Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.mft
File: lhcnEwwlmZCwBeqUM7V-B5LxrxU.mft (raw, json)
Hash identifier: DYCHFetsdWSvKq7fC+zZ4TuPzkVtw2VXp3OGA2zdODs=
Subject key identifier: 70:E5:48:4B:24:FB:6C:15:71:8F:01:F7:A6:AC:32:50:4E:AA:8D:A1
Authority key identifier: 96:17:27:13:0C:25:99:90:B0:05:EA:94:33:B5:7E:07:92:F1:AF:15
Certificate issuer: /CN=961727130c259990b005ea9433b57e0792f1af15
Certificate serial: 019EB5E95D729230A85EE5729C8A712BBCCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhcnEwwlmZCwBeqUM7V-B5LxrxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.mft
Manifest number: EA
Signing time: Thu 11 Jun 2026 09:00:30 +0000
Manifest this update: Thu 11 Jun 2026 09:00:30 +0000
Manifest next update: Fri 12 Jun 2026 09:00:30 +0000
Files and hashes: 1: IBxQMw202wI9H-2El0dEcabarmQ.roa (hash: nV5yVbote6ZsQPTplfUETazD8sVRzYP39kvT+GSB85A=)
2: lhcnEwwlmZCwBeqUM7V-B5LxrxU.crl (hash: XAU/ktCoOga77XK+ExRwdQB2WpnHp+Jaz0A636buyMY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhcnEwwlmZCwBeqUM7V-B5LxrxU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 09:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:e9:5d:72:92:30:a8:5e:e5:72:9c:8a:71:2b:bc:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=961727130c259990b005ea9433b57e0792f1af15
Validity
Not Before: Jun 11 09:00:30 2026 GMT
Not After : Jun 12 09:00:30 2026 GMT
Subject: CN=70e5484b24fb6c15718f01f7a6ac32504eaa8da1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d9:5c:84:ea:47:eb:5d:a0:34:a1:fe:cb:1b:
af:bc:45:1e:02:9f:d4:f2:87:35:ad:90:2d:2a:9e:
a5:7a:e6:5a:9d:a1:20:f4:eb:aa:af:35:5e:c5:64:
b6:fa:bd:4d:de:94:01:9f:f5:ce:e4:1e:2b:3c:8b:
86:67:6f:08:54:ae:63:1a:50:fd:5f:c3:ff:7c:8c:
3e:f1:6e:66:cf:63:bc:ad:02:9e:d1:13:a5:8c:b2:
03:37:1e:28:ac:ed:ac:77:ca:7c:d7:6e:e1:a1:35:
bc:5c:f9:88:47:07:2d:71:72:ba:18:6c:22:24:6e:
ba:64:d6:fb:20:2e:da:a3:10:7f:6a:91:4d:ff:7d:
81:f0:11:a6:15:4b:28:a6:a4:c2:95:dc:ad:e7:41:
b4:48:e6:7f:2d:df:84:95:3c:65:c3:47:b8:4c:37:
1e:51:24:bd:4e:f8:f9:87:19:7c:b3:0e:ef:05:90:
ec:1f:ab:f9:93:e3:b2:b7:d6:db:55:e4:d4:c5:ed:
2b:83:9e:02:6d:49:c4:f1:23:cc:79:62:71:9c:54:
7f:37:01:b6:15:55:13:d4:75:4c:3b:3c:52:c1:35:
7d:31:d9:31:8c:40:48:98:99:19:cf:cf:0d:b4:d1:
59:1c:cc:0a:f9:1a:04:21:68:48:4d:c4:53:77:32:
93:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E5:48:4B:24:FB:6C:15:71:8F:01:F7:A6:AC:32:50:4E:AA:8D:A1
X509v3 Authority Key Identifier:
keyid:96:17:27:13:0C:25:99:90:B0:05:EA:94:33:B5:7E:07:92:F1:AF:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhcnEwwlmZCwBeqUM7V-B5LxrxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58df00-9ddb-4fd5-b65c-6cfdc2877518/1/lhcnEwwlmZCwBeqUM7V-B5LxrxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:48:09:d6:93:95:02:9b:17:2c:f6:01:21:e7:e2:6b:43:41:
e6:4a:f2:5c:f7:de:66:67:7e:84:ec:a2:3d:1d:f0:4b:b0:4e:
3a:61:22:55:76:d3:20:8c:82:05:36:ab:e9:0e:1a:03:cb:5b:
48:84:1b:6f:59:8e:ef:35:09:d0:56:56:2a:c5:0d:cc:e6:2a:
03:8c:d9:73:18:a2:9b:8c:fa:67:ee:99:97:19:e5:eb:bc:d3:
de:57:f0:07:02:47:2a:4f:89:42:1d:3a:d8:0a:99:47:fb:16:
63:bd:b5:5c:f8:01:fb:ce:f8:2a:12:55:b2:91:ad:28:bd:f4:
1b:03:12:9e:d6:c4:dd:fa:0f:1f:8d:23:7e:2e:79:70:c4:a1:
60:2b:63:d7:aa:87:c4:8a:0f:0a:14:94:34:78:11:80:a2:05:
52:58:89:18:36:8e:d4:ba:37:cf:6d:06:33:4d:dc:30:ea:8a:
10:c5:8a:bc:b1:e6:50:d0:b9:aa:df:88:eb:bc:d1:a8:10:5f:
5c:a2:cd:d6:bb:6c:b1:46:ad:f0:12:c8:2c:4d:8e:98:84:18:
5e:dd:ed:86:f6:2c:69:e0:db:5f:de:3a:55:e5:7e:2b:9c:13:
41:c5:70:a2:ce:28:94:f1:fa:c9:a9:2d:8c:1c:80:f1:8a:b7:
fc:1e:b0:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ616V1ykjCoXuVynIpxK7zPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2MTcyNzEzMGMyNTk5OTBiMDA1ZWE5NDMzYjU3ZTA3OTJm
MWFmMTUwHhcNMjYwNjExMDkwMDMwWhcNMjYwNjEyMDkwMDMwWjAzMTEwLwYDVQQD
Eyg3MGU1NDg0YjI0ZmI2YzE1NzE4ZjAxZjdhNmFjMzI1MDRlYWE4ZGExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkdlchOpH612gNKH+yxuvvEUeAp/U
8oc1rZAtKp6leuZanaEg9OuqrzVexWS2+r1N3pQBn/XO5B4rPIuGZ28IVK5jGlD9
X8P/fIw+8W5mz2O8rQKe0ROljLIDNx4orO2sd8p8127hoTW8XPmIRwctcXK6GGwi
JG66ZNb7IC7aoxB/apFN/32B8BGmFUsopqTCldyt50G0SOZ/Ld+ElTxlw0e4TDce
USS9Tvj5hxl8sw7vBZDsH6v5k+Oyt9bbVeTUxe0rg54CbUnE8SPMeWJxnFR/NwG2
FVUT1HVMOzxSwTV9MdkxjEBImJkZz88NtNFZHMwK+RoEIWhITcRTdzKTswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHDlSEsk+2wVcY8B96asMlBOqo2hMB8GA1UdIwQY
MBaAFJYXJxMMJZmQsAXqlDO1fgeS8a8VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGhjbkV3d2xtWkN3QmVxVU03Vi1CNUx4cnhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC81OGRmMDAtOWRkYi00ZmQ1LWI2NWMt
NmNmZGMyODc3NTE4LzEvbGhjbkV3d2xtWkN3QmVxVU03Vi1CNUx4cnhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC81OGRmMDAtOWRkYi00ZmQ1LWI2NWMtNmNmZGMyODc3NTE4
LzEvbGhjbkV3d2xtWkN3QmVxVU03Vi1CNUx4cnhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1UgJ1pOV
ApsXLPYBIefia0NB5kryXPfeZmd+hOyiPR3wS7BOOmEiVXbTIIyCBTar6Q4aA8tb
SIQbb1mO7zUJ0FZWKsUNzOYqA4zZcxiim4z6Z+6Zlxnl67zT3lfwBwJHKk+JQh06
2AqZR/sWY721XPgB+874KhJVspGtKL30GwMSntbE3foPH40jfi55cMShYCtj16qH
xIoPChSUNHgRgKIFUliJGDaO1Lo3z20GM03cMOqKEMWKvLHmUNC5qt+I67zRqBBf
XKLN1rtssUat8BLILE2OmIQYXt3thvYsaeDbX946VeV+K5wTQcVwos4olPH6yakt
jByA8Yq3/B6wTQ==
-----END CERTIFICATE-----
Generated at Thu Jun 11 19:02:43 2026 by rpki-client