Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/5424d9-5348-4f6f-9390-45a40a21b8d3/1/pr640lzi1AsMuuWcEeKSvTcXDfo.mft
File: pr640lzi1AsMuuWcEeKSvTcXDfo.mft (raw, json)
Hash identifier: suCYvkrc9eFfyCsx80/szbrH3MllAMxseaxW4yOwfC4=
Subject key identifier: 6B:37:89:1F:2C:35:AA:78:75:E1:DA:98:E5:C8:CD:4A:90:99:68:13
Authority key identifier: A6:BE:B8:D2:5C:E2:D4:0B:0C:BA:E5:9C:11:E2:92:BD:37:17:0D:FA
Certificate issuer: /CN=a6beb8d25ce2d40b0cbae59c11e292bd37170dfa
Certificate serial: 019D27DF6AB622699BAA708128FE497DF42D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pr640lzi1AsMuuWcEeKSvTcXDfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/5424d9-5348-4f6f-9390-45a40a21b8d3/1/pr640lzi1AsMuuWcEeKSvTcXDfo.mft
Manifest number: 127E
Signing time: Thu 26 Mar 2026 02:00:46 +0000
Manifest this update: Thu 26 Mar 2026 02:00:46 +0000
Manifest next update: Fri 27 Mar 2026 02:00:46 +0000
Files and hashes: 1: pr640lzi1AsMuuWcEeKSvTcXDfo.crl (hash: lIbS+PfmWwrdvW6QGRkIRgmOHDqyOJRK0GgI92gx+Po=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/5424d9-5348-4f6f-9390-45a40a21b8d3/1/pr640lzi1AsMuuWcEeKSvTcXDfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/5424d9-5348-4f6f-9390-45a40a21b8d3/1/pr640lzi1AsMuuWcEeKSvTcXDfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pr640lzi1AsMuuWcEeKSvTcXDfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:6a:b6:22:69:9b:aa:70:81:28:fe:49:7d:f4:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6beb8d25ce2d40b0cbae59c11e292bd37170dfa
Validity
Not Before: Mar 26 02:00:46 2026 GMT
Not After : Mar 27 02:00:46 2026 GMT
Subject: CN=6b37891f2c35aa7875e1da98e5c8cd4a90996813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4d:11:95:f4:76:8c:cd:4a:1d:15:a9:cc:40:
1a:06:38:37:48:2d:4d:31:51:0b:2a:b5:c2:30:b3:
a5:54:13:56:37:b6:9d:6f:b3:2d:56:58:f8:86:e4:
2e:dc:cb:8a:d2:c1:25:79:e8:6a:a8:fc:0f:5a:15:
1a:4b:06:3b:83:06:b9:77:a8:d9:46:a3:fb:62:db:
1a:03:91:51:38:67:31:12:03:92:e2:83:23:d6:27:
19:15:7f:aa:c0:48:0f:9c:af:6b:02:0b:44:60:57:
5b:e9:9f:09:bf:1c:88:10:52:f8:17:94:86:a6:16:
0c:29:b2:7b:58:3f:d1:d3:ee:30:1a:39:53:b9:60:
2c:38:78:48:fd:1c:81:1b:28:f0:03:2c:d6:b8:47:
af:ff:92:19:95:f7:f2:ba:84:d2:9c:7c:8d:ad:ad:
e2:dd:24:09:7f:25:1a:3a:dc:02:b3:b6:29:44:6c:
dc:6d:6a:72:0e:ec:e4:a1:d9:46:1e:03:1d:cd:92:
f0:a0:e5:8a:45:be:97:84:e2:0b:5f:64:a1:e2:3e:
5b:56:d0:c1:0d:30:52:86:3a:d1:06:a6:e4:39:aa:
ed:74:c2:83:6e:27:c2:7f:38:a2:cc:2a:d8:cb:73:
e9:b1:89:fb:47:32:62:68:ec:9d:db:f5:95:95:42:
f0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:37:89:1F:2C:35:AA:78:75:E1:DA:98:E5:C8:CD:4A:90:99:68:13
X509v3 Authority Key Identifier:
keyid:A6:BE:B8:D2:5C:E2:D4:0B:0C:BA:E5:9C:11:E2:92:BD:37:17:0D:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pr640lzi1AsMuuWcEeKSvTcXDfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/5424d9-5348-4f6f-9390-45a40a21b8d3/1/pr640lzi1AsMuuWcEeKSvTcXDfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/5424d9-5348-4f6f-9390-45a40a21b8d3/1/pr640lzi1AsMuuWcEeKSvTcXDfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:0a:4c:ea:06:4b:c9:de:ae:f5:41:d6:e0:af:53:6c:5c:3b:
76:33:4f:27:c7:87:fd:5a:6a:7f:26:0f:fd:1c:74:31:5b:48:
7c:d9:fb:a3:5b:a3:54:20:d5:8c:c2:cd:9a:52:b2:a6:b4:a5:
47:e2:4c:23:81:14:c4:55:18:c9:60:80:55:e9:74:db:cc:e2:
1d:67:0b:c5:80:72:f7:a5:12:08:48:83:66:65:d5:77:9c:b0:
8f:c5:ca:4f:3d:9c:56:ed:e7:bc:15:c1:90:40:f4:18:a7:94:
a9:ad:9b:6e:19:ba:72:ae:94:97:4c:3c:b2:37:96:e0:71:10:
7e:7f:29:63:5a:44:93:dc:61:73:80:f3:ce:3b:84:7f:b7:e9:
aa:6d:8b:d1:ee:89:1a:6c:04:e1:3c:11:37:93:1c:2d:87:c0:
cc:14:67:46:e1:a3:0d:28:f0:99:43:44:5b:06:1c:5e:d9:f8:
09:78:b2:b4:81:65:f2:79:9b:5b:e8:6c:b1:0a:a4:1c:12:ef:
ff:9b:0a:0f:9f:dd:79:97:25:5a:62:77:bf:c3:a9:75:6f:2f:
88:b6:e2:32:19:35:6c:b3:4b:3f:a7:08:1d:70:d3:c6:fe:c0:
4d:02:00:20:4a:aa:ab:11:a0:72:89:01:2d:c5:23:74:7f:00:
25:2e:4f:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:39:11 2026 by rpki-client