Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: GDLcgvezfmrMM5lNZtGaUeeL+3G4UoOq0g2hI8ZubF8=
Subject key identifier: 2A:36:B1:26:D8:43:DE:A7:BF:B8:BD:52:3E:8D:6E:D9:E3:EA:6D:26
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 019DA943754BFD176EC8D882F2B822CFD5C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0C5E
Signing time: Mon 20 Apr 2026 05:01:03 +0000
Manifest this update: Mon 20 Apr 2026 05:01:03 +0000
Manifest next update: Tue 21 Apr 2026 05:01:03 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: SxF3gi+ndCiTm78I5pJW3ScfLFb7Fu2MznA22FK9mrI=)
2: rIbppOfNfFYdHELW2Brc9R0i8ZQ.roa (hash: 6K2aNO9ERJucL5JHeR5DeWEg9tZjVrX7Cr/llqySGJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a9:43:75:4b:fd:17:6e:c8:d8:82:f2:b8:22:cf:d5:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Apr 20 05:01:03 2026 GMT
Not After : Apr 21 05:01:03 2026 GMT
Subject: CN=2a36b126d843dea7bfb8bd523e8d6ed9e3ea6d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:30:19:f1:76:29:3e:37:4b:91:96:b3:e2:e5:
5b:3b:ca:d0:29:c6:94:56:d9:58:92:3a:89:73:c5:
36:7a:b5:79:4d:aa:e9:ef:ba:ee:52:65:66:cc:d2:
72:0c:91:72:11:16:d0:6e:d8:1e:d4:ca:b0:ff:9b:
b0:bb:4b:2b:97:26:8b:69:57:5b:b2:8d:8f:58:e1:
90:fd:23:4e:37:86:c6:e7:59:69:2b:40:1e:28:ea:
8d:ee:b6:f5:ef:9f:2e:94:18:ab:71:26:14:a8:31:
9f:ce:fb:9f:55:e5:2e:aa:6d:8b:11:06:5d:b3:ae:
ee:af:6d:3b:a1:d4:76:61:a1:69:56:e0:f5:81:94:
21:7e:46:dd:2f:1b:f0:97:fd:3e:84:47:da:93:d0:
f6:6b:a4:ad:22:56:63:51:4b:fd:ea:7c:c3:0c:81:
c2:63:e5:82:5c:22:ba:fa:c1:83:a6:dd:b2:18:00:
17:ac:16:95:d4:a3:4c:da:1d:7b:6a:fa:dd:d3:29:
0e:50:d6:bb:30:ea:e2:f7:6c:6f:e5:12:1b:34:ce:
09:98:7c:7f:fb:43:92:c2:87:60:ff:97:cd:17:27:
13:0c:f3:df:5e:72:1a:55:79:da:32:5a:8d:a5:55:
c7:4c:4d:42:bf:69:77:10:21:0b:5e:c7:4c:b3:e7:
e4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:36:B1:26:D8:43:DE:A7:BF:B8:BD:52:3E:8D:6E:D9:E3:EA:6D:26
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:1c:04:d0:81:e8:dd:8b:70:68:ec:89:81:3e:01:47:54:e5:
ff:c6:2f:19:21:ab:c8:af:6e:95:a9:eb:a3:c9:31:35:bf:52:
b6:82:d2:cc:af:79:85:99:08:8b:bd:72:91:77:ce:35:5a:fa:
c3:45:0f:a9:f2:c7:3e:b2:da:69:48:4c:0c:de:d3:c4:6b:a6:
0e:85:e5:f0:d2:11:c9:4f:49:a4:5a:80:62:a4:d4:cd:31:6c:
35:ee:7d:c6:10:a4:e3:92:d2:fb:a6:a2:a2:d7:0d:07:f3:ca:
6d:eb:1f:d4:1a:86:89:8a:ca:de:79:84:d5:07:3c:ee:34:1f:
9d:13:ae:1f:a4:11:4a:71:6e:c9:54:76:dc:8b:57:7a:c3:4e:
82:8b:00:64:c1:68:c0:5b:15:f2:5f:bb:86:c6:61:d8:bd:ce:
3c:ec:9c:7b:12:d5:b3:9c:a6:6c:23:ae:6c:2d:a7:f8:74:c4:
1e:c3:5c:68:f8:b4:61:c1:de:2b:59:e7:87:92:16:6c:36:59:
b8:1e:db:ef:59:93:da:dd:20:7d:06:84:0c:eb:f3:b6:8b:9f:
83:6b:49:aa:6f:3c:37:11:23:bf:45:c6:98:24:a5:15:ec:0a:
8b:13:09:08:2c:d0:02:02:99:b7:c7:e8:f6:46:76:93:59:6c:
0a:55:32:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 08:34:27 2026 by rpki-client