Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
File: jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft (raw, json)
Hash identifier: ZorGAz5/fwmFqu54RZ+yvlZ6MA3Xg76UVKsP9CSFM90=
Subject key identifier: 5A:C4:AD:5C:CA:DF:BF:66:A1:B0:C4:A9:6B:56:95:49:E9:D7:6F:5E
Authority key identifier: 8C:1E:72:0F:D7:5D:D6:01:34:5B:98:76:AE:A7:F9:1A:B4:46:D4:7F
Certificate issuer: /CN=8c1e720fd75dd601345b9876aea7f91ab446d47f
Certificate serial: 019DDA2FEED4C24DAB4620CDD2C503B423C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
Manifest number: 0CD7
Signing time: Wed 29 Apr 2026 17:01:07 +0000
Manifest this update: Wed 29 Apr 2026 17:01:07 +0000
Manifest next update: Thu 30 Apr 2026 17:01:07 +0000
Files and hashes: 1: 46dJ70ivY5CNHN3HEFGJKfLPS7Q.asa (hash: cjg8FehaVwYpVxS8eMe+m9njoOgOCXMZ/KMVF3PXYLk=)
2: jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl (hash: DKtvUQ6EfbZyZRtTaSgP9tFl3AvOztw1GiSjLzeZfXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Apr 2026 17:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:da:2f:ee:d4:c2:4d:ab:46:20:cd:d2:c5:03:b4:23:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c1e720fd75dd601345b9876aea7f91ab446d47f
Validity
Not Before: Apr 29 17:01:07 2026 GMT
Not After : Apr 30 17:01:07 2026 GMT
Subject: CN=5ac4ad5ccadfbf66a1b0c4a96b569549e9d76f5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:75:e2:da:96:62:57:b7:72:5b:fd:e8:8d:84:
4d:74:f2:43:13:03:49:1c:05:3e:60:3e:72:26:1b:
1f:fb:c8:2d:9b:1a:de:22:90:88:61:7e:1f:c0:9d:
0b:4b:01:79:11:60:78:9f:f5:12:33:ef:15:70:ee:
a2:43:22:05:e1:7e:8d:bc:bd:be:fb:a9:be:b5:c8:
90:f8:a1:32:5c:84:14:af:b5:b6:bc:e6:31:5b:f4:
46:5f:97:26:6d:b4:74:49:0b:82:47:20:fa:a4:da:
68:47:a3:16:b2:29:3b:8e:20:a1:08:56:c6:7e:cd:
f4:d2:22:59:89:14:7e:02:45:f5:d2:c7:24:7a:a2:
a3:a4:da:c2:a0:f2:c7:66:74:01:f2:0a:fc:4e:4f:
1e:f9:aa:7e:bf:4e:7f:3f:37:d8:bd:20:7b:3f:e2:
c5:54:74:53:e2:60:7f:46:80:02:80:42:6b:6d:e5:
b9:0a:31:90:4b:9f:32:7c:87:bc:a9:0c:4b:d5:56:
09:5f:24:eb:c4:81:e2:09:09:a9:39:eb:f4:6a:ea:
4d:c6:ae:c7:8b:30:3a:80:ee:fe:60:b6:16:e1:a6:
df:c9:19:b1:30:2e:e3:e6:c7:27:ef:61:e9:a0:06:
13:40:b6:4f:5e:83:52:e5:47:de:10:bf:7c:33:4c:
5d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C4:AD:5C:CA:DF:BF:66:A1:B0:C4:A9:6B:56:95:49:E9:D7:6F:5E
X509v3 Authority Key Identifier:
keyid:8C:1E:72:0F:D7:5D:D6:01:34:5B:98:76:AE:A7:F9:1A:B4:46:D4:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:ae:24:b8:22:eb:7f:bc:de:26:fe:13:15:18:78:c5:45:13:
4b:50:ff:13:fd:db:2b:81:9c:4d:f4:72:88:26:8d:c6:ef:b7:
9d:2e:aa:68:07:ac:61:69:41:40:4b:66:3d:06:f6:a2:bc:79:
81:dc:ba:dc:09:9c:5f:d5:d0:93:35:93:2b:cc:02:49:43:b2:
98:2a:64:e4:0f:76:38:af:32:c3:b0:54:34:7b:93:ac:b9:d5:
e9:5a:d0:06:02:fe:d0:4c:ce:d0:4d:a3:12:ef:f8:5c:eb:3d:
24:a7:f3:4f:43:cd:a3:b4:72:48:bd:fa:f0:73:41:91:01:b0:
63:c1:ce:11:33:06:3e:af:3a:ef:a4:c7:fe:95:42:14:3f:bf:
14:f9:aa:5d:d0:b4:e0:fb:11:82:2b:62:63:fd:bb:9b:5f:8b:
b3:df:c3:a9:10:1a:71:d4:67:da:4c:db:50:fd:dc:b3:50:e1:
ee:c2:68:3e:fa:9e:ee:a6:80:41:00:d7:e5:75:6d:58:e6:74:
a5:30:d2:6d:39:a7:68:25:e9:8c:e9:0b:ea:5b:b9:33:08:49:
7a:26:cc:c2:62:ea:b3:3c:19:55:ac:59:c3:2c:f9:1a:01:16:
2a:ce:d6:9f:e9:4e:1e:91:27:50:e9:5f:5e:5d:31:bc:62:87:
e9:dd:07:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 30 01:32:03 2026 by rpki-client