Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
File: l37KDVyVbeF79pcQRvLrlc5hXik.mft (raw, json)
Hash identifier: jBB5+u5Bz+UEg06+Ive/frxIxtob9/vSzd1Cjbl/ZtY=
Subject key identifier: 7F:1C:34:55:82:9C:92:9C:C2:D4:40:C3:6E:89:ED:B9:6F:11:75:49
Authority key identifier: 97:7E:CA:0D:5C:95:6D:E1:7B:F6:97:10:46:F2:EB:95:CE:61:5E:29
Certificate issuer: /CN=977eca0d5c956de17bf6971046f2eb95ce615e29
Certificate serial: 019D2703CAEFC4BD0C2C03B6F033ED88575C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
Manifest number: 1883
Signing time: Wed 25 Mar 2026 22:00:53 +0000
Manifest this update: Wed 25 Mar 2026 22:00:53 +0000
Manifest next update: Thu 26 Mar 2026 22:00:53 +0000
Files and hashes: 1: l37KDVyVbeF79pcQRvLrlc5hXik.crl (hash: AyYUzQcg6uWjl9xX/QyVihh2jwLfPQ+SO8IbWa5V3hc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:ca:ef:c4:bd:0c:2c:03:b6:f0:33:ed:88:57:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977eca0d5c956de17bf6971046f2eb95ce615e29
Validity
Not Before: Mar 25 22:00:53 2026 GMT
Not After : Mar 26 22:00:53 2026 GMT
Subject: CN=7f1c3455829c929cc2d440c36e89edb96f117549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7b:32:c1:a8:1b:21:44:dc:cb:55:4a:7c:5b:
b5:ec:60:76:9f:23:0c:51:d6:14:ce:71:14:4c:95:
7c:f3:54:81:13:4e:01:94:45:a9:ac:bf:6c:65:b8:
59:28:b0:2d:0e:b0:7b:29:37:aa:9d:68:3d:42:3b:
00:29:e0:50:71:47:c9:4d:f0:a8:6c:7c:c1:00:20:
46:f2:21:3f:b1:63:f3:88:3c:50:c6:2f:59:6f:b7:
03:8d:ab:44:3f:23:a5:14:05:98:8f:1a:7f:79:4f:
7d:c5:ab:fe:4b:86:55:a6:03:70:80:34:dd:03:9e:
db:83:8e:8b:02:d0:36:2d:6c:67:25:73:ca:9f:7a:
37:34:cc:4c:cb:38:27:5d:47:70:6e:4f:8d:ce:74:
82:d5:4d:b8:10:27:ab:7c:02:5e:49:22:9d:ef:b8:
d3:73:41:95:45:b6:86:76:57:8f:04:dc:f5:af:4d:
a5:05:3e:17:67:91:74:a5:8a:b9:9d:1e:f8:cb:71:
6d:20:b3:31:15:5d:c4:81:ef:24:4c:74:ba:2f:cf:
dc:f7:b2:1a:02:b2:3f:6d:53:21:6a:d7:0a:4f:43:
7c:e4:18:7b:9c:a1:b7:07:83:5f:e2:37:bb:60:7c:
18:89:9a:26:4c:f6:0a:db:67:1b:a3:68:a1:f6:da:
d7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:1C:34:55:82:9C:92:9C:C2:D4:40:C3:6E:89:ED:B9:6F:11:75:49
X509v3 Authority Key Identifier:
keyid:97:7E:CA:0D:5C:95:6D:E1:7B:F6:97:10:46:F2:EB:95:CE:61:5E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l37KDVyVbeF79pcQRvLrlc5hXik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/32abd8-bedb-4b7d-a463-79706b345bbb/1/l37KDVyVbeF79pcQRvLrlc5hXik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:29:00:d8:3c:48:d5:17:4b:86:48:9d:7b:96:03:60:4a:1e:
e9:fe:75:46:1b:9e:0e:63:21:c1:56:a7:94:b5:2f:db:10:e6:
97:c1:a0:5c:4c:66:ee:30:6c:10:e7:98:37:df:a8:68:45:78:
e5:56:f8:dc:3b:d0:c9:d9:69:23:d5:87:41:ee:b3:aa:d8:a5:
4b:5c:bb:98:63:ed:9b:02:f4:af:93:6c:87:8a:e3:12:58:3a:
56:9a:c4:aa:43:68:bb:8a:2c:3a:50:60:b4:fb:6f:51:0b:e7:
d3:f7:b8:e2:8e:53:92:73:70:10:9b:63:28:00:a2:4b:30:80:
a8:49:24:da:35:82:45:c8:f7:8c:79:75:5d:49:75:67:f0:ab:
55:e3:4e:06:7e:c6:66:76:6d:1d:42:9d:cb:ca:c3:f0:fa:67:
35:b5:97:da:4b:75:42:d9:bd:72:aa:0f:ea:b9:0f:bc:49:dd:
ca:ed:5a:2e:45:79:d6:cf:52:f7:f2:f1:f9:73:51:0c:36:7e:
75:41:7c:05:53:28:66:7b:9c:e4:e6:c9:78:d1:87:9d:69:68:
fd:4f:c7:7d:85:5c:14:fe:e1:84:90:32:e4:6c:17:36:64:1f:
53:b0:dc:cb:53:9d:a0:3c:b1:fa:a8:00:10:a3:1f:49:75:68:
67:87:a4:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:49:10 2026 by rpki-client