Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
File: jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft (raw, json)
Hash identifier: fqn32d3EqQ/Eo8YMx5XRqZOEZE06TaxDqQ1Zt0r7vD4=
Subject key identifier: 09:76:86:BD:6B:D4:84:6D:2F:DF:9E:D8:27:6A:14:E1:E7:B1:BD:BE
Authority key identifier: 8C:1E:72:0F:D7:5D:D6:01:34:5B:98:76:AE:A7:F9:1A:B4:46:D4:7F
Certificate issuer: /CN=8c1e720fd75dd601345b9876aea7f91ab446d47f
Certificate serial: 019CBCCCA734376411B454E704EA038EBD5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
Manifest number: 0C43
Signing time: Thu 05 Mar 2026 07:00:54 +0000
Manifest this update: Thu 05 Mar 2026 07:00:54 +0000
Manifest next update: Fri 06 Mar 2026 07:00:54 +0000
Files and hashes: 1: bMET0vgbMSpak17KuCwZIPjOPiA.asa (hash: gPoFxfWrrJ7T/UwOlotNIRMMkTMt1S7z/4qqFihH3N0=)
2: jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl (hash: E+Q1SUA8Ice8Adn9PWYMVpc3U7XVIpoddk4B+MCewh4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 07:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bc:cc:a7:34:37:64:11:b4:54:e7:04:ea:03:8e:bd:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c1e720fd75dd601345b9876aea7f91ab446d47f
Validity
Not Before: Mar 5 07:00:54 2026 GMT
Not After : Mar 6 07:00:54 2026 GMT
Subject: CN=097686bd6bd4846d2fdf9ed8276a14e1e7b1bdbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:80:27:7c:60:d5:91:5b:59:e1:2b:84:49:38:
0c:00:21:9b:98:f4:14:8a:3b:97:d5:0f:9c:70:85:
e6:d6:cc:a0:ba:fb:40:fd:bc:af:f3:2d:c3:6f:87:
f5:1a:e4:82:7f:d3:55:7b:0a:6b:48:97:49:e8:b7:
51:7a:d8:ad:98:4e:cc:9b:20:59:6e:1b:79:6e:4b:
f1:01:aa:b9:0a:5c:ce:19:82:fd:da:a6:d2:28:94:
b3:73:1f:1f:41:ce:e6:79:59:bc:5a:36:5d:a2:ca:
cd:99:4a:3c:1d:2e:5f:60:54:26:c7:92:81:49:81:
42:4b:18:e6:d3:76:11:46:79:76:77:d0:18:48:f0:
9f:c3:17:9a:87:86:2c:8e:1c:39:2b:8f:0f:83:f6:
ca:ec:3e:a4:3c:8e:e5:89:ca:75:a1:93:09:9e:59:
e2:de:6b:13:0a:05:c9:d9:54:45:92:a6:ba:9e:c0:
90:15:4d:40:ca:c2:60:12:e9:6c:26:42:25:72:2e:
ee:45:ae:c4:25:01:55:2c:14:81:7f:ba:3c:11:7d:
1c:a6:12:32:ff:a8:3c:37:56:2e:9f:d2:9b:cc:b4:
1f:8d:74:d0:ee:9f:b0:a0:43:65:4c:89:b2:e7:7e:
c7:10:71:fa:4f:6e:a6:ad:cc:6b:e1:b4:5f:c9:d7:
99:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:76:86:BD:6B:D4:84:6D:2F:DF:9E:D8:27:6A:14:E1:E7:B1:BD:BE
X509v3 Authority Key Identifier:
keyid:8C:1E:72:0F:D7:5D:D6:01:34:5B:98:76:AE:A7:F9:1A:B4:46:D4:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:ab:53:4c:5f:9f:7d:8a:30:a6:39:bc:51:79:f8:c7:6b:21:
ed:87:48:40:da:16:ef:91:9d:ae:8b:38:5a:b9:a9:d2:b5:df:
d3:54:35:7b:b2:68:dc:b2:30:3a:c7:3b:3e:d2:cd:35:de:54:
67:e6:fb:5d:9f:fa:c8:b4:cd:fa:5e:d9:7d:70:2d:fa:9a:3e:
43:76:3d:bc:cf:38:7b:d6:3e:52:2e:b0:e1:7a:ac:8d:7d:66:
f3:16:33:08:a5:3b:4a:9a:5c:be:d4:fe:40:d7:92:32:c8:01:
55:8a:fe:53:43:a5:47:67:db:de:07:47:2c:f5:8f:10:27:6b:
df:d8:22:f4:eb:c8:d6:e6:d3:0a:24:c7:c5:d1:b1:d9:81:a8:
7d:30:88:25:c8:21:14:0b:8a:ee:70:79:08:9d:28:b3:d0:33:
27:86:65:39:2c:81:54:12:c5:27:ae:e3:a6:56:f5:91:a0:51:
f6:16:eb:1f:bb:be:48:a3:a6:f4:97:aa:9d:4a:d1:1b:ab:b8:
60:81:00:fa:71:39:b0:df:86:f0:98:7f:80:c2:ad:0a:95:62:
46:10:43:25:ba:7f:97:8c:eb:84:72:98:da:34:a6:b7:06:b8:
60:34:3f:6a:fe:c5:32:a9:09:e4:c6:f5:bd:fc:60:25:ac:25:
93:38:df:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 5 12:09:06 2026 by rpki-client