Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
File: LF3rfkKW4vu0wB_AZKH2gYlreXk.mft (raw, json)
Hash identifier: O3xdHi6EPf2TxxURMfe95Xtzd1PEK4/yuocEHI7hUY0=
Subject key identifier: 37:EA:E7:34:06:2A:E1:52:A0:21:1F:D8:BF:36:B4:BC:1A:75:C2:D5
Authority key identifier: 2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
Certificate issuer: /CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Certificate serial: 019EB7D78598A93A66A49AEF6EF0337380E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
Manifest number: 092D
Signing time: Thu 11 Jun 2026 18:00:15 +0000
Manifest this update: Thu 11 Jun 2026 18:00:15 +0000
Manifest next update: Fri 12 Jun 2026 18:00:15 +0000
Files and hashes: 1: LF3rfkKW4vu0wB_AZKH2gYlreXk.crl (hash: 1pYStDlf2M9tiD9sGkZWB24DUHpZK6RldS7GOKziSzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 18:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:d7:85:98:a9:3a:66:a4:9a:ef:6e:f0:33:73:80:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c5deb7e4296e2fbb4c01fc064a1f681896b7979
Validity
Not Before: Jun 11 18:00:15 2026 GMT
Not After : Jun 12 18:00:15 2026 GMT
Subject: CN=37eae734062ae152a0211fd8bf36b4bc1a75c2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:aa:82:aa:07:97:1d:3c:76:d8:43:86:9c:78:
78:50:ee:49:3e:7f:76:08:0b:4d:d2:51:87:ed:ea:
f7:d4:9d:23:60:ca:3b:ef:d5:e3:83:35:b4:a0:18:
cf:4c:78:b0:01:94:08:f0:35:9c:5e:df:a0:05:07:
a0:43:ba:05:ff:28:54:85:db:d4:53:d8:92:25:08:
fd:0a:c7:8c:0b:99:0e:96:92:3e:df:4a:62:9f:be:
28:c9:88:03:fd:0f:e7:e8:65:23:f5:3c:9b:1e:10:
db:03:c9:71:f3:11:71:35:50:03:9c:dd:f6:de:8b:
92:34:5e:3b:6d:f1:4e:c3:ef:ab:7e:c4:32:a8:4a:
4b:fd:3f:6b:ad:9f:3e:29:18:01:ac:01:b5:2c:e3:
f0:3d:6a:aa:52:65:ed:ba:2f:16:c5:b8:2f:de:ce:
3a:64:91:38:f6:4d:d4:50:a2:b3:a6:e3:0e:d3:e2:
ce:ec:b5:ee:fa:05:1c:dc:f2:34:ff:37:e1:0c:92:
fc:ce:98:e5:59:6d:7d:d0:02:bd:3f:08:4f:26:8e:
24:4f:2c:be:a6:df:e3:a3:b3:b5:3d:ef:79:40:2a:
9a:27:21:86:6f:68:a9:06:a9:a3:bd:be:d0:e8:6b:
ba:9d:39:c5:82:15:f5:59:c8:25:a0:64:c7:0a:8a:
9d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:EA:E7:34:06:2A:E1:52:A0:21:1F:D8:BF:36:B4:BC:1A:75:C2:D5
X509v3 Authority Key Identifier:
keyid:2C:5D:EB:7E:42:96:E2:FB:B4:C0:1F:C0:64:A1:F6:81:89:6B:79:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LF3rfkKW4vu0wB_AZKH2gYlreXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/99323e-01f6-4959-9816-a86ac561ab56/1/LF3rfkKW4vu0wB_AZKH2gYlreXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:29:28:2d:7b:cb:7c:8f:c2:51:79:5b:d0:cd:d4:c8:43:ad:
fe:2b:e0:be:9d:c9:b7:f3:70:24:86:e6:e1:26:62:d0:c6:e9:
30:f8:ee:b8:28:80:3f:d8:3a:d3:b0:2b:46:a2:21:38:d4:b7:
c4:3f:2b:2a:ee:1c:99:e7:c8:d6:cd:75:02:5b:99:14:e3:55:
80:5f:1d:f5:81:a9:1b:f0:a1:2b:31:a7:16:ae:9c:7e:35:82:
cb:23:3a:49:db:44:81:d2:91:33:d9:39:ce:f4:13:66:c1:38:
e8:51:55:61:23:23:6e:39:a2:dc:b7:12:5e:4c:70:c6:e3:09:
f0:80:59:03:92:12:01:b6:5f:04:51:80:14:fa:36:47:8c:9f:
93:62:2d:dd:ec:e4:4a:8a:1f:06:02:70:de:4b:60:c2:31:ef:
1b:c7:82:1c:f5:6c:04:d1:15:12:5c:51:ba:b3:be:c5:12:a1:
d3:93:bd:a6:2a:55:c0:69:ba:2f:ce:84:16:c8:aa:f6:11:04:
99:5e:ee:05:b1:c2:d0:5c:e2:03:64:ed:aa:bc:ed:3c:14:07:
2b:36:fd:9d:4e:f8:21:2f:67:fa:9c:1a:76:fa:da:01:d9:b5:
8f:1b:a1:5d:3c:a3:06:0d:e0:93:8f:d9:a8:16:83:71:f1:e9:
f3:14:7d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:49:11 2026 by rpki-client