Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: JUPiCg+PhWiNXmLrzxE1TBUs4xkBD+fACyv7mLw/12c=
Subject key identifier: 1C:38:5C:E5:07:9D:82:5C:BD:30:93:B8:1F:83:B7:C0:2F:10:B3:DE
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 019CBBB9BD720FB13A224C36B42DBFD665D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0BE3
Signing time: Thu 05 Mar 2026 02:00:37 +0000
Manifest this update: Thu 05 Mar 2026 02:00:37 +0000
Manifest next update: Fri 06 Mar 2026 02:00:37 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: 8iXW/0cJCd/YIgjjKHRLacljyc4VYMckwcJJvRrjMss=)
2: rIbppOfNfFYdHELW2Brc9R0i8ZQ.roa (hash: 6K2aNO9ERJucL5JHeR5DeWEg9tZjVrX7Cr/llqySGJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 19:55:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bb:b9:bd:72:0f:b1:3a:22:4c:36:b4:2d:bf:d6:65:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Mar 5 02:00:37 2026 GMT
Not After : Mar 6 02:00:37 2026 GMT
Subject: CN=1c385ce5079d825cbd3093b81f83b7c02f10b3de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1e:b4:4d:bb:f5:a3:77:28:40:68:b0:99:49:
3b:cd:05:94:00:1d:43:5f:54:6f:92:0e:ba:66:02:
aa:0b:88:b7:95:e3:7d:db:77:d0:f4:28:4b:0b:38:
9e:ea:67:7c:2b:98:9b:aa:c4:51:a9:00:af:4f:99:
d2:df:d3:e4:36:54:81:de:94:5f:f5:ce:a8:4b:e7:
05:ab:d1:59:6c:14:68:87:f3:e8:de:56:88:7b:a4:
e3:88:cc:ce:b5:31:a1:81:bf:cc:42:f7:8b:88:98:
79:ab:ca:48:61:ed:b5:76:3d:99:0c:ca:3c:08:6c:
ee:f4:88:54:7d:e2:21:6b:00:9f:84:a7:bc:41:c7:
75:79:98:f4:e9:a4:41:d3:9a:7b:9f:27:4f:e5:cc:
7c:3e:ed:16:fc:6e:d3:4d:1e:5d:a6:14:f6:4f:2f:
5c:58:8a:ad:fd:04:d2:e0:94:ea:ec:79:a0:b4:42:
49:24:62:95:da:2f:d5:53:f3:e6:b3:bf:9d:fd:4c:
35:d9:0d:3b:af:ca:3c:eb:3f:7b:0a:02:7c:1d:c1:
ec:33:7a:c6:ca:71:06:d3:d5:f4:2f:83:f9:a7:c5:
10:90:41:46:11:22:69:7c:ce:22:1b:ee:79:6c:83:
c2:47:1d:fc:7c:da:7b:e5:50:f2:9e:da:f5:4f:7e:
b9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:38:5C:E5:07:9D:82:5C:BD:30:93:B8:1F:83:B7:C0:2F:10:B3:DE
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:0a:2a:67:e7:51:8c:b0:4e:83:23:10:17:e9:4f:18:2a:ef:
21:de:ba:9f:ae:a6:d8:b4:ea:7f:cf:db:40:c7:fe:c5:e1:9b:
a7:58:a6:22:9d:dd:f2:cc:69:a6:40:2c:18:66:d8:84:7c:04:
85:bb:d5:f6:6b:52:71:32:9c:7c:4f:73:f1:30:a0:d5:63:d7:
96:14:d9:b6:b4:8d:63:02:9e:0e:d2:a5:f2:bc:6c:99:85:e4:
f2:50:0b:54:00:10:66:9d:36:79:65:0e:a7:4f:15:f3:1c:29:
b1:e4:17:59:8b:74:99:20:42:d8:e8:88:a3:aa:68:9b:8d:c0:
74:ed:77:da:a2:cb:4a:ea:03:d0:f4:c2:ba:85:70:8b:ef:fd:
f2:6c:05:f2:48:d4:6d:14:25:cd:74:cc:da:c6:24:5b:cf:b0:
cd:e4:a1:32:1f:bb:94:a3:91:7d:06:c5:f3:9b:ec:78:11:b6:
fd:1f:88:c6:00:4f:e1:1b:18:1e:1f:71:2a:c2:7a:fc:10:2b:
ca:28:eb:55:3d:99:ea:bb:3b:7f:00:61:c2:92:a3:b1:b7:9a:
3e:d8:ad:ca:7d:18:c2:5a:58:e7:76:b2:53:05:34:af:91:cd:
ec:ac:5b:85:08:c8:20:b1:e1:85:0e:cc:4f:5a:f5:62:4a:e0:
c5:14:06:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 5 05:56:06 2026 by rpki-client