Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
File: jrsOsZ53d9cDgAD2wS053tEgQkI.mft (raw, json)
Hash identifier: UWudeTQ+2cBgLFW0l8x1oaCaG7vsJReTNjlsYqn4mgU=
Subject key identifier: E4:A6:55:A5:59:74:CA:CE:CD:BE:03:9F:93:85:6E:FC:77:29:57:41
Authority key identifier: 8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
Certificate issuer: /CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Certificate serial: 019D37F73AA638EB6412813CEE69229B4E1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
Manifest number: 0EC9
Signing time: Sun 29 Mar 2026 05:00:42 +0000
Manifest this update: Sun 29 Mar 2026 05:00:42 +0000
Manifest next update: Mon 30 Mar 2026 05:00:42 +0000
Files and hashes: 1: 1Q9fXglvsAmLyk7oBnnGROcZ55Q.roa (hash: 8sGtUkhkFlICQ8XRP+JZAkWRdlSZS/aRM+3p/w/Efdw=)
2: jrsOsZ53d9cDgAD2wS053tEgQkI.crl (hash: +bI+5sziu+vSYN9aZZ7JuiGjBgpSqGgzSYhWvQy7nfU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:3a:a6:38:eb:64:12:81:3c:ee:69:22:9b:4e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Validity
Not Before: Mar 29 05:00:42 2026 GMT
Not After : Mar 30 05:00:42 2026 GMT
Subject: CN=e4a655a55974cacecdbe039f93856efc77295741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:22:74:7d:85:be:54:86:46:ab:ec:0f:66:7d:
58:e8:3e:ce:1d:ed:a3:6b:07:30:c2:3a:f0:ac:d9:
ef:22:10:36:e9:01:61:63:23:27:2f:3e:4d:22:c1:
fd:95:e7:d6:06:7b:8f:44:12:9b:da:9b:3a:b7:2b:
bc:86:51:8e:ef:ea:2e:23:d5:e6:42:f5:8f:2c:2a:
3c:40:fd:1d:da:70:de:5b:91:18:ac:a8:13:fd:72:
d3:ac:0c:58:45:a1:8c:3f:e2:09:04:15:77:31:8a:
5f:e5:4c:c8:ac:bc:cc:16:79:1e:ea:59:c8:72:38:
d6:76:aa:99:17:ae:46:70:cc:ce:1f:c4:61:40:2e:
2d:a7:d0:d4:be:96:0c:9b:58:78:e0:73:de:01:78:
79:ac:19:ca:69:47:05:bf:d4:83:17:e3:58:97:a5:
26:8d:18:61:13:44:78:b6:26:c9:c0:e8:43:7c:26:
19:0c:bc:23:f8:2e:ee:94:71:11:98:bb:5f:60:66:
bf:aa:27:87:5f:35:75:ff:9f:81:7a:74:46:fa:9f:
74:6b:6a:6f:7a:e2:c9:5d:e2:83:70:94:3f:4e:74:
4a:9a:18:5a:7b:5c:fc:eb:c7:04:82:c6:3e:54:07:
82:40:39:bf:91:b2:43:af:11:20:a4:3b:97:d2:e0:
31:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A6:55:A5:59:74:CA:CE:CD:BE:03:9F:93:85:6E:FC:77:29:57:41
X509v3 Authority Key Identifier:
keyid:8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:72:72:a6:bf:50:76:57:f0:b0:3f:bb:4b:d1:ee:1d:93:b3:
8c:04:93:d8:bf:73:32:a3:14:fe:ef:ac:82:41:3c:f8:1c:36:
f3:fe:a8:65:2f:7d:2b:9f:8d:61:d2:aa:17:03:26:5f:f3:46:
55:00:09:19:10:ea:94:20:95:8b:a3:5d:24:f1:b9:bc:64:18:
b8:93:4e:40:33:80:fc:c1:ab:21:78:a7:e2:f4:cb:d7:09:fe:
d2:25:b2:01:95:ae:a7:e1:3e:29:61:bd:4b:d0:1c:d3:1d:4b:
f5:2f:fe:3a:01:5c:6c:9a:71:a3:b6:6d:ad:5a:7e:74:c8:41:
27:c1:c6:1f:16:cf:5e:83:2f:ab:7e:21:89:5b:87:b5:c0:00:
fe:0a:2f:ad:f5:30:7d:3d:96:7a:e8:49:38:74:45:8b:ae:14:
43:9f:37:0f:9b:5d:36:df:a4:75:15:24:06:83:f4:4f:0c:c3:
19:15:e6:75:3c:63:92:ae:2e:b2:a0:0f:1c:0b:5e:3d:75:b7:
4c:ff:0c:11:01:1b:a0:10:ee:a0:09:ec:48:6c:d4:d0:0d:73:
a6:15:e8:49:28:93:b8:25:bf:4c:db:23:92:cc:08:a7:0b:02:
da:78:3d:a6:5e:50:d0:d9:7d:1e:30:66:7e:83:5a:a8:47:13:
c2:da:5b:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:39 2026 by rpki-client