Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
File: lbzyUZp7TPNY-2x4A5pb56GxMFs.mft (raw, json)
Hash identifier: zUvHOE0nomFGvhhGhJv6LBq5c8/s+MgmXa2aN26nWtM=
Subject key identifier: 5F:C9:50:D1:1D:CB:35:12:87:89:F6:E8:A7:8D:7B:31:0B:D4:60:69
Authority key identifier: 95:BC:F2:51:9A:7B:4C:F3:58:FB:6C:78:03:9A:5B:E7:A1:B1:30:5B
Certificate issuer: /CN=95bcf2519a7b4cf358fb6c78039a5be7a1b1305b
Certificate serial: 019CAB6B532896C9214105FB1D44440DF47C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
Manifest number: 071D
Signing time: Sun 01 Mar 2026 22:01:03 +0000
Manifest this update: Sun 01 Mar 2026 22:01:03 +0000
Manifest next update: Mon 02 Mar 2026 22:01:03 +0000
Files and hashes: 1: lbzyUZp7TPNY-2x4A5pb56GxMFs.crl (hash: gIhIpw6n2WDXfIH4A/6e98FTMEm0tOBeJMmf5rlZaE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:53:28:96:c9:21:41:05:fb:1d:44:44:0d:f4:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95bcf2519a7b4cf358fb6c78039a5be7a1b1305b
Validity
Not Before: Mar 1 22:01:03 2026 GMT
Not After : Mar 2 22:01:03 2026 GMT
Subject: CN=5fc950d11dcb35128789f6e8a78d7b310bd46069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e5:bb:1c:90:0b:30:68:d5:1d:c8:6c:80:29:
4f:a4:29:6c:ef:80:23:9b:b8:89:fa:7a:46:8a:f5:
0b:a7:e0:4d:b0:f9:c6:d3:62:9c:3a:be:40:30:e2:
ea:05:c2:93:7c:21:3c:92:5f:df:dc:71:3b:bd:bf:
f7:2f:93:5f:11:30:0e:85:a7:c9:ec:53:d2:8b:01:
dc:08:55:82:b7:5c:b1:c9:4c:9d:e1:bb:49:c9:0d:
c0:1e:36:f9:03:58:f6:9d:53:53:f5:49:9f:5d:94:
9d:bb:0c:ea:53:6f:f0:ef:e8:98:fa:d9:66:95:2c:
93:2f:f3:60:c1:80:eb:ee:0c:db:f4:54:07:c1:0e:
08:1d:68:f9:4e:fd:ac:1d:fe:a5:92:d1:3f:5f:3a:
e8:16:15:40:d8:64:bb:50:fb:9b:87:ca:2c:da:bc:
50:3c:cd:d2:74:26:43:d3:a8:e1:da:4f:c6:f0:52:
d9:0c:37:3f:96:91:88:30:f9:01:78:4e:fc:46:50:
62:c6:e1:d8:d9:da:90:9a:ae:f3:e2:10:c3:c2:56:
89:fc:42:7c:a0:19:47:5f:4d:09:3a:71:33:a2:79:
c2:67:1f:5b:0b:74:7a:dc:5a:ce:f6:1d:95:7d:0c:
64:5d:51:97:39:b0:ec:62:39:3a:ac:57:e5:f0:0f:
08:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C9:50:D1:1D:CB:35:12:87:89:F6:E8:A7:8D:7B:31:0B:D4:60:69
X509v3 Authority Key Identifier:
keyid:95:BC:F2:51:9A:7B:4C:F3:58:FB:6C:78:03:9A:5B:E7:A1:B1:30:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbzyUZp7TPNY-2x4A5pb56GxMFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ef9a4e-790e-4ece-a845-25ccf32739a2/1/lbzyUZp7TPNY-2x4A5pb56GxMFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:7b:17:40:fd:34:a4:a2:18:37:f1:e0:d3:78:72:22:77:eb:
86:28:77:5a:59:37:56:69:27:70:6c:fb:27:a0:ea:a2:6b:8c:
64:d6:4c:4e:c2:b0:5d:66:aa:81:3d:4c:36:6d:39:35:61:72:
ed:42:15:4f:42:f1:63:ad:76:e6:8d:69:47:b5:3b:e3:09:79:
bd:9e:c6:35:2c:fe:eb:63:64:b7:8c:2b:0b:3c:a7:97:b7:c4:
b1:bb:dc:e0:89:c4:3d:47:0e:6c:02:e3:c3:09:41:b8:2b:29:
e8:56:b5:56:be:cd:b0:f7:00:0a:fc:43:13:46:9c:3d:05:48:
5e:60:65:57:15:d0:90:e9:dd:7c:43:2b:f6:bb:e8:d8:50:b3:
c6:cd:60:4a:d1:26:52:78:fb:6f:76:d7:49:a9:8e:66:49:22:
6e:78:30:67:ed:92:56:cf:d7:0e:ee:38:26:72:89:a1:89:61:
9e:be:ce:4d:85:e4:04:46:d0:fd:aa:2f:fc:bd:11:81:a0:a7:
b6:00:6d:08:a7:bd:06:67:aa:42:ec:f0:a9:a5:87:e2:2f:fa:
90:90:b2:bc:65:53:29:95:f8:f2:76:ed:23:43:f3:47:4b:ea:
da:c0:58:ad:d9:99:d4:f8:44:2d:f7:bb:87:74:1e:23:37:d8:
e8:50:e0:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:49:22 2026 by rpki-client