Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
File: lris-hevk77b78b-tGiPmGBLiq4.mft (raw, json)
Hash identifier: mguvrtLGe4M+Feg3lWXJKJKf5YBAnzUAxpgiP33zZtI=
Subject key identifier: B7:A4:D5:86:0D:3C:3D:64:62:28:62:9C:C0:E5:74:9D:ED:65:B6:B5
Authority key identifier: 96:B8:AC:FA:17:AF:93:BE:DB:EF:C6:FE:B4:68:8F:98:60:4B:8A:AE
Certificate issuer: /CN=96b8acfa17af93bedbefc6feb4688f98604b8aae
Certificate serial: 019CE4ECD357E962F01940D2ABD8C377EED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
Manifest number: 12EF
Signing time: Fri 13 Mar 2026 02:00:51 +0000
Manifest this update: Fri 13 Mar 2026 02:00:51 +0000
Manifest next update: Sat 14 Mar 2026 02:00:51 +0000
Files and hashes: 1: 1-_1ND71xAg_YzyTREVjF7BcT090.roa (hash: q6/3yl36YPQO21Sef3A+lExC26TvJGdypkO4TEkJLcg=)
2: lris-hevk77b78b-tGiPmGBLiq4.crl (hash: cHLUUUccvkn4OwYfwnEPSGuV8CLP1kLy/5oQDFMDDNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:ec:d3:57:e9:62:f0:19:40:d2:ab:d8:c3:77:ee:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b8acfa17af93bedbefc6feb4688f98604b8aae
Validity
Not Before: Mar 13 02:00:51 2026 GMT
Not After : Mar 14 02:00:51 2026 GMT
Subject: CN=b7a4d5860d3c3d646228629cc0e5749ded65b6b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fa:6f:55:aa:74:b4:a7:f3:c8:6a:3e:ae:c0:
b4:05:f3:81:1e:bd:51:88:d9:74:3d:6d:bd:b9:eb:
1f:c9:2f:3c:08:83:0d:40:1c:59:d6:c8:59:5b:0b:
e6:3a:e4:c5:6f:d8:97:db:6c:86:a1:db:2b:09:69:
00:64:e9:76:29:ed:41:25:2b:d7:0d:13:d7:5b:e2:
d1:3e:20:9b:c9:7a:bc:e2:fb:e4:89:09:ed:69:d7:
dd:c8:ee:61:bb:89:e1:78:14:61:59:eb:1e:33:12:
5d:51:53:14:3f:51:9d:af:b2:67:a9:f1:1c:36:7c:
89:de:45:6a:00:37:b8:cf:fb:cd:4f:12:5d:9f:34:
18:f1:fb:81:32:f2:b5:25:fa:d0:6b:aa:a2:19:ad:
18:be:4f:6f:1c:52:4f:da:06:10:7d:77:f7:c7:9b:
61:d8:94:1e:64:03:d3:35:fd:b4:22:d6:b6:a6:f6:
40:1c:10:96:5a:9c:a7:7e:c7:29:dd:86:33:7d:82:
16:34:22:db:84:49:81:81:d3:95:44:af:4d:85:b2:
12:e6:6e:74:93:38:0a:c9:69:c2:37:13:ce:c0:7a:
19:9e:a9:25:48:ca:25:03:ef:58:f4:13:4f:98:c8:
98:d0:83:72:64:0c:29:3d:e1:21:96:60:20:7f:58:
99:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A4:D5:86:0D:3C:3D:64:62:28:62:9C:C0:E5:74:9D:ED:65:B6:B5
X509v3 Authority Key Identifier:
keyid:96:B8:AC:FA:17:AF:93:BE:DB:EF:C6:FE:B4:68:8F:98:60:4B:8A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:0c:09:c0:a2:10:42:0f:a9:40:69:a9:19:66:eb:5f:e7:4d:
0f:0a:ba:56:0d:b0:d7:ae:32:7b:43:55:5a:a7:f1:ef:ab:e4:
99:83:69:29:ca:dd:bd:38:1d:88:72:d6:c5:f6:4e:80:79:7d:
8c:ad:3b:b2:2c:fd:80:26:cf:b9:f3:eb:94:c3:19:a6:1d:d2:
92:60:1a:39:a2:90:dc:11:f2:cd:38:80:bd:18:ee:ef:18:6e:
c2:8b:a9:ed:ca:c0:8e:17:48:83:70:3a:9f:57:17:8a:d4:eb:
bc:dc:a8:a8:1f:6f:40:bc:6d:04:23:86:d8:0a:58:35:8d:bf:
54:f5:fe:4d:71:29:23:33:85:e1:2c:14:a1:97:c5:e9:a6:19:
ff:07:28:32:86:78:57:ff:fb:da:c4:04:73:38:39:9f:fe:71:
98:e0:10:99:16:00:fd:23:57:4d:a0:21:46:97:e8:44:c2:b9:
dd:00:ee:e6:a5:a2:8b:39:f1:32:bc:4b:fa:de:ff:f5:32:e7:
d0:61:3f:8f:a8:7c:7f:32:7e:f1:c3:9c:81:00:9e:5e:e9:8b:
45:ea:ae:81:1d:5e:fa:0a:5b:09:a9:fb:30:eb:ff:9c:f1:e8:
f4:be:d8:2e:46:6f:ef:87:9c:6c:0e:a6:87:54:2c:50:00:65:
fa:a5:6e:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzk7NNX6WLwGUDSq9jDd+7TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2YjhhY2ZhMTdhZjkzYmVkYmVmYzZmZWI0Njg4Zjk4NjA0
YjhhYWUwHhcNMjYwMzEzMDIwMDUxWhcNMjYwMzE0MDIwMDUxWjAzMTEwLwYDVQQD
EyhiN2E0ZDU4NjBkM2MzZDY0NjIyODYyOWNjMGU1NzQ5ZGVkNjViNmI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfpvVap0tKfzyGo+rsC0BfOBHr1R
iNl0PW29uesfyS88CIMNQBxZ1shZWwvmOuTFb9iX22yGodsrCWkAZOl2Ke1BJSvX
DRPXW+LRPiCbyXq84vvkiQntadfdyO5hu4nheBRhWeseMxJdUVMUP1Gdr7JnqfEc
NnyJ3kVqADe4z/vNTxJdnzQY8fuBMvK1JfrQa6qiGa0Yvk9vHFJP2gYQfXf3x5th
2JQeZAPTNf20Ita2pvZAHBCWWpynfscp3YYzfYIWNCLbhEmBgdOVRK9NhbIS5m50
kzgKyWnCNxPOwHoZnqklSMolA+9Y9BNPmMiY0INyZAwpPeEhlmAgf1iZjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLek1YYNPD1kYihinMDldJ3tZba1MB8GA1UdIwQY
MBaAFJa4rPoXr5O+2+/G/rRoj5hgS4quMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHJpcy1oZXZrNzdiNzhiLXRHaVBtR0JMaXE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9jNDdiNDYtY2NkYy00YjVlLTg2MmUt
YmRkZmYxOTdjMjlkLzEvbHJpcy1oZXZrNzdiNzhiLXRHaVBtR0JMaXE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My9jNDdiNDYtY2NkYy00YjVlLTg2MmUtYmRkZmYxOTdjMjlk
LzEvbHJpcy1oZXZrNzdiNzhiLXRHaVBtR0JMaXE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACQwJwKIQ
Qg+pQGmpGWbrX+dNDwq6Vg2w164ye0NVWqfx76vkmYNpKcrdvTgdiHLWxfZOgHl9
jK07siz9gCbPufPrlMMZph3SkmAaOaKQ3BHyzTiAvRju7xhuwoup7crAjhdIg3A6
n1cXitTrvNyoqB9vQLxtBCOG2ApYNY2/VPX+TXEpIzOF4SwUoZfF6aYZ/wcoMoZ4
V//72sQEczg5n/5xmOAQmRYA/SNXTaAhRpfoRMK53QDu5qWiiznxMrxL+t7/9TLn
0GE/j6h8fzJ+8cOcgQCeXumLRequgR1e+gpbCan7MOv/nPHo9L7YLkZv74ecbA6m
h1QsUABl+qVurQ==
-----END CERTIFICATE-----
Generated at Fri Mar 13 10:38:54 2026 by rpki-client