Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
File: j_he_yRIxzZG41Sv6mQbz3nnx_k.mft (raw, json)
Hash identifier: 4rGXQnOSuWz8qqPp+9QaF/PvgTYRMtTtzPLhU3hw0JQ=
Subject key identifier: 20:7A:77:84:5C:5A:53:7C:8B:42:8F:14:1D:E3:6B:D2:53:8E:68:AB
Authority key identifier: 8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9
Certificate issuer: /CN=8ff85eff2448c73646e354afea641bcf79e7c7f9
Certificate serial: 019D390A23440EFC41EA349F778A39EA7BAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
Manifest number: 07EC
Signing time: Sun 29 Mar 2026 10:00:58 +0000
Manifest this update: Sun 29 Mar 2026 10:00:58 +0000
Manifest next update: Mon 30 Mar 2026 10:00:58 +0000
Files and hashes: 1: AN3xpl22PaRyPEelcwTSWgg5W5A.roa (hash: re4tuXpQRY9PMdfHT4O4lemkMyHNhEqfGaE5zniD/ZM=)
2: j_he_yRIxzZG41Sv6mQbz3nnx_k.crl (hash: ARQRigEhe/WTAnPQeXvGL2sQVIgac2j3UcbltlqCocs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:23:44:0e:fc:41:ea:34:9f:77:8a:39:ea:7b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ff85eff2448c73646e354afea641bcf79e7c7f9
Validity
Not Before: Mar 29 10:00:58 2026 GMT
Not After : Mar 30 10:00:58 2026 GMT
Subject: CN=207a77845c5a537c8b428f141de36bd2538e68ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e6:a4:cc:79:96:e3:cb:28:4f:c4:95:33:b4:
2c:9e:13:20:cc:06:94:2c:1f:48:7f:64:a9:61:2a:
b2:5e:58:dc:43:ac:2f:42:66:ca:2f:02:9d:e1:7c:
b7:93:ab:40:39:8a:72:c8:72:1b:15:8d:a1:57:14:
18:5d:1b:84:75:39:51:2d:c8:c1:1d:4b:b3:ea:4d:
32:be:91:66:61:0c:d3:8b:16:9a:7a:e6:45:22:e5:
64:62:39:74:27:9b:27:06:31:d6:f7:19:4d:bf:70:
8b:e1:0f:0b:1f:19:09:6e:80:df:dd:3c:d8:d2:9a:
c7:84:cb:66:ed:d8:dd:dd:60:30:da:a7:13:c7:9a:
2f:a8:34:4f:7d:2e:76:f0:13:0e:99:31:8e:ea:93:
34:76:5d:08:61:cb:f4:56:a4:15:b8:e5:af:25:ed:
52:48:4c:93:95:79:71:35:d7:08:a6:03:af:6c:6c:
36:4b:dd:22:37:8e:cf:4d:df:81:21:6e:77:cf:cd:
df:aa:b6:63:86:1f:27:db:a2:69:09:12:f1:ea:10:
6d:0d:62:bc:98:9f:fe:c1:97:09:84:68:28:8d:95:
9f:c5:d7:50:ce:3e:4f:29:63:6a:ee:05:27:42:ea:
c2:da:bd:90:c8:a1:e5:85:c3:c2:5d:0a:d2:79:dc:
43:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7A:77:84:5C:5A:53:7C:8B:42:8F:14:1D:E3:6B:D2:53:8E:68:AB
X509v3 Authority Key Identifier:
keyid:8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:b4:92:ea:b1:ea:4e:83:ed:c1:0f:20:bd:da:cc:4f:92:cc:
e4:09:dc:95:4c:b8:82:9d:dd:45:01:75:e8:99:84:80:cd:fe:
ca:4c:fd:42:f9:a8:3b:ad:ab:bc:a2:ec:9b:11:1a:a7:9c:83:
ec:99:2b:d1:7a:8d:3b:5a:0e:3c:b0:3c:23:50:cb:f8:54:94:
de:4e:2b:9a:f5:1e:09:12:75:ed:a7:31:ef:8e:51:96:d8:d3:
5f:0f:b7:41:1a:2c:4b:87:63:3e:4f:7a:98:3e:1c:17:fd:25:
36:0b:eb:11:d8:b3:23:63:13:b7:c7:93:e8:f1:29:26:46:0b:
d0:41:f4:93:f3:8b:35:e1:99:3c:bc:a6:de:94:ff:c6:8a:77:
d1:23:96:6c:77:b8:39:38:67:46:69:d5:48:15:67:76:2a:fb:
86:c4:c3:df:aa:5a:9a:9c:c7:25:cc:b9:df:89:41:c6:65:c4:
3b:f5:1b:6c:12:7a:0d:4b:9e:58:42:80:68:23:79:f3:ee:ae:
67:d6:63:05:11:a6:58:d8:76:79:02:4b:68:1c:7d:6d:04:d5:
15:8d:df:77:1d:f6:e4:d4:ae:41:b8:f8:91:87:ff:da:8e:f1:
d1:52:cb:8e:a3:7a:69:ac:51:10:95:b9:5e:e7:90:16:6a:43:
d0:0a:55:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:58:25 2026 by rpki-client