Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
File: jbK0TyPcypwGBL7WkPKKatkBeZk.mft (raw, json)
Hash identifier: xxMODv7qmNHxGMF4v1Hvd/UA09OB8FrmiPmWZUiH6l8=
Subject key identifier: FB:86:2E:58:5D:4B:DB:26:4C:4F:82:56:2F:26:82:A1:C8:88:F4:92
Authority key identifier: 8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99
Certificate issuer: /CN=8db2b44f23dcca9c0604bed690f28a6ad9017999
Certificate serial: 019EB732FF90E94BDAD676FC39001EDA2541
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
Manifest number: 0236
Signing time: Thu 11 Jun 2026 15:00:33 +0000
Manifest this update: Thu 11 Jun 2026 15:00:33 +0000
Manifest next update: Fri 12 Jun 2026 15:00:33 +0000
Files and hashes: 1: H60TaHzgzIDq5bEuHBb2yyowYNw.roa (hash: MUV9kznaIpAsdXMNwJm4Ji4yLC8b4zqE7vuFtiUPGnQ=)
2: jbK0TyPcypwGBL7WkPKKatkBeZk.crl (hash: QC8sxDcBzu/6JjOYGTRtu/OXj1dUWdrOZdGTq/w/S94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:32:ff:90:e9:4b:da:d6:76:fc:39:00:1e:da:25:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db2b44f23dcca9c0604bed690f28a6ad9017999
Validity
Not Before: Jun 11 15:00:33 2026 GMT
Not After : Jun 12 15:00:33 2026 GMT
Subject: CN=fb862e585d4bdb264c4f82562f2682a1c888f492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7c:b4:76:75:28:d6:fa:84:bb:5e:66:81:2d:
9f:2e:aa:db:d9:28:27:9e:21:22:3d:1a:52:b7:2b:
05:c0:94:c0:25:fa:e2:e0:28:f3:43:d1:6c:2f:ea:
94:8c:f6:81:12:89:93:05:8e:a3:6c:de:b0:5b:1e:
c6:24:68:db:da:6b:f2:b0:8d:88:0f:bb:9d:42:20:
e3:b7:d1:e7:2b:43:56:f8:31:ed:5e:22:e2:98:39:
55:58:97:63:26:9b:fc:7a:2c:b0:30:2e:39:4b:d9:
9a:10:43:c6:23:0c:42:64:9d:3d:d1:24:85:2d:a4:
02:36:0c:f1:cd:a5:fd:14:e6:b5:85:d6:7b:b3:48:
7a:ce:7c:9a:e1:8e:17:42:0d:22:1b:8f:ab:fc:8a:
08:8c:a9:73:c4:3f:17:5e:df:63:72:2d:fb:d8:7c:
21:9b:a9:6d:05:0a:a5:72:79:9b:1f:40:62:29:19:
54:6b:56:77:96:36:c1:2e:d7:1d:75:fd:f4:4a:dd:
ad:5a:8a:aa:a7:57:cc:69:c1:46:87:8e:b9:33:de:
c1:12:06:d3:36:86:2d:13:30:8f:d2:b2:aa:4f:c9:
0b:97:8b:b2:27:9c:a3:22:b8:a8:a0:71:e4:74:ab:
84:67:1b:83:69:59:5f:03:c7:69:e4:3c:99:a9:99:
b3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:86:2E:58:5D:4B:DB:26:4C:4F:82:56:2F:26:82:A1:C8:88:F4:92
X509v3 Authority Key Identifier:
keyid:8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:ed:ac:dd:e3:66:17:d2:86:69:22:36:cf:5a:a7:db:0f:d3:
08:da:3e:04:59:60:da:2f:9f:78:d9:d0:78:8b:b3:6e:37:7c:
a3:7e:b9:6a:cd:40:64:47:5e:c2:1e:b9:58:50:f3:2f:89:3d:
8c:a5:11:2b:15:ad:93:6e:7c:f0:9a:e7:98:ff:a1:50:3d:50:
50:19:1b:22:a5:ab:5f:f3:d1:ad:d5:43:3c:c6:a6:23:c2:81:
64:44:2a:75:dd:50:41:02:c0:22:f2:80:64:75:65:9a:55:32:
41:c0:3e:91:00:6e:64:96:7e:0e:13:72:48:10:62:1f:dc:d6:
2f:db:36:8e:86:2e:8f:c4:9e:b3:5a:9d:68:77:f3:4d:60:db:
ca:ca:ab:1c:2c:e4:4e:31:1b:c9:78:64:39:92:50:56:56:67:
c1:23:52:a3:47:50:7c:63:4d:d2:f3:fd:35:fe:0d:bf:e1:8b:
1b:53:ad:79:0f:4e:57:2b:d3:cf:af:2c:b0:b4:9e:d2:9d:cd:
94:8e:bc:47:93:b2:1e:b7:e8:19:c9:b3:8f:17:91:c2:b2:ed:
c3:f2:16:4e:7e:24:7c:14:8d:b8:a9:f7:a9:01:cd:e0:b6:c9:
c1:4c:29:54:33:88:86:47:34:88:97:67:2f:c1:94:50:b6:63:
98:1b:2a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:54:19 2026 by rpki-client