Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
File: Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft (raw, json)
Hash identifier: EkUwZNO1SJJ4w4MZjuCuwCROmujBgFUDzogRCfElPY8=
Subject key identifier: 13:CE:A2:33:BD:AF:56:56:D0:8E:58:0A:40:83:73:AF:FD:CB:99:46
Authority key identifier: 2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E
Certificate issuer: /CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e
Certificate serial: 019EB9C669863466CF429987B9913C0EA436
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
Manifest number: 195A
Signing time: Fri 12 Jun 2026 03:00:48 +0000
Manifest this update: Fri 12 Jun 2026 03:00:48 +0000
Manifest next update: Sat 13 Jun 2026 03:00:48 +0000
Files and hashes: 1: Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl (hash: eLWduwU7WvqaU3FtHkdrYsnqD3fWzly43M/+YUUDauQ=)
2: SdYBPf9hyZeCBZ0CXzRVluMGnGU.roa (hash: hgdsfyjTVsGnv4VajpzC0ZJUGOBghoLM7l+xd5EQZGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:c6:69:86:34:66:cf:42:99:87:b9:91:3c:0e:a4:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2df8779a3c82f00fc14435ee7d8d0b8d6dd8204e
Validity
Not Before: Jun 12 03:00:48 2026 GMT
Not After : Jun 13 03:00:48 2026 GMT
Subject: CN=13cea233bdaf5656d08e580a408373affdcb9946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f3:26:cf:7c:11:fd:3d:e8:30:00:21:0a:5e:
eb:35:a3:e9:0b:8f:59:26:0e:bf:80:d8:bc:d8:46:
e5:7b:da:fc:ac:ab:2b:23:c2:92:aa:3f:cd:76:f1:
20:bc:5b:bb:cd:2e:d7:b1:10:1c:f5:f9:f8:47:20:
06:aa:ff:c1:a1:da:42:ad:6e:3b:ca:7b:d4:9f:25:
ae:ee:8a:80:ae:04:46:3a:5e:f4:6d:53:7e:b7:2c:
c6:f8:f2:26:b8:f2:5c:b2:18:03:f8:f0:1f:57:83:
ec:c9:70:3f:0b:2e:73:6b:2b:35:1c:53:4c:28:74:
cf:8f:10:96:df:5b:32:65:fa:94:24:9b:ba:51:27:
ae:41:07:74:cd:ee:a4:bb:d8:ec:99:24:0a:a3:65:
66:08:a5:85:1e:96:54:23:53:21:19:88:d5:3f:5d:
d2:e7:e3:bf:90:cb:88:0c:46:ae:d5:b7:4e:96:c5:
91:1d:d7:ce:f1:03:78:99:e3:34:50:f9:70:89:55:
0d:c6:29:02:b0:48:ab:18:eb:54:89:2d:54:0c:af:
2d:56:9b:76:8d:bb:f7:75:92:d0:31:5b:0a:3b:c9:
80:bc:14:94:4e:20:4e:7d:fe:33:df:c4:d4:83:97:
0a:f4:5b:b8:0a:b3:e8:be:08:9a:cb:b2:20:5e:66:
52:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CE:A2:33:BD:AF:56:56:D0:8E:58:0A:40:83:73:AF:FD:CB:99:46
X509v3 Authority Key Identifier:
keyid:2D:F8:77:9A:3C:82:F0:0F:C1:44:35:EE:7D:8D:0B:8D:6D:D8:20:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lfh3mjyC8A_BRDXufY0LjW3YIE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ccd96e-133e-45b7-88b7-e2ae055eced1/1/Lfh3mjyC8A_BRDXufY0LjW3YIE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:4e:96:4f:68:ef:f4:60:66:34:9a:c5:20:0f:ed:ad:d4:89:
fd:06:21:35:32:26:a5:47:46:06:c4:5f:e6:10:15:25:96:8a:
65:d9:01:56:ae:28:95:17:e7:22:e9:9c:e0:d2:c5:fe:eb:c5:
f0:8e:47:dc:63:44:6f:fd:03:3a:9a:6b:75:81:17:69:5c:74:
83:4a:ff:b5:7a:63:08:96:8b:65:ce:06:3e:2f:dc:56:36:86:
9b:c2:a1:5d:0d:28:c9:15:fb:ec:25:3b:9f:ad:a1:0c:b7:f1:
2f:42:49:ad:a4:cb:3b:26:e9:f1:01:fe:c6:4d:58:dc:fa:8d:
7e:8b:4c:17:64:ad:84:a5:1d:6f:61:e1:45:23:4c:77:3a:6b:
53:1b:e2:d9:f0:ea:bd:a3:e6:54:4a:4b:f8:99:a9:fc:ea:d3:
5d:c7:bd:e2:69:dc:8b:51:b2:67:c6:98:26:62:d7:68:7d:bf:
f1:47:86:63:3b:17:ce:f8:a6:66:fb:6c:93:82:14:59:ab:a7:
e6:66:8f:6b:f8:8a:fa:1a:81:72:ce:e5:cf:29:3d:a1:d6:ce:
a3:0d:ee:8f:e5:4a:fd:30:b5:88:ee:21:f9:a1:fc:d8:f0:84:
45:c0:d2:30:d1:39:9c:30:d9:e2:1f:cd:8e:66:99:df:39:47:
96:3a:df:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 08:09:31 2026 by rpki-client