
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: 9Q3UYo+z+w9VVRSKmg2c2/qhrE8dCvkZ42Cqvwhx5yw=
Subject key identifier: 97:1E:AD:98:A4:89:77:63:F3:2D:47:3E:E2:1F:43:4F:18:9E:5A:D8
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 019F2924E002D3F63ADB4B1248C2F81B6B73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 0CDC
Signing time: Fri 03 Jul 2026 18:01:50 +0000
Manifest this update: Fri 03 Jul 2026 18:01:50 +0000
Manifest next update: Sat 04 Jul 2026 18:01:50 +0000
Files and hashes: 1: Cpe2_Ojc_FZLY2oGHgVbMwJjk9A.roa (hash: QYPBK9tLe2NLf5ToJsGlVRXUrRctKZptQZU1FwtQfmU=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: EOhl+w96BRsechScMmd7XQmIFIO6hPvUQlX3tifxr/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 Jul 2026 18:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:29:24:e0:02:d3:f6:3a:db:4b:12:48:c2:f8:1b:6b:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: Jul 3 18:01:50 2026 GMT
Not After : Jul 4 18:01:50 2026 GMT
Subject: CN=971ead98a4897763f32d473ee21f434f189e5ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c8:fb:fc:f4:1c:29:bf:f0:f4:e0:f2:82:bc:
f7:49:f2:89:69:2a:ab:60:93:e7:8a:3b:48:c2:e9:
91:36:ba:dd:05:5d:76:88:2d:6f:27:9f:e0:f6:9e:
10:b0:38:50:da:1c:1e:26:e7:53:76:81:57:63:b2:
bf:6b:aa:ad:f6:2a:90:0b:05:d0:dc:7c:93:cc:02:
43:c0:7c:b8:8a:e7:92:a9:9f:b9:8c:79:aa:69:54:
b1:08:5d:6d:62:03:55:bc:1e:d5:e2:4e:b2:72:43:
f2:8a:5f:ab:4c:8c:8e:02:d2:17:81:9b:41:31:fb:
8a:e7:70:b1:5c:16:63:16:20:2a:58:99:05:13:a8:
25:28:db:56:ca:56:7d:8b:2e:18:11:8c:a0:76:ed:
1a:11:c1:ce:85:25:33:6a:5a:09:5f:15:49:95:9f:
68:2f:d8:04:2f:ba:1c:76:03:32:e5:3f:eb:81:27:
6e:2e:a6:f6:d8:94:75:03:a5:89:90:3c:a1:fa:2d:
02:22:41:c9:e9:57:6b:b4:25:88:3f:9f:9f:82:7a:
3e:30:2b:d3:51:13:26:ec:4d:32:2c:1a:20:b9:71:
f2:e4:dc:d5:de:8f:c5:06:d3:6e:0c:de:c7:47:1a:
ba:c0:ee:bf:1b:ef:5a:b9:e0:14:48:8e:26:3c:d9:
13:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:1E:AD:98:A4:89:77:63:F3:2D:47:3E:E2:1F:43:4F:18:9E:5A:D8
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:99:43:2b:26:f0:bd:42:4f:f2:10:3c:eb:e6:df:f9:49:39:
f9:2a:4b:70:55:84:b7:dd:e8:eb:77:26:be:9c:c3:e3:cd:75:
f0:73:1c:63:3e:3a:db:7f:01:34:2b:e3:6e:1a:cd:49:27:51:
d6:38:c0:72:9e:42:d5:95:03:d3:fc:37:63:2e:ed:28:a5:8d:
01:19:31:01:83:10:cb:4d:9f:c5:a4:1b:f4:5a:25:39:f1:0b:
7f:ae:0a:5e:7d:60:22:71:21:21:57:bc:bb:92:5f:bb:93:2b:
f6:7e:26:89:aa:54:16:c8:8b:61:53:7c:4f:89:9d:50:b1:62:
1b:dd:7a:7c:65:77:e4:f8:c7:fb:a5:8f:e6:ec:cb:33:a5:29:
fa:92:72:67:ba:f7:69:87:d2:2d:b0:b0:b2:36:8b:a4:b0:a7:
43:23:f7:37:3f:95:e8:7b:af:46:a5:da:88:58:a8:21:07:8d:
8a:72:86:f0:4f:0a:68:49:5f:6c:c1:57:fb:34:1c:ae:4d:bf:
be:69:b5:52:da:a5:15:04:2d:bd:7c:59:75:22:41:f0:e9:77:
79:d9:11:e7:b2:08:b8:7a:07:fc:1e:14:05:e2:cc:3e:9b:65:
60:4a:40:f9:f2:e0:ed:bd:07:96:c4:e7:a1:bd:76:e0:c4:26:
37:2e:17:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8pJOAC0/Y620sSSML4G2tzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1OGYwNzUzYzAzM2MxYWYwOTE4NjZkMDk0MjY0NTEyNjk2
Y2E2OGIwHhcNMjYwNzAzMTgwMTUwWhcNMjYwNzA0MTgwMTUwWjAzMTEwLwYDVQQD
Eyg5NzFlYWQ5OGE0ODk3NzYzZjMyZDQ3M2VlMjFmNDM0ZjE4OWU1YWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8j7/PQcKb/w9ODygrz3SfKJaSqr
YJPnijtIwumRNrrdBV12iC1vJ5/g9p4QsDhQ2hweJudTdoFXY7K/a6qt9iqQCwXQ
3HyTzAJDwHy4iueSqZ+5jHmqaVSxCF1tYgNVvB7V4k6yckPyil+rTIyOAtIXgZtB
MfuK53CxXBZjFiAqWJkFE6glKNtWylZ9iy4YEYygdu0aEcHOhSUzaloJXxVJlZ9o
L9gEL7ocdgMy5T/rgSduLqb22JR1A6WJkDyh+i0CIkHJ6VdrtCWIP5+fgno+MCvT
URMm7E0yLBoguXHy5NzV3o/FBtNuDN7HRxq6wO6/G+9aueAUSI4mPNkTqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJcerZikiXdj8y1HPuIfQ08YnlrYMB8GA1UdIwQY
MBaAFCWPB1PAM8GvCRhm0JQmRRJpbKaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQt
MmMyZjBkMjRmOTM2LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQtMmMyZjBkMjRmOTM2
LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPZlDKybw
vUJP8hA86+bf+Uk5+SpLcFWEt93o63cmvpzD48118HMcYz46238BNCvjbhrNSSdR
1jjAcp5C1ZUD0/w3Yy7tKKWNARkxAYMQy02fxaQb9FolOfELf64KXn1gInEhIVe8
u5Jfu5Mr9n4miapUFsiLYVN8T4mdULFiG916fGV35PjH+6WP5uzLM6Up+pJyZ7r3
aYfSLbCwsjaLpLCnQyP3Nz+V6HuvRqXaiFioIQeNinKG8E8KaElfbMFX+zQcrk2/
vmm1UtqlFQQtvXxZdSJB8Ol3edkR57IIuHoH/B4UBeLMPptlYEpA+fLg7b0HlsTn
ob124MQmNy4Xxw==
-----END CERTIFICATE-----
Generated at Sat Jul 4 00:40:29 2026 by rpki-client