Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
File: Lr_2z7gya0RylaEbEHhoIS5mX90.mft (raw, json)
Hash identifier: PzWHo5JznuprJa0tt7NHokTMaxn7m8aIKkAQ0nG0jQs=
Subject key identifier: C6:C7:EA:18:23:F1:63:1E:D1:AE:43:A7:AC:A7:06:B8:AB:A7:3F:03
Authority key identifier: 2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD
Certificate issuer: /CN=2ebff6cfb8326b447295a11b107868212e665fdd
Certificate serial: 019D39779F2789831232D4F317AF22110958
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
Manifest number: 0970
Signing time: Sun 29 Mar 2026 12:00:33 +0000
Manifest this update: Sun 29 Mar 2026 12:00:33 +0000
Manifest next update: Mon 30 Mar 2026 12:00:33 +0000
Files and hashes: 1: Lr_2z7gya0RylaEbEHhoIS5mX90.crl (hash: F7q3TfiFzjVEmqcHsNzI8Fb1nPqh/fUsMDq94VU339g=)
2: wRkYU-8UwR69v9239dh2hReiLIk.roa (hash: qk1tAsneRLOzj3I71YrKf4Qz3NDzdsyT/yJUXhc7iYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 12:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:9f:27:89:83:12:32:d4:f3:17:af:22:11:09:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ebff6cfb8326b447295a11b107868212e665fdd
Validity
Not Before: Mar 29 12:00:33 2026 GMT
Not After : Mar 30 12:00:33 2026 GMT
Subject: CN=c6c7ea1823f1631ed1ae43a7aca706b8aba73f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:78:e4:77:c2:29:14:62:07:78:5c:d8:7d:12:
53:3e:d2:2e:03:05:db:34:f0:15:bc:51:fe:4a:0d:
c5:5a:e0:a4:0c:f6:6b:ba:48:20:e4:a7:f4:58:4c:
7b:29:ce:b0:a9:b9:43:55:df:0b:6a:27:09:5f:89:
1b:5f:c0:79:a4:94:f9:ba:3a:45:b7:fb:21:f3:fd:
65:30:f3:99:ea:02:30:af:32:87:1a:9b:6a:ae:fc:
84:67:21:ce:f6:34:f9:9d:77:a8:91:c8:85:c5:ae:
69:9f:1f:05:11:57:7f:30:54:08:9c:1e:45:44:17:
e0:32:26:f5:51:32:cd:ff:3d:71:24:6a:c2:e0:d4:
e3:50:01:71:b0:1d:23:ff:a1:ec:00:02:2b:4a:6d:
7d:d7:db:78:5e:04:db:81:cc:d2:b2:0e:25:ae:b1:
a2:79:6f:d4:88:b2:aa:84:7c:c6:c0:4e:36:a5:22:
64:4a:74:04:db:c2:9b:4d:41:94:b1:cc:ce:c4:f6:
18:5a:16:9c:95:3c:51:10:b2:9a:01:16:2f:d0:cb:
b7:a4:12:c4:35:a6:ed:e2:1b:24:46:60:16:fa:de:
0d:a2:51:fa:22:80:3a:6a:05:5c:64:2b:8e:3f:db:
5f:a5:35:a1:94:58:46:46:f9:65:f4:a9:01:ae:44:
88:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:C7:EA:18:23:F1:63:1E:D1:AE:43:A7:AC:A7:06:B8:AB:A7:3F:03
X509v3 Authority Key Identifier:
keyid:2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:30:f4:5f:7b:ed:e9:e2:84:0b:7c:6c:be:80:6e:e3:bd:e2:
22:dc:31:45:8f:b1:51:36:5a:d7:d5:2f:67:6f:66:e1:d7:93:
87:8e:be:bd:d8:86:d0:15:62:64:7a:92:ce:ba:bd:09:52:1f:
3b:14:4d:1b:d6:ef:2c:e7:b3:81:34:ba:1f:6d:2c:68:99:d2:
ce:cf:0d:b3:8d:3a:c6:1f:ff:29:6d:c9:20:50:2f:dd:a4:09:
5b:31:56:78:8f:ae:5a:f8:94:9d:b3:95:56:c4:cb:7e:ac:05:
9f:92:ea:f6:f2:84:cb:c4:54:60:14:7c:2c:93:2b:96:c6:23:
01:e9:c0:5e:66:25:4d:fe:80:d2:4e:13:de:c0:eb:2c:19:3a:
a9:86:1c:10:c5:8e:41:2d:4b:8a:7d:f0:18:2a:a0:0f:18:2b:
00:f6:ba:44:9c:12:02:58:eb:54:d2:43:95:be:80:96:8f:0d:
fe:f6:44:c4:c3:00:e2:c1:bf:d2:67:fc:17:b7:41:81:32:9d:
f2:47:2b:9a:96:d5:29:cd:99:3b:b3:a2:a5:a7:36:b5:8b:7b:
86:b5:e8:19:64:ca:f9:de:63:de:2c:45:6f:0f:e6:aa:7b:b2:
33:a8:d9:f6:be:ef:7c:6a:63:b0:a9:d5:6d:29:5b:83:2f:7b:
67:c2:ea:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:56:08 2026 by rpki-client