Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft
File: lPO2Epw0Od376Q21BkyAZt6GSnI.mft (raw, json)
Hash identifier: ZG3oL27YUJ1dD/aBA3xAPrVwRwpEvnZV4LYNTiiqnak=
Subject key identifier: FF:31:04:C1:70:B8:FB:70:D5:AB:A0:40:92:D3:3C:D8:98:56:6D:63
Authority key identifier: 94:F3:B6:12:9C:34:39:DD:FB:E9:0D:B5:06:4C:80:66:DE:86:4A:72
Certificate issuer: /CN=94f3b6129c3439ddfbe90db5064c8066de864a72
Certificate serial: 019CA9EB4F408392815896076CA074C68C34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPO2Epw0Od376Q21BkyAZt6GSnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft
Manifest number: 0759
Signing time: Sun 01 Mar 2026 15:01:36 +0000
Manifest this update: Sun 01 Mar 2026 15:01:36 +0000
Manifest next update: Mon 02 Mar 2026 15:01:36 +0000
Files and hashes: 1: lPO2Epw0Od376Q21BkyAZt6GSnI.crl (hash: y44puIK3kl55d+xVWIC34vlSjRBTIsFmdkewPbbpzNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPO2Epw0Od376Q21BkyAZt6GSnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:eb:4f:40:83:92:81:58:96:07:6c:a0:74:c6:8c:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94f3b6129c3439ddfbe90db5064c8066de864a72
Validity
Not Before: Mar 1 15:01:36 2026 GMT
Not After : Mar 2 15:01:36 2026 GMT
Subject: CN=ff3104c170b8fb70d5aba04092d33cd898566d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:0b:05:da:25:ad:58:5f:b2:85:f6:9f:8e:
49:bc:fa:d9:bb:42:52:88:0e:24:ba:c4:19:40:86:
40:83:33:4f:cc:09:16:8f:94:3f:44:3e:68:d6:ec:
fb:fa:ab:15:24:c5:f2:d5:3b:9a:d5:f9:b1:32:18:
6a:7a:cc:45:0c:1f:2c:40:61:cd:9f:72:67:e1:58:
ca:77:d1:0e:b9:7f:db:e7:3f:09:c3:01:1c:83:fa:
39:07:39:6b:7e:29:06:16:13:b3:b6:d3:57:32:c6:
ea:ed:c7:95:2d:9a:3b:da:ec:5f:5b:fe:e7:c7:2f:
d6:92:e5:6f:40:b3:aa:44:7a:90:6f:c4:5f:11:bd:
bf:cd:ba:a7:dd:72:4e:3d:74:df:00:7f:84:84:d7:
f7:5d:dc:4f:a3:49:e4:4d:c6:eb:08:12:1b:02:80:
8e:6e:3b:ab:82:bf:2d:21:6c:d7:92:49:3f:b0:fb:
84:2b:91:3e:6b:0d:4a:03:bb:47:46:7a:25:a2:05:
de:60:c3:c8:86:a7:a9:47:ae:a2:06:d8:02:95:d8:
6f:ac:cc:f3:aa:0f:01:be:be:57:07:a7:ec:29:64:
f8:71:50:96:dc:f8:d5:a4:fc:9b:49:9b:3c:39:88:
eb:17:10:24:ea:18:c3:49:76:54:1c:9b:75:37:9a:
95:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:31:04:C1:70:B8:FB:70:D5:AB:A0:40:92:D3:3C:D8:98:56:6D:63
X509v3 Authority Key Identifier:
keyid:94:F3:B6:12:9C:34:39:DD:FB:E9:0D:B5:06:4C:80:66:DE:86:4A:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPO2Epw0Od376Q21BkyAZt6GSnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d43572-ad91-44ad-afa1-b3382e4aa7c3/1/lPO2Epw0Od376Q21BkyAZt6GSnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:bc:50:ef:87:80:a8:45:bb:4e:92:fc:8a:7e:5b:3c:37:24:
91:d5:e9:9b:69:1f:80:49:01:a8:bd:93:36:9f:4e:d8:54:a9:
f3:71:85:cb:19:08:bf:d7:d3:3e:9f:c5:3c:87:d3:f8:db:96:
49:0c:a1:f0:9e:a3:2c:93:35:bd:6c:72:9d:6a:9e:1f:b7:ff:
63:2d:68:f9:e4:a6:3d:33:a2:91:5c:66:20:b0:11:d4:22:a8:
f3:c4:19:df:2e:98:ce:03:54:a0:e8:ea:40:7e:55:52:de:84:
c9:1a:8a:d4:20:fe:21:51:61:1e:6e:c7:1b:27:bd:ad:25:92:
4e:1d:35:65:19:a6:4a:86:ad:ea:bc:4d:d0:f9:1d:74:23:50:
e7:36:e9:a0:dd:e2:06:0c:83:4d:af:33:39:14:f2:e0:f1:c2:
82:94:b9:e5:9f:de:49:0b:9e:3f:d2:d0:83:65:0e:ac:e4:a3:
dc:43:91:4f:09:28:f1:f0:20:e3:e1:5f:de:67:17:0e:91:1a:
8f:02:2c:bb:b9:73:dd:6a:5f:7e:a4:13:06:fb:84:e7:e3:42:
61:bc:a8:55:5b:50:67:d9:68:b6:e7:6f:24:e3:67:25:fc:43:
8b:2e:89:3f:d8:99:9b:f0:97:3a:b7:9b:b3:8a:1c:77:31:d4:
0a:fd:05:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:47:42 2026 by rpki-client