Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier: OP8TkuD7dV+VMaV/QsYiVVqqLjqs2fWav08fPM6zJ9M=
Subject key identifier: 69:B4:27:E4:33:D6:D0:BD:2B:E4:52:34:7D:15:21:C5:4B:DE:BE:EF
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer: /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial: 019DA41D07687032BBC9ECE4A3457393E18B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number: 1630
Signing time: Sun 19 Apr 2026 05:00:58 +0000
Manifest this update: Sun 19 Apr 2026 05:00:58 +0000
Manifest next update: Mon 20 Apr 2026 05:00:58 +0000
Files and hashes: 1: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: cj3qsIYopFwH3+/kuRZyarnH9s28taOg+otDYH/8hxo=)
2: xR-_0CxJhk7opaVLnqtilVW0u5k.roa (hash: smIJQKujLMH2xBq3OokVMe7VXadkyznDo/jDUgPKJpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:1d:07:68:70:32:bb:c9:ec:e4:a3:45:73:93:e1:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
Validity
Not Before: Apr 19 05:00:58 2026 GMT
Not After : Apr 20 05:00:58 2026 GMT
Subject: CN=69b427e433d6d0bd2be452347d1521c54bdebeef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8b:ce:90:ca:f3:14:0e:8a:5e:d9:ca:a2:c8:
c7:15:54:03:94:e4:dc:63:3d:57:12:be:cb:a0:fe:
e0:7f:43:c4:c3:e8:6c:41:6b:63:56:53:52:b0:78:
e3:c0:39:6f:7d:4b:85:c9:2c:ad:f8:f4:92:64:87:
6f:3a:9c:0d:a0:16:dd:1d:be:0e:b4:e8:b7:cb:ca:
6b:2c:79:33:cd:7c:8b:e0:ae:bb:b9:dc:ac:e2:d9:
b0:6a:3e:06:93:c7:c0:24:3d:c6:81:d5:4e:dd:aa:
c0:d1:c5:28:d3:46:3a:55:64:46:4b:df:15:18:29:
8e:25:2f:57:00:a6:fc:48:6d:ce:3d:fd:ea:44:e2:
d9:fb:7c:ef:ce:ea:f5:fc:84:84:7b:0d:da:9e:d7:
75:02:29:74:90:53:4a:a5:9f:3c:99:1c:b6:a0:20:
8a:2e:46:33:47:cf:3f:77:16:d1:f2:5d:68:9f:bf:
9f:cd:91:93:94:f9:59:d0:ae:2a:5e:d9:92:dd:21:
65:81:a7:6f:d2:d9:38:53:4a:23:94:19:9c:37:5a:
c7:fe:dd:2d:d3:b1:d2:9f:38:99:fd:f6:3c:ca:76:
18:3f:10:17:ba:32:35:d2:58:64:7d:73:d2:a2:71:
05:e6:10:14:5f:c6:64:1f:34:63:12:65:00:25:2c:
62:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B4:27:E4:33:D6:D0:BD:2B:E4:52:34:7D:15:21:C5:4B:DE:BE:EF
X509v3 Authority Key Identifier:
keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:79:fe:44:a9:68:37:90:31:af:b6:4d:3b:9f:07:07:a6:2f:
00:71:ce:53:aa:16:f4:80:00:f0:92:a6:ec:67:de:b6:5e:2a:
a2:8d:24:1a:16:0a:36:3d:2c:49:0e:f6:4b:b0:ba:5d:be:ea:
c7:41:f6:7a:99:96:ee:5c:4a:ce:4d:b5:de:8a:9f:bc:61:69:
6e:92:8b:da:ee:64:69:b7:94:fd:8e:7d:ba:fa:ed:2e:46:e3:
dd:5a:22:d4:8f:4c:4d:2d:3b:bc:8c:49:88:7b:8d:cd:d0:f4:
f1:c7:cc:b2:22:a8:34:7a:88:8a:ad:c0:85:08:72:46:73:7c:
71:1e:44:93:5d:ef:4c:e3:4c:3c:97:0a:65:d0:f7:95:2e:e9:
03:0b:50:bb:5b:87:2a:af:dd:8f:1e:e4:20:f0:a8:8c:70:a4:
f9:04:0e:23:83:07:cd:fe:19:6b:ea:0e:ef:bd:bc:b4:87:8f:
8f:23:c4:e5:1a:a5:06:b8:d6:27:3c:53:81:6f:88:ba:f0:6d:
cf:c5:e1:c2:75:9b:78:d6:1f:51:4c:c1:25:74:76:23:58:3e:
b7:f7:7d:79:81:43:98:be:24:c3:db:66:3f:67:e8:4a:11:2c:
f2:dc:14:16:e8:58:1a:1d:76:c3:03:bb:de:bc:17:8c:6e:4d:
23:11:e5:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:28:30 2026 by rpki-client