Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
File: jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft (raw, json)
Hash identifier: NLKjx32KcBGjBp0pNfzbI0dPS0aWm7jg9C2eyE12naA=
Subject key identifier: E2:97:4D:78:5A:96:E1:17:98:7A:A0:F8:37:F2:B4:95:36:F2:7A:2A
Authority key identifier: 8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F
Certificate issuer: /CN=8e0f683867ef769a0a22ade17118ed06fa57b81f
Certificate serial: 019D390A74E3F1C0D8B204A01E5EE69F2158
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
Manifest number: 07DE
Signing time: Sun 29 Mar 2026 10:01:19 +0000
Manifest this update: Sun 29 Mar 2026 10:01:19 +0000
Manifest next update: Mon 30 Mar 2026 10:01:19 +0000
Files and hashes: 1: jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl (hash: 12j7yH2qczVf7ZbtYGQCQgWznH7bjZLQvhYstoJD9lM=)
2: qK0Mrs6KenO_aRFhW0teITHdeuo.roa (hash: 4G9MkNxMVnSOflcsOcuB/8IbmHM1MZ+IOen97Qx/3A0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:74:e3:f1:c0:d8:b2:04:a0:1e:5e:e6:9f:21:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0f683867ef769a0a22ade17118ed06fa57b81f
Validity
Not Before: Mar 29 10:01:19 2026 GMT
Not After : Mar 30 10:01:19 2026 GMT
Subject: CN=e2974d785a96e117987aa0f837f2b49536f27a2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:91:15:4a:65:69:5f:d4:5b:58:26:0b:15:f0:
01:47:ee:02:19:63:2e:63:27:7b:b5:8e:06:36:a9:
27:84:60:a1:05:38:e3:99:d3:e4:fd:c5:ea:7c:cb:
e4:a9:52:90:f7:94:d4:c6:6a:a0:39:c1:c0:7d:7e:
88:d1:2c:3d:07:7d:b7:de:9c:37:2e:b3:e4:ce:d2:
be:cf:18:6d:fd:7e:93:9a:86:0b:c7:71:ac:9e:c3:
ac:c3:18:07:7a:ed:ae:c9:93:3a:05:18:3e:60:71:
7c:50:1e:c3:61:0a:83:62:57:d2:21:d9:16:1b:97:
38:01:b7:c0:46:2d:7d:44:65:51:98:00:4b:bd:ae:
d0:64:d6:af:00:73:cb:cf:6f:b7:e4:68:8d:f2:f1:
f2:a5:02:87:1b:3b:2e:3a:bf:f7:f9:32:7e:93:57:
26:20:d1:40:d9:8e:3b:e3:6c:a9:a8:19:7a:3e:81:
c3:d8:65:3f:33:44:b5:04:9d:0c:34:2a:cc:7f:64:
55:dd:ac:fb:4b:ce:43:9d:87:0c:ba:41:96:ef:c2:
64:ee:97:08:fa:1b:ee:e0:76:e0:a9:7c:2a:9d:e4:
11:f4:da:25:ef:5b:92:fd:68:dc:d4:58:f4:41:4b:
f2:bc:25:8d:e1:39:1d:26:9b:11:bf:38:9f:f4:d2:
ca:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:97:4D:78:5A:96:E1:17:98:7A:A0:F8:37:F2:B4:95:36:F2:7A:2A
X509v3 Authority Key Identifier:
keyid:8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:43:e8:68:63:7f:f1:b8:db:bd:82:a9:d2:dd:74:f9:8f:00:
2b:9e:7f:78:5e:f9:de:54:26:42:14:73:ff:78:2f:b5:4f:d4:
ae:88:8b:b1:8d:d1:43:b5:fc:42:55:96:2c:14:63:39:e3:05:
80:e1:d0:f5:b3:ae:ff:80:16:f9:c8:d4:2c:a2:ec:7a:7a:74:
c6:23:51:42:2d:be:3c:f3:e9:24:1b:83:8a:f2:bb:27:d6:f6:
64:20:2a:1e:a8:86:d5:fa:d9:34:f5:df:8d:02:f8:91:28:ca:
72:1b:ac:0c:26:1d:f2:3e:10:25:6c:87:a5:03:64:fa:36:09:
26:c7:4a:26:00:0f:51:3d:bb:ab:ff:20:41:37:5d:7b:30:fa:
e0:fd:29:d2:e0:3c:71:8a:78:9f:90:12:bf:fc:57:32:95:91:
6a:0f:b9:98:56:5e:44:7e:10:b5:ec:47:2e:88:d8:77:6c:4a:
15:61:37:bc:72:38:95:ca:e6:9f:82:e1:28:1f:f1:f7:74:e3:
cb:42:e9:a8:a6:45:2e:6d:c8:0a:e7:b8:14:12:f9:29:18:59:
e5:2d:ac:a1:b1:ae:82:76:ad:d2:59:a1:dd:13:b6:a8:06:6a:
89:29:ec:2a:7d:c4:ca:2a:8d:36:6f:76:2b:3c:b8:07:c6:d2:
6b:48:14:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:44:38 2026 by rpki-client