Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
File: jbK0TyPcypwGBL7WkPKKatkBeZk.mft (raw, json)
Hash identifier: DHw5xG3ZYVJASFuFRdx2xf+xby4NEid2frkjyl84Qso=
Subject key identifier: 91:C2:8C:C6:96:25:3F:31:06:8B:9C:03:20:98:A8:58:47:71:38:05
Authority key identifier: 8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99
Certificate issuer: /CN=8db2b44f23dcca9c0604bed690f28a6ad9017999
Certificate serial: 019D38D3418AEC686EBBA5998B5A26ECDDC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
Manifest number: 0170
Signing time: Sun 29 Mar 2026 09:01:02 +0000
Manifest this update: Sun 29 Mar 2026 09:01:02 +0000
Manifest next update: Mon 30 Mar 2026 09:01:02 +0000
Files and hashes: 1: H60TaHzgzIDq5bEuHBb2yyowYNw.roa (hash: MUV9kznaIpAsdXMNwJm4Ji4yLC8b4zqE7vuFtiUPGnQ=)
2: jbK0TyPcypwGBL7WkPKKatkBeZk.crl (hash: OJwSJ9cM3vouctFS9t9zbKprJDmQ5djrD3KG5LXh8VU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:41:8a:ec:68:6e:bb:a5:99:8b:5a:26:ec:dd:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db2b44f23dcca9c0604bed690f28a6ad9017999
Validity
Not Before: Mar 29 09:01:02 2026 GMT
Not After : Mar 30 09:01:02 2026 GMT
Subject: CN=91c28cc696253f31068b9c032098a85847713805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5f:0f:f0:89:3b:27:f5:e4:fa:ee:4a:9c:df:
c6:bd:4b:f0:fb:04:9b:f8:e8:2f:d5:e3:e5:09:d8:
c8:cd:ed:3c:e8:2c:fc:9d:63:d6:e5:de:14:32:7c:
0c:f9:58:4f:11:05:1f:44:15:e0:b0:0d:31:bb:72:
bc:89:ea:51:65:9a:ef:73:17:89:30:86:6c:30:7f:
3e:d7:b7:7b:3c:b3:eb:bb:d9:27:a3:a7:71:bc:ba:
4a:c0:c7:fc:70:c9:ca:76:5e:dc:9d:d6:23:ce:29:
f0:0f:fd:1e:65:62:2c:95:31:5b:0d:9b:20:68:e8:
e8:2c:7d:da:36:0a:23:6e:a1:39:ae:3b:33:0a:fd:
08:e1:c3:6a:88:81:24:81:2b:a2:08:12:1e:a3:73:
e6:c7:75:32:90:22:d2:cc:37:33:b6:09:10:d0:61:
ee:69:f4:ff:fb:a2:e8:e0:b3:10:8b:fd:e9:2a:4c:
bd:4d:72:fd:82:b3:d0:c0:df:2a:4e:f1:6d:5b:a0:
f1:64:b7:aa:a9:bc:d4:92:4e:12:3e:2b:ae:80:5e:
55:4d:3f:ae:7b:75:12:93:88:be:5a:0e:6a:5e:2b:
f6:17:44:ac:62:37:72:db:20:3d:e9:a7:28:91:fa:
0a:0b:2b:10:49:db:85:61:29:b8:b1:76:51:f9:08:
79:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C2:8C:C6:96:25:3F:31:06:8B:9C:03:20:98:A8:58:47:71:38:05
X509v3 Authority Key Identifier:
keyid:8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:2e:78:a2:05:b4:5f:b2:c0:59:06:3a:98:e1:a9:f7:e1:82:
d3:01:5b:5b:88:9e:9d:df:9a:e4:bc:16:dd:b6:ce:64:18:07:
43:28:82:41:f3:44:04:0e:c3:d1:42:0f:74:ab:0f:bb:97:8d:
d3:01:20:ce:ff:b6:ba:6c:7b:ca:17:4b:de:ad:3f:71:53:16:
06:6c:c0:04:26:5e:33:96:d8:b7:0d:31:10:7f:b4:ac:f3:6c:
54:40:a9:5f:d3:5b:f9:39:fd:13:e8:96:c7:18:10:09:fa:14:
4b:7b:4f:62:7c:01:c2:8f:51:76:48:68:73:ea:64:dd:f2:c8:
52:b4:f6:c8:9b:d4:9a:3a:94:0f:68:6b:9d:de:ec:3d:27:7c:
14:d9:0a:23:95:8f:ae:5f:7f:ec:39:3b:f3:4d:9f:d5:9d:32:
77:ef:5d:d3:e5:70:b5:a6:1a:6f:27:17:86:b4:4c:de:60:95:
e2:d5:a5:d0:ac:ac:70:a1:af:5d:22:22:51:2f:4a:38:8a:a9:
62:41:8b:0e:a9:5a:ce:4e:6d:48:2d:5c:b2:b8:0f:e6:e6:a3:
d6:9f:c7:03:f6:40:63:a7:dc:38:07:3c:de:78:db:d8:50:56:
26:ff:9f:e3:3b:af:e2:10:d1:91:53:e5:e2:e3:15:f5:3e:cf:
ae:fe:96:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:52:19 2026 by rpki-client