Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json)
Hash identifier: C5KzhajFirHSPimSEG0ohuaZUuHL256miEkn/inTyyU=
Subject key identifier: 47:56:EB:F8:A4:D3:A7:BC:13:B6:7E:E4:3A:1B:CB:AB:BA:D8:89:FD
Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066
Certificate serial: 019EB7331E14A7ED90F328E1155CF8AF678C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
Manifest number: 1956
Signing time: Thu 11 Jun 2026 15:00:41 +0000
Manifest this update: Thu 11 Jun 2026 15:00:41 +0000
Manifest next update: Fri 12 Jun 2026 15:00:41 +0000
Files and hashes: 1: RZP_EJvUPRy8N5V44f-ykW1wgg8.roa (hash: LUUspyCZgfPy/9PXdd/3xbh9XNVlKFlsig4SSBadF24=)
2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: 95vHC3snV+XbqJO07GB1WRlvczJqQ1AagSNdTHHr6RE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:33:1e:14:a7:ed:90:f3:28:e1:15:5c:f8:af:67:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066
Validity
Not Before: Jun 11 15:00:41 2026 GMT
Not After : Jun 12 15:00:41 2026 GMT
Subject: CN=4756ebf8a4d3a7bc13b67ee43a1bcbabbad889fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a3:32:fc:46:39:64:dd:95:0e:28:64:14:a5:
94:0b:54:ff:94:e8:fa:21:5a:ce:6e:15:21:fc:c5:
6f:7e:e4:b7:61:2b:d9:43:5c:bc:8a:a8:ca:26:32:
b3:50:87:6f:d8:b3:5c:52:80:f2:63:90:ee:e8:db:
cb:4d:82:3e:d1:f0:7f:e0:8c:49:89:95:b8:4e:44:
be:03:a2:47:31:34:74:15:c0:66:aa:f9:8f:d4:8c:
60:f4:97:a1:75:e7:91:cc:2c:c1:28:8d:1e:bb:98:
1d:bc:d4:8c:36:3a:08:61:bb:ed:e9:81:d0:9d:ba:
65:a7:9a:25:b5:1c:7e:0e:84:ff:b0:6e:af:3d:a9:
13:c9:cd:aa:ab:0e:42:1c:46:cb:f7:22:fc:b0:1a:
75:26:70:5e:a0:62:52:1b:13:6c:22:1a:fc:30:dd:
8e:9f:70:55:40:a8:3c:cb:73:34:8c:f1:13:4f:89:
74:81:f4:e6:a4:7d:0e:c1:6a:75:00:c4:8a:5d:99:
7d:ba:1e:03:5f:b5:89:21:92:4f:40:51:a9:c6:1b:
81:27:1e:4c:08:cc:bf:4a:65:52:79:b4:8e:59:37:
b6:a5:54:92:16:98:2b:d3:16:fd:08:90:ad:ef:83:
38:bd:fb:8a:e1:ac:91:b9:38:c2:35:4a:72:79:32:
37:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:56:EB:F8:A4:D3:A7:BC:13:B6:7E:E4:3A:1B:CB:AB:BA:D8:89:FD
X509v3 Authority Key Identifier:
keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:2b:6a:6b:f5:8c:3e:9c:a5:54:d8:f0:b0:11:d3:64:45:93:
68:15:bc:c7:0e:71:1c:f9:4d:f0:ce:05:d3:c8:42:13:ce:25:
2c:20:35:bb:47:29:e6:95:24:b5:c3:5d:9e:bd:d6:de:67:68:
50:c4:91:89:c6:88:88:bf:33:c6:2b:a4:28:02:5a:a0:ad:be:
88:32:9b:8f:9a:8e:5c:9f:48:3b:db:8a:b2:26:10:1d:bd:c6:
55:0f:47:41:89:74:75:5d:88:d0:45:f7:ff:7d:4c:f2:df:08:
4c:22:f2:f3:b5:51:ee:06:90:ab:11:31:14:0b:66:f4:97:e4:
be:38:cc:38:f5:51:4e:04:6d:9f:79:1a:d9:2e:dd:2d:bc:a3:
ea:ee:bf:1f:0e:45:6a:47:d9:0d:e2:b7:39:e1:40:ac:2e:a7:
43:d7:b0:80:21:e4:dc:63:aa:a0:d7:2f:27:35:d4:74:12:b5:
ae:4f:67:fe:3e:44:8f:a0:09:b5:5e:40:6c:88:0f:72:22:e5:
32:76:23:ae:9d:ec:4a:8b:b6:ac:4e:21:0a:9a:72:d1:45:38:
f7:42:91:35:5b:76:db:03:7c:b2:c9:b6:a7:b3:10:20:c3:80:
09:e3:f5:f3:2d:e3:59:c1:b0:45:be:0b:9e:88:de:ff:ac:de:
ba:c7:6c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:03:26 2026 by rpki-client