Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json)
Hash identifier: 0e8OGuWCgwvj55H8T3Dx5gYcbrVF2O0DHDUBaEGT5PQ=
Subject key identifier: A3:FB:88:17:C4:53:EB:DA:C9:28:51:C3:16:84:EE:BE:25:A0:FB:D1
Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Certificate serial: 019D99CFF28110C3FCD43DF5F51DF6579371
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
Manifest number: 0D67
Signing time: Fri 17 Apr 2026 05:00:35 +0000
Manifest this update: Fri 17 Apr 2026 05:00:35 +0000
Manifest next update: Sat 18 Apr 2026 05:00:35 +0000
Files and hashes: 1: 5tq-dphgnapNG8uID0bzWyuSiiI.roa (hash: Geh8HxvdWtRdjQA8GTRZhRKQeMt/TQkbrTaKQX7hwuM=)
2: SNXaMmatRq7Y2yZacERGh_Byx3c.roa (hash: 1VfAG/PWe9ADh3l7lJxuP3CaKheNhNOZc9+mMKVHmsc=)
3: aeJRC_Zrs1Xdsza3m-Bp94bJ1dk.roa (hash: 31o9/oasTnGfM4n9yp1biNvrc9x/A8EYFBmDcG491Fg=)
4: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: 08ZKztrGlOdXxwpw/zyKGdMmQcNgv3tgvW++e6imJN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:f2:81:10:c3:fc:d4:3d:f5:f5:1d:f6:57:93:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Validity
Not Before: Apr 17 05:00:35 2026 GMT
Not After : Apr 18 05:00:35 2026 GMT
Subject: CN=a3fb8817c453ebdac92851c31684eebe25a0fbd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:eb:f8:c1:43:1f:b7:a3:69:03:70:6d:2f:40:
10:07:e4:10:b9:f4:fa:52:39:69:f7:73:ec:14:1f:
56:2f:aa:6c:5b:47:13:43:fd:9e:fd:e8:50:c5:91:
f3:43:31:0a:ae:07:51:c7:7b:44:33:50:f5:26:44:
63:6f:81:40:20:c6:27:f3:1f:03:8d:03:2a:2b:e2:
12:4a:a1:04:0e:64:8a:45:58:ea:3a:93:e9:71:3c:
ab:7f:d3:e6:fb:d4:65:72:85:42:d9:a9:00:56:97:
77:3e:43:1d:fa:ad:04:38:f8:f2:f3:e3:0b:af:6b:
80:ab:17:5a:c4:e3:94:27:a3:71:e6:1b:44:c8:10:
38:34:3a:82:ac:30:b9:1c:75:6d:bc:95:64:74:56:
74:56:ab:b8:47:f3:ef:96:fc:33:80:e7:03:b9:22:
7c:f3:98:0e:31:be:1d:9e:eb:2b:f6:b2:55:bc:96:
74:89:e0:2b:3c:c4:13:35:02:ff:10:c3:a2:b8:33:
83:d4:68:cd:78:33:ca:6e:4b:f2:22:af:e1:e4:77:
a6:5c:32:98:a9:2e:80:47:b5:54:ba:3c:03:7a:1a:
10:06:6e:ca:ca:b0:94:83:50:63:d3:7a:fc:67:c0:
19:3f:a5:c4:84:78:47:b3:47:a0:41:1e:08:d8:87:
15:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:FB:88:17:C4:53:EB:DA:C9:28:51:C3:16:84:EE:BE:25:A0:FB:D1
X509v3 Authority Key Identifier:
keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:a4:c8:f0:32:5a:65:9e:81:45:13:be:15:c0:ca:26:64:e3:
a6:0e:71:19:73:61:d2:7e:ad:2f:dc:7b:0c:ee:bc:c1:16:2b:
8b:23:51:2d:28:f2:c5:d4:48:bb:bb:4b:48:e3:ee:a1:b6:6c:
ec:50:a7:cc:d1:0d:e6:7c:f5:69:0c:14:e0:db:16:73:44:a4:
e5:5e:5c:05:b3:9d:2d:dd:ad:a1:12:b8:14:a0:90:0c:ac:4f:
3b:ee:29:62:48:6d:6c:df:ee:2d:44:33:42:04:df:23:ac:54:
68:56:0b:a1:df:ba:ef:ff:bb:2f:8b:a3:da:da:41:de:4b:8c:
fc:ef:12:cd:cf:eb:cf:0d:d0:a2:cb:d3:e7:e0:f3:0a:b6:b6:
85:54:de:3b:3a:59:1d:1d:d0:14:72:f0:60:76:0a:c1:02:c5:
18:d5:1f:de:16:ba:1c:eb:7c:96:c3:26:81:2a:55:c8:57:4d:
38:16:88:c3:4d:0b:68:e8:4e:93:ab:42:65:31:0f:15:79:ef:
5d:40:61:51:a9:30:d6:16:7d:7b:3a:da:9e:a6:86:6f:2c:42:
00:7f:ae:a3:d4:65:1a:b5:56:98:28:15:df:65:21:94:40:66:
a0:08:7d:cd:2f:9e:4a:a5:47:af:f8:5a:8b:fa:5d:3a:8d:5a:
e5:1c:7c:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Zz/KBEMP81D319R32V5NxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2OWNlZGE1YmYzNzkwMWZlOWU0NGY3M2I1YmY4MmI2ODdi
MzQ1NzIwHhcNMjYwNDE3MDUwMDM1WhcNMjYwNDE4MDUwMDM1WjAzMTEwLwYDVQQD
EyhhM2ZiODgxN2M0NTNlYmRhYzkyODUxYzMxNjg0ZWViZTI1YTBmYmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjev4wUMft6NpA3BtL0AQB+QQufT6
Ujlp93PsFB9WL6psW0cTQ/2e/ehQxZHzQzEKrgdRx3tEM1D1JkRjb4FAIMYn8x8D
jQMqK+ISSqEEDmSKRVjqOpPpcTyrf9Pm+9RlcoVC2akAVpd3PkMd+q0EOPjy8+ML
r2uAqxdaxOOUJ6Nx5htEyBA4NDqCrDC5HHVtvJVkdFZ0Vqu4R/PvlvwzgOcDuSJ8
85gOMb4dnusr9rJVvJZ0ieArPMQTNQL/EMOiuDOD1GjNeDPKbkvyIq/h5HemXDKY
qS6AR7VUujwDehoQBm7KyrCUg1Bj03r8Z8AZP6XEhHhHs0egQR4I2IcVlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKP7iBfEU+vayShRwxaE7r4loPvRMB8GA1UdIwQY
MBaAFJac7aW/N5Af6eRPc7W/graHs0VyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS81Y2ZmZDItYjU2OC00ZDU1LWExMjQt
MjFmYzlhZmM4YWMxLzEvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS81Y2ZmZDItYjU2OC00ZDU1LWExMjQtMjFmYzlhZmM4YWMx
LzEvbHB6dHBiODNrQl9wNUU5enRiLUN0b2V6UlhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZaTI8DJa
ZZ6BRRO+FcDKJmTjpg5xGXNh0n6tL9x7DO68wRYriyNRLSjyxdRIu7tLSOPuobZs
7FCnzNEN5nz1aQwU4NsWc0Sk5V5cBbOdLd2toRK4FKCQDKxPO+4pYkhtbN/uLUQz
QgTfI6xUaFYLod+67/+7L4uj2tpB3kuM/O8Szc/rzw3QosvT5+DzCra2hVTeOzpZ
HR3QFHLwYHYKwQLFGNUf3ha6HOt8lsMmgSpVyFdNOBaIw00LaOhOk6tCZTEPFXnv
XUBhUakw1hZ9ezranqaGbyxCAH+uo9RlGrVWmCgV32UhlEBmoAh9zS+eSqVHr/ha
i/pdOo1a5Rx8tw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:46:12 2026 by rpki-client