Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
File: l37KDVyVbeF79pcQRvLrlc5hXik.mft (raw, json)
Hash identifier: aSsK7APUh0C27a8gWhpBL1pTE0/iQFGwFnXASG+hqTY=
Subject key identifier: EB:64:83:2C:06:31:6D:F7:C6:72:08:36:D7:D4:BE:D4:BE:D9:C7:84
Authority key identifier: 97:7E:CA:0D:5C:95:6D:E1:7B:F6:97:10:46:F2:EB:95:CE:61:5E:29
Certificate issuer: /CN=977eca0d5c956de17bf6971046f2eb95ce615e29
Certificate serial: 019CAB6BEF4CF0DB4F2DDFDF6F81ACA24759
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
Manifest number: 1843
Signing time: Sun 01 Mar 2026 22:01:43 +0000
Manifest this update: Sun 01 Mar 2026 22:01:43 +0000
Manifest next update: Mon 02 Mar 2026 22:01:43 +0000
Files and hashes: 1: l37KDVyVbeF79pcQRvLrlc5hXik.crl (hash: PKjzzWTt7Sbz7Fir6+LrFvZOtntWO+3bwN1C5JXjifE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:ef:4c:f0:db:4f:2d:df:df:6f:81:ac:a2:47:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977eca0d5c956de17bf6971046f2eb95ce615e29
Validity
Not Before: Mar 1 22:01:43 2026 GMT
Not After : Mar 2 22:01:43 2026 GMT
Subject: CN=eb64832c06316df7c6720836d7d4bed4bed9c784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d7:23:5e:e2:c3:9d:63:e1:02:97:5d:15:46:
1a:52:e3:1d:a1:ca:46:49:57:94:22:1b:17:ba:17:
c2:25:bd:be:5e:75:8c:8a:95:55:60:53:c1:7a:8e:
64:aa:11:a9:86:75:a9:7b:07:22:ba:26:76:4c:fd:
24:e8:42:03:60:63:be:5d:38:dd:4c:1e:b4:19:c8:
6a:07:5f:69:83:ff:d2:bf:bd:99:0a:d0:a0:9b:30:
25:58:63:5c:b7:8c:b4:5f:d4:b9:db:84:25:86:c0:
9e:bf:77:1c:d1:eb:9b:c7:00:ae:59:b3:9e:f2:2c:
48:37:c8:83:82:c3:04:d9:c4:19:15:66:f7:4e:8a:
93:16:0b:b9:5c:d1:d6:54:2d:71:a5:b7:d0:31:95:
3c:f4:37:9f:3b:30:e9:d8:78:52:0b:37:66:eb:5d:
cb:30:14:3a:32:b8:25:da:a0:45:ed:01:b1:21:ed:
9f:a9:46:9d:61:7f:1a:c0:38:1f:64:b5:b1:c3:68:
3d:a8:1f:13:45:86:6a:af:e3:86:eb:f5:b8:43:36:
59:ac:5f:99:ba:3f:c8:7a:91:a7:d6:64:78:1f:65:
19:9b:33:69:97:c3:63:b1:2e:e0:bc:b6:9e:de:4b:
2e:97:9b:eb:5a:b9:5e:dd:54:a4:a8:8e:00:04:07:
91:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:64:83:2C:06:31:6D:F7:C6:72:08:36:D7:D4:BE:D4:BE:D9:C7:84
X509v3 Authority Key Identifier:
keyid:97:7E:CA:0D:5C:95:6D:E1:7B:F6:97:10:46:F2:EB:95:CE:61:5E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:f2:92:61:9f:dc:5a:43:1d:54:5a:69:f4:6c:58:0f:9f:17:
58:77:0e:c9:75:91:2b:a4:f1:14:8d:8b:01:9e:6a:31:a9:ba:
e7:38:78:59:31:e3:6d:a4:1a:22:7d:18:54:14:ae:51:c0:d9:
32:98:6e:d3:d4:94:e9:2d:45:59:82:03:f0:8f:91:df:18:93:
2c:c1:6a:81:5b:0a:68:d1:cc:48:ac:40:9e:7a:d8:cd:26:4e:
32:dc:b5:01:0e:4c:52:29:c4:2c:8a:f6:8e:93:28:ba:0f:b6:
0b:ae:ca:ca:41:ad:76:81:ea:a9:01:da:33:3f:af:df:9a:fc:
29:67:06:e8:46:ec:3f:ab:84:1a:87:e9:2a:13:3d:78:75:f7:
ad:af:42:b2:61:a9:3a:ad:78:fd:59:bc:ca:45:d5:57:73:d5:
79:41:d5:a2:2f:e1:cb:ca:fe:da:65:20:8a:df:2a:f0:96:94:
10:07:a9:f0:a8:97:b7:0b:76:ad:f0:a6:63:36:82:4b:f4:b7:
dd:77:2f:7a:21:34:8a:ca:12:6c:26:68:e1:cc:b0:44:94:78:
c5:2f:3d:46:3c:46:08:63:a1:a4:c9:9b:68:15:29:92:5b:31:
20:d7:9b:52:91:82:40:52:42:12:fe:8c:ae:b4:2b:a0:8f:d7:
b4:ea:89:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:58:27 2026 by rpki-client