Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/a7011a-6e15-4e9b-ba9e-32d79cc49f22/1/l0mtdlnaE07UgHT025NBzodRffQ.mft
File: l0mtdlnaE07UgHT025NBzodRffQ.mft (raw, json)
Hash identifier: +BR+EAdtzWaXgGthMqAoaAI4Ina0fYBvo/JIcU3nNrI=
Subject key identifier: 97:95:7A:51:D1:03:D7:05:7A:D5:E9:E0:DC:04:8B:43:91:14:6F:CD
Authority key identifier: 97:49:AD:76:59:DA:13:4E:D4:80:74:F4:DB:93:41:CE:87:51:7D:F4
Certificate issuer: /CN=9749ad7659da134ed48074f4db9341ce87517df4
Certificate serial: 019CA90EE29CCBE57D1A6E1C8E152BA977A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0mtdlnaE07UgHT025NBzodRffQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/a7011a-6e15-4e9b-ba9e-32d79cc49f22/1/l0mtdlnaE07UgHT025NBzodRffQ.mft
Manifest number: 1547
Signing time: Sun 01 Mar 2026 11:00:50 +0000
Manifest this update: Sun 01 Mar 2026 11:00:50 +0000
Manifest next update: Mon 02 Mar 2026 11:00:50 +0000
Files and hashes: 1: l0mtdlnaE07UgHT025NBzodRffQ.crl (hash: ztfmGm7ARDccpmIQ+qqlKZ1Vuz3V7M8tbW1RgF5o8nM=)
2: mv-gyPT3AAUqYw5fkKue_M69yD0.asa (hash: pG0VFppChD1L8nts7G+N3RIXaIJY8yOyzeP60c1h49M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/a7011a-6e15-4e9b-ba9e-32d79cc49f22/1/l0mtdlnaE07UgHT025NBzodRffQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/a7011a-6e15-4e9b-ba9e-32d79cc49f22/1/l0mtdlnaE07UgHT025NBzodRffQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/l0mtdlnaE07UgHT025NBzodRffQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:0e:e2:9c:cb:e5:7d:1a:6e:1c:8e:15:2b:a9:77:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9749ad7659da134ed48074f4db9341ce87517df4
Validity
Not Before: Mar 1 11:00:50 2026 GMT
Not After : Mar 2 11:00:50 2026 GMT
Subject: CN=97957a51d103d7057ad5e9e0dc048b4391146fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:eb:05:fb:ec:db:51:27:97:49:e9:05:7e:e6:
16:57:84:31:67:14:79:ca:a1:44:c1:5d:fb:35:05:
59:0b:29:ec:b4:30:17:a6:8f:e9:29:2a:42:87:4e:
89:39:fe:34:ed:76:25:06:39:13:c8:f7:d9:2d:45:
db:58:48:a4:43:68:e3:a8:f6:6e:2f:bc:57:3f:9b:
f8:10:cd:30:fc:8a:ac:6d:6f:fa:73:7f:b9:a2:5e:
c0:89:f2:79:4e:c0:ef:54:5d:be:13:93:21:e1:f2:
68:c3:96:cc:b2:10:b2:fb:5d:5e:4a:16:e5:36:ad:
d0:07:2d:e4:95:12:89:c2:65:5f:9d:4d:43:37:0e:
cd:c7:da:d4:9b:64:15:24:aa:06:4c:3b:c1:13:d6:
42:92:c9:1d:f7:a1:ea:ea:cc:dc:11:56:dd:af:a2:
72:52:cc:e2:42:c0:18:04:b9:ea:22:21:c7:15:51:
b1:02:84:8e:3b:e5:cf:fa:af:60:48:08:d3:8f:9d:
6a:ee:2c:d7:ab:81:d6:8b:27:98:ba:cf:a9:92:5e:
e0:31:77:ac:e5:52:1e:8a:a9:73:3f:29:04:27:78:
c4:c9:0c:5b:f5:c3:d0:a2:23:a1:93:e0:18:e9:4d:
d5:6d:a1:91:31:42:6e:0e:da:6a:12:90:be:94:8b:
47:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:95:7A:51:D1:03:D7:05:7A:D5:E9:E0:DC:04:8B:43:91:14:6F:CD
X509v3 Authority Key Identifier:
keyid:97:49:AD:76:59:DA:13:4E:D4:80:74:F4:DB:93:41:CE:87:51:7D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0mtdlnaE07UgHT025NBzodRffQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/a7011a-6e15-4e9b-ba9e-32d79cc49f22/1/l0mtdlnaE07UgHT025NBzodRffQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/a7011a-6e15-4e9b-ba9e-32d79cc49f22/1/l0mtdlnaE07UgHT025NBzodRffQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:f2:89:f9:7b:cb:a3:54:6d:38:ff:af:23:ba:b9:11:65:37:
87:68:f4:bb:0b:78:28:6b:2e:25:ac:46:96:09:66:f2:6f:b2:
76:cb:64:d0:df:44:c7:35:f2:8c:93:40:b2:dd:d3:f9:80:43:
7f:b0:b1:46:66:07:c3:78:b5:da:3b:d1:ea:d6:ce:d8:ee:11:
17:d3:95:5d:90:5e:29:06:43:77:b5:1e:44:4f:2b:6c:07:e4:
84:e1:96:6b:7b:6a:cf:09:49:17:b0:dc:9e:98:6f:f6:ca:9f:
48:77:9d:20:24:20:50:6a:13:4f:08:96:e5:68:66:fd:2a:4a:
3a:f0:42:3d:2b:36:42:5e:87:9f:e4:f4:4c:89:15:f9:04:e5:
3a:32:03:a2:e5:0d:f1:50:4c:ca:92:a4:69:9d:99:09:b5:d9:
29:62:7c:b5:3d:9b:8a:10:f7:76:a4:58:a6:0b:35:2f:61:09:
4e:c7:dd:e4:46:86:fd:f0:04:d0:ad:a5:6b:a8:b9:5a:11:75:
c1:b3:22:67:f1:f1:72:d2:2d:ec:05:39:74:29:2d:10:a3:1d:
1d:79:fc:90:5c:c2:f2:fc:48:36:64:84:30:f4:2c:46:bb:38:
c0:f4:e5:18:c4:b4:d0:83:21:80:14:bf:a0:ef:35:20:4c:fc:
56:57:93:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:20:34 2026 by rpki-client