Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
File: jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft (raw, json)
Hash identifier: ePSeDGVqnEcgZvvsssDvFaD4lLzLRHfbQWNi6UNCT/U=
Subject key identifier: BE:12:37:40:FF:89:B3:7D:2B:9A:3C:F3:3A:4B:BE:26:40:BE:CE:1B
Authority key identifier: 8C:1E:72:0F:D7:5D:D6:01:34:5B:98:76:AE:A7:F9:1A:B4:46:D4:7F
Certificate issuer: /CN=8c1e720fd75dd601345b9876aea7f91ab446d47f
Certificate serial: 019CED147E32DE904E49777298E4FEA42580
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
Manifest number: 0C5C
Signing time: Sat 14 Mar 2026 16:01:08 +0000
Manifest this update: Sat 14 Mar 2026 16:01:08 +0000
Manifest next update: Sun 15 Mar 2026 16:01:08 +0000
Files and hashes: 1: bMET0vgbMSpak17KuCwZIPjOPiA.asa (hash: gPoFxfWrrJ7T/UwOlotNIRMMkTMt1S7z/4qqFihH3N0=)
2: jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl (hash: N+dMaCu3vSZwPCClSYUVM+3o/HIkrgC1ocx4KTC8f00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 16:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ed:14:7e:32:de:90:4e:49:77:72:98:e4:fe:a4:25:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c1e720fd75dd601345b9876aea7f91ab446d47f
Validity
Not Before: Mar 14 16:01:08 2026 GMT
Not After : Mar 15 16:01:08 2026 GMT
Subject: CN=be123740ff89b37d2b9a3cf33a4bbe2640bece1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cb:7a:a5:01:37:d9:dd:47:08:22:d4:22:19:
45:3c:f1:fc:54:7d:58:87:d5:88:c3:98:b9:ca:b5:
4b:88:ba:39:7d:c8:0c:b1:ab:f6:c9:04:86:96:6d:
3f:f8:fb:d6:e5:0c:b6:7f:5c:dc:cd:96:3a:21:3c:
02:67:3e:b9:f0:b4:34:54:1f:3e:e9:ef:77:eb:02:
56:ee:13:36:8d:f1:c0:66:74:56:8a:83:10:ce:bf:
b0:91:cf:dc:92:1e:de:1c:d6:e7:14:6a:5b:5f:e7:
9d:8e:73:c2:97:7f:24:55:ad:c9:2f:72:19:a2:22:
7d:1a:2a:f9:b5:c1:cd:4e:d3:4a:cf:61:91:2c:ea:
b4:2c:ee:68:ce:53:af:c1:0c:92:b0:47:ec:f6:2d:
0e:cd:3b:17:38:b9:e6:02:cd:ad:f9:7f:13:fb:ec:
68:81:58:a6:7b:db:95:67:38:ed:2e:46:15:ad:dd:
98:e5:0a:1b:cf:6b:cf:f6:d9:ec:6e:bd:1b:20:e8:
8d:bf:07:15:fa:eb:ca:10:e6:21:01:ff:69:0f:57:
8b:3e:22:90:78:ad:f1:8d:c6:66:c7:06:ac:6a:64:
ca:49:ca:78:5f:0d:79:06:4b:08:4f:d1:cc:3e:18:
af:d2:35:a8:55:15:f6:c0:4d:cc:17:98:da:40:f7:
f4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:12:37:40:FF:89:B3:7D:2B:9A:3C:F3:3A:4B:BE:26:40:BE:CE:1B
X509v3 Authority Key Identifier:
keyid:8C:1E:72:0F:D7:5D:D6:01:34:5B:98:76:AE:A7:F9:1A:B4:46:D4:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:c7:9c:6a:91:53:fe:98:ca:c5:da:8e:39:34:bd:2c:14:3b:
b7:ea:71:2d:85:fd:93:98:99:b2:2a:f6:1d:58:3f:a2:30:07:
86:1b:08:3a:97:67:96:2c:e4:55:88:8e:fc:b6:c7:fa:ad:08:
69:fa:e2:16:1c:50:51:0a:41:14:fc:ae:26:b2:00:b7:c1:19:
d3:d4:fd:a6:b0:4f:e3:5a:a2:83:e6:ac:b3:c8:9d:69:1a:de:
57:28:6b:c6:3a:ed:74:a1:fe:9a:26:77:a0:3e:f5:77:e0:68:
c7:14:cd:aa:ea:a5:44:7d:9d:25:c8:22:a4:26:f7:3a:81:1e:
32:98:3f:a5:dd:ae:05:8d:b5:72:d5:9a:d4:0a:85:37:86:de:
0a:f0:b4:14:e4:e1:91:5b:3c:a6:25:ba:f1:21:d5:17:61:6b:
37:d3:72:a8:5b:9b:55:b5:35:77:a0:e7:97:24:69:d1:4b:94:
c7:09:07:46:e9:37:f7:b8:7e:72:75:60:e2:ff:da:a0:b8:4f:
e0:47:fd:ce:3d:49:ef:99:e6:05:aa:0a:04:e6:28:fc:62:18:
e7:b0:a7:c8:52:5e:de:ad:1b:81:88:34:5c:15:8c:d1:8b:98:
f8:65:7b:14:54:fa:57:8f:ca:b0:60:6c:52:33:25:16:c2:aa:
fb:a6:18:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 23:12:54 2026 by rpki-client