Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
File: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft (raw, json)
Hash identifier: e5j8Csh9tTiyodzgzyMikOfxvDfrU9f84qeyQhWAlaQ=
Subject key identifier: F2:B2:00:5E:3C:DC:8D:F9:06:ED:72:FE:A2:63:F8:FB:35:8B:CB:78
Authority key identifier: 96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
Certificate issuer: /CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Certificate serial: 019CAAC62CC47BE6D0B5ED10A2C06D7AA165
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
Manifest number: 0F7D
Signing time: Sun 01 Mar 2026 19:00:40 +0000
Manifest this update: Sun 01 Mar 2026 19:00:40 +0000
Manifest next update: Mon 02 Mar 2026 19:00:40 +0000
Files and hashes: 1: Qb_RZp-mahSy8KfrU77wNxpfg_E.roa (hash: u1xd1aPYepFZHPAZOvL3xwts9hFrIKK/yaiHVAix9zo=)
2: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl (hash: tdPyDoZVU0HpQ42mepVa2R2V1gNvi57xdX6yDb2wBTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:2c:c4:7b:e6:d0:b5:ed:10:a2:c0:6d:7a:a1:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Validity
Not Before: Mar 1 19:00:40 2026 GMT
Not After : Mar 2 19:00:40 2026 GMT
Subject: CN=f2b2005e3cdc8df906ed72fea263f8fb358bcb78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0c:a3:de:14:db:e6:32:fe:31:86:40:18:85:
7d:8e:c5:7c:ac:62:0a:9a:8e:55:e0:5e:06:cc:b9:
66:54:e5:6b:5d:24:e9:8b:49:f1:95:6d:30:5c:c5:
ce:4e:2b:04:4e:8c:a1:de:e1:ef:9f:c1:4d:57:37:
35:cd:ed:36:dd:1c:b6:4b:b8:e6:45:5a:75:56:56:
4d:1f:fa:95:ba:0f:b7:a9:49:af:a8:b8:e9:19:9c:
89:45:b8:1a:75:6a:77:33:8a:9b:86:21:72:15:2e:
0d:da:fc:0f:4c:a0:2d:8f:1a:86:33:28:93:63:bc:
42:c9:05:f3:65:92:15:83:12:8e:4b:41:85:37:c0:
e7:b0:44:7e:25:90:82:e5:85:62:90:57:24:f4:32:
3e:ab:0f:1a:1d:8d:61:d3:fd:27:e6:81:dd:5f:e6:
a9:b0:9a:ee:cd:31:ff:7d:47:24:a7:cf:e0:dd:24:
04:85:f4:7a:d8:5c:87:51:14:85:7f:f7:42:a3:78:
95:fb:4a:cb:d3:81:41:ef:43:a1:7c:9a:f5:78:cd:
da:a2:ad:d9:b9:db:06:3c:4f:3e:af:08:cd:c2:9d:
1d:6b:59:53:b5:0b:77:8a:12:9d:b6:ad:7c:ab:c8:
7e:41:37:ec:1b:45:cd:1c:ff:db:e7:f5:47:94:89:
1b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B2:00:5E:3C:DC:8D:F9:06:ED:72:FE:A2:63:F8:FB:35:8B:CB:78
X509v3 Authority Key Identifier:
keyid:96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:45:98:a0:97:a8:94:1c:0f:16:c0:b6:8d:67:a4:80:8a:a3:
5f:18:e9:eb:a6:28:9e:94:8d:a9:e7:ef:49:34:c6:6b:c1:be:
bb:b7:45:eb:6e:83:7c:2d:5f:03:40:be:ce:d4:de:09:4d:e5:
ae:b3:8e:1b:47:17:50:6e:b4:50:0d:12:4c:13:e9:39:74:01:
51:98:d9:e5:02:27:10:f9:51:9e:f6:ee:40:e0:90:11:9e:b6:
3e:9c:a0:52:86:a8:88:ef:ea:69:d0:02:a2:da:4b:97:53:2f:
71:dc:c8:2c:6a:62:64:57:4e:c3:83:54:e1:dc:18:cf:b2:5f:
d9:66:95:fe:4b:57:b2:80:7d:17:1b:8e:06:2d:4c:e3:2f:ba:
d0:0b:15:c5:18:ff:9c:1c:a3:98:52:b9:3c:66:c5:8f:44:e1:
f4:0d:05:69:64:bc:93:6e:09:b7:ee:70:01:1b:cd:63:03:68:
8d:3a:c6:e7:c2:0e:13:3e:2a:3f:3d:4d:25:4a:57:b3:fd:eb:
db:36:97:f3:1a:1a:fe:91:e0:c3:06:29:cf:7c:29:22:84:18:
77:3d:c7:6f:01:b8:19:fe:82:08:f9:1e:61:a6:7b:84:9c:50:
2e:fb:c2:31:cb:e0:b0:35:1a:bf:5c:76:f5:ac:be:09:bc:3b:
42:1c:c2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:46:29 2026 by rpki-client