Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.mft
File: lhcnEwwlmZCwBeqUM7V-B5LxrxU.mft (raw, json)
Hash identifier: 90lCI5bLvUUCOPeXtMfolxaV6svyFpCWJOIxE1pGkLU=
Subject key identifier: 57:B9:03:1C:DB:D9:47:93:65:2B:25:74:F2:91:89:5E:BB:7D:46:AA
Authority key identifier: 96:17:27:13:0C:25:99:90:B0:05:EA:94:33:B5:7E:07:92:F1:AF:15
Certificate issuer: /CN=961727130c259990b005ea9433b57e0792f1af15
Certificate serial: 019D3789B554EC128FA74C3A4BD1C4067CC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhcnEwwlmZCwBeqUM7V-B5LxrxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.mft
Manifest number: 24
Signing time: Sun 29 Mar 2026 03:01:04 +0000
Manifest this update: Sun 29 Mar 2026 03:01:04 +0000
Manifest next update: Mon 30 Mar 2026 03:01:04 +0000
Files and hashes: 1: IBxQMw202wI9H-2El0dEcabarmQ.roa (hash: nV5yVbote6ZsQPTplfUETazD8sVRzYP39kvT+GSB85A=)
2: lhcnEwwlmZCwBeqUM7V-B5LxrxU.crl (hash: Aioj4RHW73of97rfM9CLZ7SYjrG5GTySNN3b3sMsTc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhcnEwwlmZCwBeqUM7V-B5LxrxU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:b5:54:ec:12:8f:a7:4c:3a:4b:d1:c4:06:7c:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=961727130c259990b005ea9433b57e0792f1af15
Validity
Not Before: Mar 29 03:01:04 2026 GMT
Not After : Mar 30 03:01:04 2026 GMT
Subject: CN=57b9031cdbd94793652b2574f291895ebb7d46aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bb:97:0e:65:ff:bf:6d:fa:da:c3:b6:01:7b:
b5:d3:e6:c9:43:d2:08:06:68:e0:19:ec:34:1c:18:
c7:b0:8d:6d:3f:9e:c5:f4:db:5e:5f:d9:5f:c6:5c:
a9:8a:d6:70:96:30:b5:c6:f6:1d:ee:bb:b6:9b:d0:
cd:0d:43:d4:d4:6a:cc:ea:d0:b3:0b:a4:93:fa:f4:
89:55:b1:89:f0:c0:11:ea:43:02:bc:dc:9e:d5:93:
69:44:2a:f6:65:f3:db:ff:26:dd:00:99:2a:78:49:
54:cf:52:c5:d3:0d:75:55:41:7c:e1:bf:ff:91:a5:
37:6c:d1:0a:a7:23:b8:51:c5:73:b9:35:9b:b7:5d:
e0:6a:8e:e9:08:2a:ed:34:26:63:3a:62:a1:06:da:
61:44:f5:86:9f:32:07:80:ed:d4:72:c8:a8:e5:47:
f2:d6:06:2b:04:59:39:78:6c:04:b5:66:1a:c4:12:
8b:3a:61:24:65:0e:ba:5d:8f:08:17:0b:a2:45:f0:
7e:1f:f9:8a:b0:be:97:ac:9a:25:7e:ff:98:84:74:
a5:d0:78:08:af:83:a3:f9:9a:fd:b3:db:18:78:c4:
c3:f7:f0:b0:bd:ee:6b:ae:9b:7a:f8:25:6e:61:29:
ac:0a:03:98:70:82:11:df:9b:3c:5f:7e:79:dc:a6:
55:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B9:03:1C:DB:D9:47:93:65:2B:25:74:F2:91:89:5E:BB:7D:46:AA
X509v3 Authority Key Identifier:
keyid:96:17:27:13:0C:25:99:90:B0:05:EA:94:33:B5:7E:07:92:F1:AF:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhcnEwwlmZCwBeqUM7V-B5LxrxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e6:e1:ef:37:9e:85:9a:7e:07:6c:53:90:ee:30:2a:43:ae:d8:
10:1a:72:0e:da:a8:f1:ba:f7:8e:ee:45:b8:5f:a7:7a:51:fa:
bc:7b:67:34:34:26:65:f4:bb:32:f4:4e:22:7c:da:0b:0d:54:
af:74:42:8e:00:fc:d7:ab:af:d0:ad:36:47:3d:2b:8e:74:1e:
bf:8b:08:ff:32:c4:fb:e2:8f:e1:d8:59:d7:0c:65:21:ac:1f:
7c:34:96:f7:6c:49:e4:35:ff:2a:20:10:3d:89:a0:4a:2d:2f:
5d:22:a6:c2:70:75:38:fd:99:3a:ca:2d:12:94:1e:b1:1c:7a:
d7:38:f5:17:e5:e0:59:19:dd:79:4f:7c:1c:aa:f0:d1:d1:03:
27:6c:1b:c5:70:78:3d:7c:5a:e6:3c:0a:7f:8e:61:68:52:2d:
71:a6:4b:2d:f2:e4:9d:95:c3:7b:5a:dc:a7:1c:e7:44:11:b1:
de:45:ba:a1:9d:2d:80:eb:10:e8:87:68:13:17:cc:44:69:a2:
8d:6c:b1:ad:85:2e:d4:9a:61:cf:ef:04:84:fb:99:02:3c:45:
ab:92:7c:a9:c8:23:06:47:57:59:8e:ad:99:7c:f3:c8:01:89:
2f:51:11:5e:ac:fe:04:24:3d:e2:31:f5:78:46:2e:0a:d7:0f:
a7:de:fb:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:38:55 2026 by rpki-client