Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft
File: LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft (raw, json)
Hash identifier: Ltrqem+7sskx/2sPSuVwCYdfcmdAkm+A+HMQZaF3fng=
Subject key identifier: 6A:27:75:08:44:13:62:E2:F9:87:3A:2F:7B:89:37:18:1A:61:5E:28
Authority key identifier: 2F:32:52:07:D5:CE:E0:EC:EA:99:E4:70:24:53:40:7B:56:4C:39:CA
Certificate issuer: /CN=2f325207d5cee0ecea99e4702453407b564c39ca
Certificate serial: 019CAB6B8C9CA121719381BE0A0AF8BD5075
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft
Manifest number: 1842
Signing time: Sun 01 Mar 2026 22:01:18 +0000
Manifest this update: Sun 01 Mar 2026 22:01:18 +0000
Manifest next update: Mon 02 Mar 2026 22:01:18 +0000
Files and hashes: 1: LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl (hash: puRhL4NUBMIoi2He4oAyTo+U6NHsJLQPIeU1MmzfWhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft
rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:8c:9c:a1:21:71:93:81:be:0a:0a:f8:bd:50:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f325207d5cee0ecea99e4702453407b564c39ca
Validity
Not Before: Mar 1 22:01:18 2026 GMT
Not After : Mar 2 22:01:18 2026 GMT
Subject: CN=6a277508441362e2f9873a2f7b8937181a615e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:80:1f:5b:fa:6f:83:65:11:54:b5:72:94:9d:
5e:ef:b3:21:69:60:72:24:04:f4:ce:a0:63:ca:18:
8a:80:b7:5f:3f:7f:8c:62:65:48:70:89:58:2a:bc:
55:65:78:ac:08:26:35:36:28:51:88:ef:eb:6a:28:
3c:6f:84:aa:cb:02:0f:81:4e:f5:e9:a8:a6:5b:6c:
17:6e:03:1a:87:5f:40:e7:f3:c5:b2:0c:d8:7e:72:
21:83:c5:2b:d2:bd:8d:17:10:48:b7:5d:ce:eb:95:
8e:02:95:4a:26:f0:1d:72:e6:60:cb:b4:e8:a2:27:
96:96:ac:d4:13:8b:1b:3b:d3:9e:11:c7:74:22:6f:
a4:dc:1d:52:59:7b:9c:e5:02:31:d6:b9:09:8f:ed:
37:63:23:07:bf:d2:9c:f0:79:2c:7e:c0:57:1d:06:
b8:0e:58:7b:d7:1d:5e:42:71:28:6d:12:b4:e8:aa:
d0:64:22:dc:1b:7f:3f:99:67:b9:b9:3a:f4:a7:b4:
b0:79:e9:b6:59:35:d1:b6:2b:5c:11:b1:59:7d:dd:
76:86:ce:76:19:74:8e:4e:ed:d7:18:fe:10:54:41:
d4:f2:c5:b3:e8:66:70:6e:64:6d:cd:9b:1a:f4:93:
c3:ea:10:94:31:93:2b:8a:b0:86:1c:a6:68:30:5b:
e9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:27:75:08:44:13:62:E2:F9:87:3A:2F:7B:89:37:18:1A:61:5E:28
X509v3 Authority Key Identifier:
keyid:2F:32:52:07:D5:CE:E0:EC:EA:99:E4:70:24:53:40:7B:56:4C:39:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LzJSB9XO4OzqmeRwJFNAe1ZMOco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/4be2d7-9a42-4578-8b8b-90ae6d0c9b33/1/LzJSB9XO4OzqmeRwJFNAe1ZMOco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:7d:e1:f0:34:47:d0:9c:6a:83:ce:db:a1:bb:92:05:41:5c:
12:95:8a:d4:fb:51:0b:d4:84:3a:3b:f8:13:48:0c:be:6d:95:
41:eb:55:5c:49:7a:11:86:5f:fe:28:03:1f:ec:bc:d8:07:27:
d3:c4:e1:78:4a:40:fa:24:09:e3:89:87:d3:72:1e:14:03:f0:
d1:20:38:05:e2:86:01:44:84:47:93:50:7a:bb:ba:33:54:7c:
b0:e9:ad:c7:82:e2:d9:75:fc:2e:48:81:29:2e:1c:17:4e:6d:
d0:76:94:46:7c:e6:d5:2c:3c:ed:07:29:8d:56:d9:78:e4:cb:
c5:8c:30:a4:ee:5e:45:7a:47:cb:c2:7c:b4:c1:d4:8d:e3:d3:
a6:92:cf:c3:84:12:15:08:da:04:a5:ab:d9:42:95:f9:ec:c5:
95:53:de:4f:c5:91:f4:f0:7a:61:e4:a6:c0:45:a5:ca:8e:9e:
90:cb:46:0a:86:cf:dc:04:8d:8a:d8:a6:22:84:78:70:ba:22:
54:ef:92:46:c7:b2:ad:27:00:7f:b1:c7:dc:2f:8d:96:03:e3:
59:60:27:ca:98:1c:43:e4:0a:a5:8c:36:59:e0:4f:2c:86:22:
48:9c:33:83:5d:70:36:65:c8:54:61:b1:c7:30:51:30:9e:17:
ad:da:5d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:41:24 2026 by rpki-client