Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b1541b-ca10-40f7-b3ed-b321055cfa2f/1/JHzbXqguAzM2ZA6e7I6gmMrIYYA.mft
File: JHzbXqguAzM2ZA6e7I6gmMrIYYA.mft (raw, json)
Hash identifier: 5a3/nMvlTsA+jMRVcflp+M+8wWFsaLk1kA4jP5KffdE=
Subject key identifier: 65:0F:1E:6A:0E:CC:F5:B4:2E:BB:D1:50:72:9F:C0:5D:0B:D0:AA:8F
Authority key identifier: 24:7C:DB:5E:A8:2E:03:33:36:64:0E:9E:EC:8E:A0:98:CA:C8:61:80
Certificate issuer: /CN=247cdb5ea82e033336640e9eec8ea098cac86180
Certificate serial: 019DCF3E689F262785C9D3887A8C60C2AEE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHzbXqguAzM2ZA6e7I6gmMrIYYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/b1541b-ca10-40f7-b3ed-b321055cfa2f/1/JHzbXqguAzM2ZA6e7I6gmMrIYYA.mft
Manifest number: 42
Signing time: Mon 27 Apr 2026 14:01:06 +0000
Manifest this update: Mon 27 Apr 2026 14:01:06 +0000
Manifest next update: Tue 28 Apr 2026 14:01:06 +0000
Files and hashes: 1: JHzbXqguAzM2ZA6e7I6gmMrIYYA.crl (hash: zm1/t19fbN+teb2SiG3fT+QZSxMM1ILSXw5ci1OcBJU=)
2: sr5kiWaUNJb3k53oHKiE3zAeNCc.roa (hash: 4lKEnHHPq8ieSuUmi9tpKwDYW28NC9iz/gZMj6c8NHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/b1541b-ca10-40f7-b3ed-b321055cfa2f/1/JHzbXqguAzM2ZA6e7I6gmMrIYYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/b1541b-ca10-40f7-b3ed-b321055cfa2f/1/JHzbXqguAzM2ZA6e7I6gmMrIYYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/JHzbXqguAzM2ZA6e7I6gmMrIYYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:3e:68:9f:26:27:85:c9:d3:88:7a:8c:60:c2:ae:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=247cdb5ea82e033336640e9eec8ea098cac86180
Validity
Not Before: Apr 27 14:01:06 2026 GMT
Not After : Apr 28 14:01:06 2026 GMT
Subject: CN=650f1e6a0eccf5b42ebbd150729fc05d0bd0aa8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fd:46:b3:31:f3:b3:a9:b2:18:71:5e:fa:ba:
23:6e:89:a2:bb:8e:0e:95:24:91:2d:92:38:60:75:
cf:27:ed:60:f9:8b:03:17:a4:c4:46:1d:11:da:a7:
36:0a:e9:cc:28:8c:f3:fa:3a:1b:d2:d7:4d:4b:35:
e4:ee:bf:6d:84:1a:4b:c4:91:20:c8:ce:2e:f6:fd:
d4:f2:ad:a7:67:3f:f1:30:1b:5d:39:77:ee:ab:be:
56:09:08:aa:40:08:4c:02:4b:b4:4a:ec:47:6a:5e:
ce:62:4a:5a:36:3a:8c:f5:46:0d:38:3a:97:b3:0c:
e5:1a:d4:c0:c7:b8:9c:dc:c8:84:f0:64:17:b2:81:
fe:d4:4f:02:7b:b3:36:31:59:36:11:29:19:ff:28:
c7:1f:b6:ab:17:e9:b6:64:69:0f:70:2a:8d:f0:a0:
1a:a1:d9:f0:22:cc:e5:03:03:b0:af:cb:02:ea:14:
38:6c:b9:5d:b6:a0:35:ac:ee:93:48:b4:0d:f7:a9:
33:52:f9:ac:8b:7e:63:cb:bd:00:71:82:d1:1d:f5:
14:cf:84:23:85:0c:a5:4a:4f:ff:d7:67:a2:0c:7d:
bb:23:b9:46:78:d8:35:7f:a1:c1:25:7a:33:44:c5:
ab:ba:66:39:d6:ca:88:7c:f4:a8:be:ec:30:a0:04:
20:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:0F:1E:6A:0E:CC:F5:B4:2E:BB:D1:50:72:9F:C0:5D:0B:D0:AA:8F
X509v3 Authority Key Identifier:
keyid:24:7C:DB:5E:A8:2E:03:33:36:64:0E:9E:EC:8E:A0:98:CA:C8:61:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHzbXqguAzM2ZA6e7I6gmMrIYYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b1541b-ca10-40f7-b3ed-b321055cfa2f/1/JHzbXqguAzM2ZA6e7I6gmMrIYYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b1541b-ca10-40f7-b3ed-b321055cfa2f/1/JHzbXqguAzM2ZA6e7I6gmMrIYYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:23:8d:0e:55:fb:8d:96:a2:38:f9:69:1e:b9:bb:d8:53:74:
47:36:2d:8b:31:d6:07:46:2f:af:a0:c1:da:60:d0:8a:db:a9:
83:73:0c:96:49:44:97:b3:73:36:8d:af:ea:8b:fa:03:9f:1a:
47:3e:6e:6a:11:d1:19:b6:fe:b7:45:29:19:f9:40:08:17:b2:
46:c5:c7:1b:ae:44:31:06:60:49:d2:d9:e1:20:1f:c2:23:5c:
77:45:37:f2:e5:33:b0:78:d0:02:ba:4d:2c:01:9a:9b:1d:23:
23:a9:3c:1e:d4:49:b8:9d:4e:e2:ca:6c:30:08:25:f2:9a:50:
ee:31:e2:5c:6d:bc:10:ec:3b:e6:12:4e:e1:0e:a3:75:ba:d3:
91:df:b0:1b:f0:d5:eb:d6:9b:11:19:dc:6c:71:de:0d:61:22:
56:3c:d5:e8:82:d2:0c:e5:51:63:34:74:e3:5e:03:18:35:af:
06:6f:e6:1c:d8:b8:80:cd:11:6d:d2:ab:df:1c:c9:ab:18:a7:
67:18:cc:55:93:9f:dd:f3:d8:f5:f5:d9:1d:70:a7:a0:63:e6:
e1:ea:69:49:15:1d:26:ad:e1:d8:5a:89:41:33:bc:15:41:09:
0d:ae:61:0e:af:7f:80:0d:90:dc:40:29:1c:7a:e3:ae:cc:fc:
ae:79:b4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:25:43 2026 by rpki-client