Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
File: lbzyUZp7TPNY-2x4A5pb56GxMFs.mft (raw, json)
Hash identifier: yE1tb21azlY0uX2BGPm57IyT53LDkMxXMlee8LgMdzs=
Subject key identifier: 25:24:46:89:A9:9A:E8:07:8D:AE:9B:6C:1C:19:2D:A8:0F:EC:FB:06
Authority key identifier: 95:BC:F2:51:9A:7B:4C:F3:58:FB:6C:78:03:9A:5B:E7:A1:B1:30:5B
Certificate issuer: /CN=95bcf2519a7b4cf358fb6c78039a5be7a1b1305b
Certificate serial: 019D98F498733F04B8D82F0760685908C7C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
Manifest number: 0798
Signing time: Fri 17 Apr 2026 01:00:59 +0000
Manifest this update: Fri 17 Apr 2026 01:00:59 +0000
Manifest next update: Sat 18 Apr 2026 01:00:59 +0000
Files and hashes: 1: lbzyUZp7TPNY-2x4A5pb56GxMFs.crl (hash: l2KD4Xri9mZOm4vJuBVyUitdAJGgDCLsa213+NoxMoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:98:73:3f:04:b8:d8:2f:07:60:68:59:08:c7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95bcf2519a7b4cf358fb6c78039a5be7a1b1305b
Validity
Not Before: Apr 17 01:00:59 2026 GMT
Not After : Apr 18 01:00:59 2026 GMT
Subject: CN=25244689a99ae8078dae9b6c1c192da80fecfb06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:07:80:80:9c:6c:e9:44:c3:b9:4c:c2:2e:88:
b5:2d:45:ad:8f:92:3d:5c:6b:c8:08:83:9c:fe:6c:
7f:c9:c3:1e:00:21:7f:cd:db:6d:f7:70:0c:19:1c:
16:58:62:76:86:37:73:76:26:3e:9a:8f:6b:6d:a5:
aa:d4:c3:76:bc:c2:b7:33:a4:44:40:88:e7:09:86:
c3:e7:2c:8c:79:aa:75:98:2d:34:91:d6:5c:49:f0:
f2:92:fc:dc:7c:0e:84:dd:af:39:6a:5b:d2:67:bf:
a0:33:c5:c2:2b:bd:66:d8:db:40:90:69:39:c9:57:
7b:6f:44:c9:f1:5b:fa:4a:98:2b:1d:52:20:db:57:
03:62:d7:78:20:e7:d2:0f:b5:40:63:22:df:10:bd:
02:1b:64:b4:7a:70:7d:b8:b1:9e:3b:b9:77:42:7c:
f5:2d:83:76:44:31:3b:4f:49:86:60:e3:3e:07:75:
d4:74:fa:b6:d4:4a:e0:58:e0:1f:08:fe:a3:35:23:
32:b9:96:a8:27:b3:8c:7a:b3:f8:62:50:2e:95:d8:
74:83:71:c4:fc:68:ea:24:77:39:47:26:33:5b:26:
2c:83:a8:90:d0:d9:a9:fe:56:d4:ca:c6:c0:9d:14:
0c:1c:2d:2e:a7:d2:c8:bd:a0:c3:03:6d:23:5b:d2:
87:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:24:46:89:A9:9A:E8:07:8D:AE:9B:6C:1C:19:2D:A8:0F:EC:FB:06
X509v3 Authority Key Identifier:
keyid:95:BC:F2:51:9A:7B:4C:F3:58:FB:6C:78:03:9A:5B:E7:A1:B1:30:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:0f:d3:88:80:10:03:30:07:1a:6d:2a:d6:95:ce:a8:90:01:
5f:7f:75:d3:d6:c0:ab:12:cc:a9:29:ea:8d:61:c1:e7:58:95:
89:b2:33:f3:8c:8d:63:4a:70:08:33:b8:6e:1f:ee:54:7a:25:
e4:26:ee:a2:5c:67:2e:0f:d9:89:8c:8e:1b:fb:70:2b:17:98:
bc:72:df:f2:65:48:77:07:c5:e7:1c:a6:fb:b6:57:3a:0c:86:
7e:44:1e:5a:9b:6b:c6:5b:d2:87:45:58:9e:9e:de:76:e3:55:
86:48:59:ba:32:73:06:e5:eb:79:42:05:d8:bf:e8:e7:f1:89:
1c:1b:9b:5d:35:be:1c:74:15:ca:fe:e1:38:fe:dc:b9:83:6c:
a2:59:b9:94:c6:3f:a1:62:26:72:9b:73:a3:0e:52:fe:1a:dc:
d4:40:1f:1f:43:64:c1:e8:97:0d:83:9c:bd:ea:ea:54:ea:3e:
fa:f2:91:d3:f3:c1:47:1e:ed:37:7e:cf:e0:da:36:33:d3:04:
c3:40:01:c1:30:af:89:68:36:5c:18:d1:85:81:4c:4e:db:53:
67:5e:be:9c:ce:85:e5:52:3e:ec:4f:04:4c:33:90:43:c6:ce:
37:26:ea:9f:3c:c1:c6:68:2f:b4:30:fe:7a:85:c6:10:1a:38:
a6:af:20:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:33:29 2026 by rpki-client