Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
File: lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft (raw, json)
Hash identifier: yJyxfymn67SQg27fyNuLaJLUKa8Yrfp+mp/6Ss7qruU=
Subject key identifier: B9:C1:27:E5:9B:14:53:93:10:78:20:3D:D3:DC:D7:FB:1C:8E:41:45
Authority key identifier: 96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
Certificate issuer: /CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Certificate serial: 019EB7D77F36811BF05ED9AA528B7AAB954D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
Manifest number: 110E
Signing time: Thu 11 Jun 2026 18:00:13 +0000
Manifest this update: Thu 11 Jun 2026 18:00:13 +0000
Manifest next update: Fri 12 Jun 2026 18:00:13 +0000
Files and hashes: 1: drsnkuosbg6qvFQb_xFsNGudfnU.roa (hash: NBvp9SPTa0IGtzv6khJhiENmtNEIw9wGReWShX2mC+o=)
2: lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl (hash: QjfJOrVESjytTqMrOCK3iQQjfTaFZmv0ESkvoaJfUnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:d7:7f:36:81:1b:f0:5e:d9:aa:52:8b:7a:ab:95:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c0ce9f87d9d275f6cae4dc9cdfb5d4437d8ceb
Validity
Not Before: Jun 11 18:00:13 2026 GMT
Not After : Jun 12 18:00:13 2026 GMT
Subject: CN=b9c127e59b1453931078203dd3dcd7fb1c8e4145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:62:8c:e9:01:ac:9a:91:59:b8:8b:bf:4e:f5:
84:f6:10:c7:14:37:4b:dc:3c:72:4e:28:47:49:ae:
fd:75:52:8d:90:2b:b0:fa:8f:32:8e:6e:b6:70:67:
4d:57:b4:d6:4a:d0:e9:e0:6f:7d:57:fb:84:d4:22:
40:d9:be:d8:b2:09:1b:7e:9b:cf:5b:c9:cc:dc:75:
1f:dc:12:07:43:5a:a7:ba:bf:28:42:7d:a0:e3:93:
d7:7d:f9:3d:a2:b5:b6:10:e9:ec:f9:00:ba:38:6d:
7c:00:f9:60:a7:a8:a8:03:3e:54:f5:7e:fe:e2:69:
81:c2:19:d0:a2:4e:1a:36:e7:a8:d3:42:98:9a:cf:
1d:76:46:4c:9f:81:ac:a3:c9:d7:df:72:c2:73:6f:
39:a7:4a:a2:a5:2b:42:0a:45:08:15:54:2b:46:9a:
36:4b:63:5d:65:d0:61:a1:6d:b6:0d:88:70:10:5d:
c1:61:5f:02:2c:36:2c:9a:65:66:27:19:03:14:7c:
05:0f:30:15:17:e9:e5:b2:34:a6:c8:3d:60:ee:f3:
56:bf:4f:5d:a6:3f:73:0d:a0:be:94:01:79:b5:8d:
98:8e:66:22:a3:bc:27:50:5b:b1:47:75:91:bc:2d:
56:88:2a:1d:1b:5c:8b:4c:be:36:03:83:5c:3d:65:
e6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C1:27:E5:9B:14:53:93:10:78:20:3D:D3:DC:D7:FB:1C:8E:41:45
X509v3 Authority Key Identifier:
keyid:96:C0:CE:9F:87:D9:D2:75:F6:CA:E4:DC:9C:DF:B5:D4:43:7D:8C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsDOn4fZ0nX2yuTcnN-11EN9jOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3aa386-9057-49a0-a229-5e77fa0333a3/1/lsDOn4fZ0nX2yuTcnN-11EN9jOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:36:4e:d4:e3:3c:8b:9c:af:a2:a5:44:88:94:64:e1:50:2d:
f9:51:2b:d9:2f:62:ec:ed:8d:c9:b3:7d:e4:d5:63:24:a8:e6:
51:e4:8e:b4:8c:f8:dd:f5:d9:87:8c:7c:5e:48:d8:81:ab:e2:
f0:85:2e:8f:07:10:23:bd:c6:69:5c:33:98:42:d0:9e:6f:99:
4d:51:e0:d2:df:45:b9:64:78:af:a5:f0:7c:ce:f8:04:4b:ea:
c1:28:21:f6:a7:b7:26:bb:8f:f7:f1:41:c5:45:8f:9a:be:39:
87:63:01:21:d2:f8:84:3d:ee:99:06:31:8c:9a:0f:06:4b:5c:
4b:77:dd:fc:c6:a0:6d:a3:ef:4f:ba:8b:11:0e:32:82:11:69:
5a:12:0b:93:cd:1c:17:bc:31:4a:8e:e4:a3:65:b0:3b:35:c0:
15:ce:31:b6:72:f2:e3:ca:ff:6a:9e:3c:da:01:bc:44:34:70:
0e:33:82:5e:75:8c:a1:84:ca:a2:d3:2d:95:95:4d:5b:e7:df:
bd:b2:8d:81:33:ca:89:51:55:d3:c4:9e:ed:0d:fc:cc:a1:2a:
18:b4:8e:5d:bf:ee:8e:90:e2:3f:23:5b:e4:52:5b:7e:94:a3:
ec:2e:77:58:67:4b:5f:e3:bb:fa:30:55:5f:55:60:ed:2f:e9:
eb:75:2a:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ631382gRvwXtmqUot6q5VNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2YzBjZTlmODdkOWQyNzVmNmNhZTRkYzljZGZiNWQ0NDM3
ZDhjZWIwHhcNMjYwNjExMTgwMDEzWhcNMjYwNjEyMTgwMDEzWjAzMTEwLwYDVQQD
EyhiOWMxMjdlNTliMTQ1MzkzMTA3ODIwM2RkM2RjZDdmYjFjOGU0MTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmmKM6QGsmpFZuIu/TvWE9hDHFDdL
3DxyTihHSa79dVKNkCuw+o8yjm62cGdNV7TWStDp4G99V/uE1CJA2b7YsgkbfpvP
W8nM3HUf3BIHQ1qnur8oQn2g45PXffk9orW2EOns+QC6OG18APlgp6ioAz5U9X7+
4mmBwhnQok4aNueo00KYms8ddkZMn4Gso8nX33LCc285p0qipStCCkUIFVQrRpo2
S2NdZdBhoW22DYhwEF3BYV8CLDYsmmVmJxkDFHwFDzAVF+nlsjSmyD1g7vNWv09d
pj9zDaC+lAF5tY2YjmYio7wnUFuxR3WRvC1WiCodG1yLTL42A4NcPWXmkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLnBJ+WbFFOTEHggPdPc1/scjkFFMB8GA1UdIwQY
MBaAFJbAzp+H2dJ19srk3JzftdRDfYzrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHNET240ZlowblgyeXVUY25OLTExRU45ak9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8zYWEzODYtOTA1Ny00OWEwLWEyMjkt
NWU3N2ZhMDMzM2EzLzEvbHNET240ZlowblgyeXVUY25OLTExRU45ak9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8zYWEzODYtOTA1Ny00OWEwLWEyMjktNWU3N2ZhMDMzM2Ez
LzEvbHNET240ZlowblgyeXVUY25OLTExRU45ak9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnzZO1OM8
i5yvoqVEiJRk4VAt+VEr2S9i7O2NybN95NVjJKjmUeSOtIz43fXZh4x8XkjYgavi
8IUujwcQI73GaVwzmELQnm+ZTVHg0t9FuWR4r6XwfM74BEvqwSgh9qe3JruP9/FB
xUWPmr45h2MBIdL4hD3umQYxjJoPBktcS3fd/MagbaPvT7qLEQ4yghFpWhILk80c
F7wxSo7ko2WwOzXAFc4xtnLy48r/ap482gG8RDRwDjOCXnWMoYTKotMtlZVNW+ff
vbKNgTPKiVFV08Se7Q38zKEqGLSOXb/ujpDiPyNb5FJbfpSj7C53WGdLX+O7+jBV
X1Vg7S/p63UqBw==
-----END CERTIFICATE-----
Generated at Thu Jun 11 22:41:10 2026 by rpki-client