Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
File: lpztpb83kB_p5E9ztb-CtoezRXI.mft (raw, json)
Hash identifier: dAYu7U/HathkwpXgCROOKsDyC1knG2IxhaSrTC3bnGk=
Subject key identifier: EA:08:4A:FA:FE:DD:52:2C:4E:86:C8:60:23:7E:F7:5A:39:23:51:FB
Authority key identifier: 96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
Certificate issuer: /CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Certificate serial: 019CAA5905FA201CB4FF4A2EB779AE99686D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
Manifest number: 0CEB
Signing time: Sun 01 Mar 2026 17:01:26 +0000
Manifest this update: Sun 01 Mar 2026 17:01:26 +0000
Manifest next update: Mon 02 Mar 2026 17:01:26 +0000
Files and hashes: 1: 5tq-dphgnapNG8uID0bzWyuSiiI.roa (hash: Geh8HxvdWtRdjQA8GTRZhRKQeMt/TQkbrTaKQX7hwuM=)
2: SNXaMmatRq7Y2yZacERGh_Byx3c.roa (hash: 1VfAG/PWe9ADh3l7lJxuP3CaKheNhNOZc9+mMKVHmsc=)
3: aeJRC_Zrs1Xdsza3m-Bp94bJ1dk.roa (hash: 31o9/oasTnGfM4n9yp1biNvrc9x/A8EYFBmDcG491Fg=)
4: lpztpb83kB_p5E9ztb-CtoezRXI.crl (hash: 2UGgCpM4656FIbA5cqA2gxs/Uh+RwncMJXFjC0fLeyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:59:05:fa:20:1c:b4:ff:4a:2e:b7:79:ae:99:68:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969ceda5bf37901fe9e44f73b5bf82b687b34572
Validity
Not Before: Mar 1 17:01:26 2026 GMT
Not After : Mar 2 17:01:26 2026 GMT
Subject: CN=ea084afafedd522c4e86c860237ef75a392351fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b5:0b:ce:0c:17:a7:23:ab:1f:ef:ea:ad:e8:
bd:4a:db:44:ce:5d:ae:b8:b2:35:df:f0:2b:33:25:
8c:78:96:89:93:53:5f:7b:e2:ee:21:15:01:4b:d3:
04:43:12:0d:f1:5a:04:dc:e8:8a:9f:c0:70:f6:9f:
02:98:8e:c0:72:f0:23:e1:8e:72:97:ae:c7:10:9d:
31:64:d1:24:cb:63:a5:71:ac:92:cd:de:c3:60:e3:
e1:c4:7b:20:c3:50:ea:79:24:87:9e:0c:4a:51:49:
55:fa:e2:aa:87:5e:cd:f1:f1:ff:72:1a:1f:18:f1:
ea:85:d4:a3:76:ee:28:13:31:7d:6a:b3:45:5c:ed:
f8:10:34:23:b1:c0:b9:05:8a:43:41:81:74:01:d9:
de:ff:a5:46:8e:26:47:9c:1f:2a:75:a5:1d:8a:37:
2b:1e:a0:72:40:ea:20:ce:dc:ff:c5:9d:64:31:01:
56:a7:67:fa:83:71:18:72:20:5a:34:60:91:d7:86:
4c:20:99:82:c3:0b:ec:36:ac:ee:bf:8e:79:0c:bd:
82:08:04:28:13:1c:82:c3:ec:3f:0a:86:27:a3:9f:
a8:30:2c:26:31:69:6d:04:b4:c4:ea:ed:d3:a6:7f:
6f:59:47:94:a1:33:5e:3f:6f:ff:79:2d:d0:1e:71:
5d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:08:4A:FA:FE:DD:52:2C:4E:86:C8:60:23:7E:F7:5A:39:23:51:FB
X509v3 Authority Key Identifier:
keyid:96:9C:ED:A5:BF:37:90:1F:E9:E4:4F:73:B5:BF:82:B6:87:B3:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lpztpb83kB_p5E9ztb-CtoezRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/5cffd2-b568-4d55-a124-21fc9afc8ac1/1/lpztpb83kB_p5E9ztb-CtoezRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:63:bb:f7:eb:2f:0c:f2:84:ca:fa:42:32:99:24:36:2c:c6:
bf:90:86:83:9e:71:89:3b:96:1a:57:85:e3:1e:2d:88:e8:11:
94:86:1c:40:5b:eb:d1:05:48:6c:f2:d3:c9:f9:ae:30:58:e9:
08:b2:5d:ad:a8:51:af:73:94:8d:5a:6b:1b:8c:85:a5:02:9c:
a5:21:01:83:b9:21:20:8c:93:ff:73:22:bc:5a:0e:b1:21:81:
03:a6:84:22:b4:12:e9:6a:11:d2:10:89:d4:6d:dd:30:db:a2:
a7:b5:12:93:c0:07:86:89:32:b8:46:5e:4a:fb:28:07:a2:52:
87:92:96:33:e4:50:0f:ec:bf:cc:e8:4d:80:c8:23:5c:5e:fb:
88:9e:fd:56:5c:5f:0b:28:6a:f9:de:99:a3:97:32:79:bd:d9:
c2:14:32:15:a0:58:ad:6c:0a:10:19:b0:5a:75:fc:09:ae:0a:
4b:25:6c:43:19:e7:9f:91:23:7e:bd:92:36:81:01:04:19:5c:
28:06:20:33:84:54:2d:bb:a7:18:13:40:04:fc:14:e0:43:c1:
d0:3d:77:a6:40:18:14:77:1e:26:33:fa:29:16:cb:62:15:23:
27:9e:43:ba:3b:4c:72:57:f9:7e:03:f6:fa:6e:db:91:8d:70:
08:76:c1:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:48:29 2026 by rpki-client