:ED:5C:0D:2B:D0:53:99:06:54:1D:C2
X509v3 Authority Key Identifier:
keyid:2E:0D:40:51:7A:87:3B:7D:C2:AE:B2:8D:0E:D6:A2:F9:93:A3:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lg1AUXqHO33CrrKNDtai-ZOj100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/14e920-14a7-41cf-bdd7-57786951b78f/1/Lg1AUXqHO33CrrKNDtai-ZOj100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:cf:40:c3:0e:f6:82:97:bf:a8:e1:b3:c8:32:6b:e2:7c:b8:
64:cc:82:2a:cb:c0:99:55:0a:b0:f9:3c:37:2c:bd:e8:d3:11:
3c:cc:61:50:d0:1f:71:52:f3:7d:01:6a:67:bb:f0:0c:6f:3f:
71:50:19:6d:f0:48:5a:20:c2:16:63:df:64:2a:df:e0:0a:8c:
46:db:51:6e:65:66:4b:9b:64:d7:fb:62:4d:e0:87:da:08:30:
ba:45:d2:66:c6:76:4a:24:7c:33:f2:31:8f:33:8f:cf:fd:31:
53:3a:c4:b8:f3:f0:ba:c1:71:b9:d6:9c:9e:cf:a0:42:3d:22:
58:e3:33:14:00:e9:8c:bb:e1:8d:28:d7:d2:62:8b:71:08:ff:
8d:5e:42:38:3d:aa:e3:c1:37:c3:b4:fa:46:1a:22:64:81:91:
54:59:c9:1a:58:b5:84:4d:ad:80:f4:2d:e7:39:ae:00:0e:8c:
2f:b5:de:8a:06:d0:e2:0f:31:80:4c:0f:c4:3f:dd:b7:04:ec:
de:c0:36:cd:51:78:b1:99:73:e0:f5:38:7b:7c:77:2e:a2:c4:
72:97:17:74:7a:3d:66:3a:6b:c1:11:34:a4:aa:81:b9:03:5b:
51:0c:f4:33:80:de:e7:6c:f3:0a:25:53:61:bb:90:73:7a:7a:
80:8c:57:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 10:13:08 2026 by rpki-client