Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: gq3VLvYSQ66ZJIJVdRsUOWu0zWiQEh7YXq+I7+xI+z4=
Subject key identifier: 37:BB:05:1A:F9:E2:42:BC:7D:4B:48:D9:68:C9:4D:50:1A:71:B0:3B
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 019EB80EE9A1E8BCC1A149AD59001E71FCB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 1967
Signing time: Thu 11 Jun 2026 19:00:45 +0000
Manifest this update: Thu 11 Jun 2026 19:00:45 +0000
Manifest next update: Fri 12 Jun 2026 19:00:45 +0000
Files and hashes: 1: 1-zEgOYWTHaiqMcDqGEot8D9hfIE.roa (hash: jVaMeN32gu4WLb8RXEU7QtT8NJ8As10+YaSSTQDJyMM=)
2: 77UuERyh3Z3AUcULCIiJEdc-fQo.roa (hash: DnHBthnf/STbIAi1O3tZFh2P5fMOYtzdif9FPjsRkXU=)
3: I74vLo5CklRsbzCPNYnKrvIvLj4.roa (hash: ylSWG2wfgpUMhcZpBHxBahFVE1pyuX6ebVuzOtGSKVo=)
4: OA8Bk3tPUiZSmiAzbm0eBXa4nuE.roa (hash: oWNPNPjgcKmmhmYQ0/KR/N+7+UQanOVovcIMTSyV2uo=)
5: hYxTxK4AHKTY1TwSA43oGaIbwvI.roa (hash: pXMygWt3Q3zIvm4RuMnURnfNgvmTHNGm+Wsjn0P2p18=)
6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: ixSJvycYyQ72fLyYr8oRVtxORQKC+3/cNGw5+qTeuCE=)
7: nS-qR-87gGJ6pBf2l7_HCJOIeHM.roa (hash: uHfPOVPyEDve9s1ba9V4RroyQ1/pD8S/mdaAMdEB9is=)
8: pxTDDl8HD6hZo5qJKIkeKUT3PHY.roa (hash: FICr2xp4vd+7n3rWeWvKoKoWXhNvU50pS0gZxwPllVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:0e:e9:a1:e8:bc:c1:a1:49:ad:59:00:1e:71:fc:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Jun 11 19:00:45 2026 GMT
Not After : Jun 12 19:00:45 2026 GMT
Subject: CN=37bb051af9e242bc7d4b48d968c94d501a71b03b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:69:b1:96:db:79:41:c0:fa:9d:ba:79:c0:80:
12:37:8d:7b:df:fa:fc:53:f4:af:b3:b3:7e:cf:59:
f5:28:7e:c6:f0:53:53:c9:54:22:fb:f6:e8:d7:32:
96:f8:37:64:a8:09:2b:be:f3:d5:16:bb:88:33:de:
5b:63:4c:55:6a:0b:46:60:ed:84:ac:a3:f8:ff:b6:
5a:b5:f1:10:9e:fb:13:4f:20:c4:3b:95:57:14:73:
aa:85:52:bf:ec:a3:de:cf:67:f8:ba:91:e1:b9:0a:
52:2a:b9:c4:ec:7f:00:9d:cf:c2:6e:89:e9:ac:45:
39:06:68:f4:d4:a8:dc:66:5d:a6:c9:33:af:fa:89:
e9:b2:03:54:4a:4d:6a:1e:c0:26:d0:bb:2f:71:bd:
20:15:37:17:a8:df:bb:db:af:97:37:d3:86:5d:66:
61:68:63:83:b2:d6:37:c4:27:01:fb:0c:ee:ff:c4:
04:0b:d1:04:f6:70:6b:96:03:ef:74:97:94:63:98:
c7:75:34:01:b1:6e:e3:83:74:e0:14:42:4b:a3:09:
c0:b7:ad:eb:3e:49:5f:cd:1c:6d:42:68:77:98:1a:
f6:61:32:e3:6e:58:d1:41:48:b5:0c:25:f9:b6:4c:
b5:01:b9:ef:29:06:29:ac:22:73:92:5e:55:a6:52:
f2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:BB:05:1A:F9:E2:42:BC:7D:4B:48:D9:68:C9:4D:50:1A:71:B0:3B
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:56:04:c9:dd:86:e3:06:b6:55:67:fe:f4:3c:31:f2:42:00:
b4:f3:1d:24:b7:a0:38:94:28:2b:a8:5c:92:a7:22:63:d2:90:
54:98:57:77:8a:a3:93:fc:6b:63:dc:7f:21:85:7d:11:37:ec:
37:04:b7:9b:34:3a:e8:a5:32:2c:77:f6:58:64:62:dd:55:9e:
42:f7:a8:29:1d:66:f4:18:3d:dc:ed:74:8b:af:38:60:56:b1:
f2:31:ec:64:46:43:e9:9b:cf:24:06:55:03:6e:9d:97:4e:df:
f3:34:cc:88:e5:c3:97:b8:89:f4:df:be:8d:06:5a:de:8d:af:
d2:e4:02:37:8f:00:07:f5:97:ce:76:8b:0a:d4:d0:1a:c2:00:
59:0b:f1:28:80:53:56:a6:ac:36:b1:c1:01:20:c2:33:79:40:
2f:c4:85:1b:6b:47:dd:a0:50:83:c8:d9:ff:92:09:3c:a8:33:
ee:6e:dd:d8:63:d4:46:62:99:fb:67:2e:72:3c:80:22:16:80:
ed:b8:b1:d1:7d:ef:8f:df:e7:a6:41:80:4c:63:f6:e7:f7:e7:
94:70:4f:eb:7e:29:5c:4f:d7:02:fc:ee:9b:65:8f:da:4e:92:
51:b7:59:4e:6f:f8:17:5a:e9:32:d3:55:25:26:ec:07:c9:8e:
89:bb:df:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64Dumh6LzBoUmtWQAecfyyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0MGExMGEyNTY3MjhmMTFhNGJiYWFkYzMyMDRiN2YwYTM1
YTUwMDAwHhcNMjYwNjExMTkwMDQ1WhcNMjYwNjEyMTkwMDQ1WjAzMTEwLwYDVQQD
EygzN2JiMDUxYWY5ZTI0MmJjN2Q0YjQ4ZDk2OGM5NGQ1MDFhNzFiMDNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2mxltt5QcD6nbp5wIASN4173/r8
U/Svs7N+z1n1KH7G8FNTyVQi+/bo1zKW+DdkqAkrvvPVFruIM95bY0xVagtGYO2E
rKP4/7ZatfEQnvsTTyDEO5VXFHOqhVK/7KPez2f4upHhuQpSKrnE7H8Anc/Cbonp
rEU5Bmj01KjcZl2myTOv+onpsgNUSk1qHsAm0Lsvcb0gFTcXqN+726+XN9OGXWZh
aGODstY3xCcB+wzu/8QEC9EE9nBrlgPvdJeUY5jHdTQBsW7jg3TgFEJLownAt63r
PklfzRxtQmh3mBr2YTLjbljRQUi1DCX5tky1AbnvKQYprCJzkl5VplLyPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDe7BRr54kK8fUtI2WjJTVAacbA7MB8GA1UdIwQY
MBaAFJQKEKJWco8RpLuq3DIEt/CjWlAAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYt
ZGNlNmQ2OTA5MjQ3LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYtZGNlNmQ2OTA5MjQ3
LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAslYEyd2G
4wa2VWf+9Dwx8kIAtPMdJLegOJQoK6hckqciY9KQVJhXd4qjk/xrY9x/IYV9ETfs
NwS3mzQ66KUyLHf2WGRi3VWeQveoKR1m9Bg93O10i684YFax8jHsZEZD6ZvPJAZV
A26dl07f8zTMiOXDl7iJ9N++jQZa3o2v0uQCN48AB/WXznaLCtTQGsIAWQvxKIBT
VqasNrHBASDCM3lAL8SFG2tH3aBQg8jZ/5IJPKgz7m7d2GPURmKZ+2cucjyAIhaA
7bix0X3vj9/npkGATGP25/fnlHBP634pXE/XAvzum2WP2k6SUbdZTm/4F1rpMtNV
JSbsB8mOibvfZg==
-----END CERTIFICATE-----
Generated at Thu Jun 11 22:41:07 2026 by rpki-client