Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
File: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft (raw, json)
Hash identifier: AZau9Qu3u+jrIRb1BX4HtXYF4OtYQrs8tF+vChzm+Q8=
Subject key identifier: CA:B0:36:02:57:D2:BA:25:87:6A:10:D9:33:3B:89:F2:6C:00:79:13
Authority key identifier: 96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
Certificate issuer: /CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Certificate serial: 019EC1B682D8E57AD952EE0DAD21746796A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
Manifest number: 1092
Signing time: Sat 13 Jun 2026 16:00:24 +0000
Manifest this update: Sat 13 Jun 2026 16:00:24 +0000
Manifest next update: Sun 14 Jun 2026 16:00:24 +0000
Files and hashes: 1: Qb_RZp-mahSy8KfrU77wNxpfg_E.roa (hash: u1xd1aPYepFZHPAZOvL3xwts9hFrIKK/yaiHVAix9zo=)
2: lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl (hash: 1G+0oEb05rgQ3kWxInKy4iqP/IRT+BHEWb6ytByjq0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:82:d8:e5:7a:d9:52:ee:0d:ad:21:74:67:96:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b87e5fd1aadc1bbea372b4269eebd393c5cd67
Validity
Not Before: Jun 13 16:00:24 2026 GMT
Not After : Jun 14 16:00:24 2026 GMT
Subject: CN=cab0360257d2ba25876a10d9333b89f26c007913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8d:d7:0e:5f:df:7a:d1:1b:3c:1e:5d:3c:06:
3d:47:d5:eb:cf:72:19:05:db:fc:42:46:ea:46:71:
10:ef:55:4a:18:62:4e:bb:e2:45:60:26:0a:2d:5a:
bb:3d:91:12:ef:4d:cd:86:a3:fd:d8:ec:9d:6c:82:
9e:03:c6:97:48:f4:ee:f4:33:06:e3:a1:1f:2a:2f:
c3:07:91:1f:2b:2d:97:f9:42:49:38:a7:54:c3:5b:
32:3c:f7:59:d4:a6:e0:7c:63:4c:e3:20:d0:e3:d3:
d5:ae:1c:fa:00:f3:2f:fe:61:1f:75:ec:4f:29:9b:
37:95:36:d9:e5:b2:32:d2:ee:ff:5a:2a:8e:d4:21:
1d:ee:1c:b6:51:b2:8f:19:e5:a0:e4:61:0f:c0:9a:
bc:f9:91:97:d5:e6:01:a8:d5:19:6a:86:b5:ff:86:
8d:a4:fa:3a:11:bf:e4:33:80:e5:43:31:c2:c8:cb:
91:98:fa:fc:42:2b:8f:98:17:5d:b7:6a:e0:b6:08:
fd:7f:a8:07:82:ed:86:87:b9:1b:81:95:3b:69:d0:
78:08:e7:96:6d:c3:11:03:77:32:02:b8:70:e2:98:
e9:de:aa:99:d9:3d:09:49:22:26:14:b4:d0:6c:ff:
7d:11:d2:5e:da:dd:42:90:7c:e2:a1:c1:66:8c:64:
dd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B0:36:02:57:D2:BA:25:87:6A:10:D9:33:3B:89:F2:6C:00:79:13
X509v3 Authority Key Identifier:
keyid:96:B8:7E:5F:D1:AA:DC:1B:BE:A3:72:B4:26:9E:EB:D3:93:C5:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6a88ac-efb4-45e4-9199-2abdb21941bc/1/lrh-X9Gq3Bu-o3K0Jp7r05PFzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:45:6c:67:9d:41:4c:08:32:43:7e:99:bd:ef:52:f1:5e:7d:
21:ae:80:0c:cd:ed:a7:ca:76:cc:6a:14:a2:fb:ef:55:dd:01:
9a:82:28:b0:45:25:14:ec:15:a1:83:65:7d:68:3f:84:cd:7b:
da:87:29:17:a4:84:d3:85:32:5e:76:6d:28:9c:75:e0:53:b1:
dc:90:04:bc:73:45:e9:2a:4d:69:34:ea:86:02:40:c6:af:85:
dd:3f:3d:f3:77:b3:25:f6:8e:c1:6a:4e:1d:a6:fb:ff:45:d0:
ae:66:92:3e:7b:ce:d2:61:33:e7:16:10:38:07:07:8d:3a:89:
a0:e9:00:ac:3a:29:c3:c0:da:d9:7c:84:2f:b8:e6:41:a5:fb:
9e:bb:4a:bc:1f:b9:a0:64:d0:a9:c7:ca:c9:b7:30:42:08:7c:
a6:44:b2:0a:34:83:61:46:51:20:5e:11:5e:f2:79:10:a7:28:
53:1d:a1:2a:ff:d4:10:73:10:70:6d:6f:a0:08:05:5b:77:a4:
48:d7:ff:1f:03:ce:37:e9:8f:59:5c:cf:f3:cc:9d:68:70:af:
27:18:94:32:a5:48:68:7c:83:62:04:59:15:e5:05:56:65:85:
81:15:1e:0e:af:c9:4d:05:fd:e3:3d:68:b6:0c:87:84:2f:b9:
92:72:f7:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:05:26 2026 by rpki-client