Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.mft
File: jDDYlvLF0HcPuNHJFAsFnxn_bOk.mft (raw, json)
Hash identifier: bqrQINEwAD/QnAR+axjKs88G8pgQRBHW4Rduidt2t80=
Subject key identifier: 4C:73:BE:44:83:0C:67:69:62:6F:05:99:FA:4A:6F:83:2F:0A:5D:B1
Authority key identifier: 8C:30:D8:96:F2:C5:D0:77:0F:B8:D1:C9:14:0B:05:9F:19:FF:6C:E9
Certificate issuer: /CN=8c30d896f2c5d0770fb8d1c9140b059f19ff6ce9
Certificate serial: 019CEC70001F84BFC5728C216D9129F65283
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jDDYlvLF0HcPuNHJFAsFnxn_bOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.mft
Manifest number: 7D
Signing time: Sat 14 Mar 2026 13:01:28 +0000
Manifest this update: Sat 14 Mar 2026 13:01:28 +0000
Manifest next update: Sun 15 Mar 2026 13:01:28 +0000
Files and hashes: 1: gBhIlR2Vy9wZybBnJlISzDPwKZ8.roa (hash: 1heXPqmld/OvbyWoLXACStGWieBaqsBslRtSrtYIOUw=)
2: jDDYlvLF0HcPuNHJFAsFnxn_bOk.crl (hash: KKyo7U371xxaa7ge3m9/Zbvpvqfy5Wq83UR3EUGkHkA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/jDDYlvLF0HcPuNHJFAsFnxn_bOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ec:70:00:1f:84:bf:c5:72:8c:21:6d:91:29:f6:52:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c30d896f2c5d0770fb8d1c9140b059f19ff6ce9
Validity
Not Before: Mar 14 13:01:28 2026 GMT
Not After : Mar 15 13:01:28 2026 GMT
Subject: CN=4c73be44830c6769626f0599fa4a6f832f0a5db1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:14:8a:a6:9f:6e:85:65:af:24:5a:08:c3:2a:
ed:d9:ab:aa:db:05:b9:6d:68:0f:1a:48:d4:92:41:
98:39:af:23:d4:97:ed:6a:df:8c:6c:7c:d5:4d:8c:
ef:8c:b1:7c:c4:87:46:41:3d:c5:ec:08:e4:a2:3e:
fc:77:fb:5c:be:ac:67:53:0f:ed:b6:bb:19:2b:c2:
5f:0d:21:74:d4:00:05:9e:f0:26:d7:b6:30:67:ec:
b1:32:90:03:18:fd:83:f8:64:c6:bd:c1:95:95:a7:
82:45:04:58:76:8c:3f:dc:07:25:2d:95:e7:92:e2:
14:96:81:e7:ae:33:2b:5f:5f:a4:6e:b3:0a:56:e5:
06:6d:96:9a:2a:e3:a4:72:41:45:92:8a:6a:4f:a4:
08:1b:e6:46:ce:28:09:b1:1d:4d:c2:9d:a3:05:49:
34:b3:0b:bf:f5:02:b6:c4:f7:00:a4:05:92:b8:9b:
b3:d9:ed:71:15:c0:20:9f:5b:56:53:10:ca:d6:49:
4b:46:40:c1:f8:57:cc:a9:ed:54:8a:5e:e5:c9:14:
c6:11:b8:00:33:46:30:4a:83:79:d4:dc:13:d6:1a:
a1:13:e9:2b:2d:96:66:9d:e2:e6:70:b2:df:40:83:
04:a5:b0:30:6c:16:19:74:b5:16:47:c8:ce:9c:32:
46:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:73:BE:44:83:0C:67:69:62:6F:05:99:FA:4A:6F:83:2F:0A:5D:B1
X509v3 Authority Key Identifier:
keyid:8C:30:D8:96:F2:C5:D0:77:0F:B8:D1:C9:14:0B:05:9F:19:FF:6C:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDDYlvLF0HcPuNHJFAsFnxn_bOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:bc:e6:35:c4:3c:9b:06:96:67:04:38:71:57:d1:69:e5:5c:
46:6e:14:76:8f:ef:8a:d4:86:b8:b8:1e:8a:9c:d6:ae:71:10:
77:3a:1b:14:53:60:82:e5:ed:67:d6:1d:82:a1:46:1a:84:c1:
0b:49:42:0c:cf:86:dd:8b:fd:b2:bf:d0:d2:91:b4:44:6e:5d:
0c:0e:79:35:fc:af:7d:cc:c4:be:97:db:b1:87:96:ce:3a:f4:
a4:0a:8d:7e:4b:1e:05:4e:56:dd:89:7c:3b:55:a1:e3:83:71:
ec:f8:14:20:35:ac:38:1f:d6:86:bb:60:45:2d:7e:b9:1f:83:
d8:79:20:1d:23:44:c8:1a:f3:36:74:a5:d4:5d:c4:37:9f:24:
a2:8c:42:a5:ac:a3:2b:08:c5:f6:83:3d:00:4f:b8:7a:c4:c5:
4e:7e:a8:b1:94:fc:71:17:b7:68:df:03:07:40:64:ae:8a:c9:
4f:92:15:5c:68:90:18:23:b8:79:d7:38:b6:44:d6:59:9a:96:
32:1a:f3:13:e5:5f:e8:f5:2b:4d:0d:c3:59:10:42:3f:d6:58:
44:e0:95:c9:2d:bc:d7:3c:2a:69:23:0d:17:69:0a:25:86:37:
34:e8:7c:50:d5:29:06:ca:b2:79:b0:7d:47:40:dc:ed:86:5f:
61:00:17:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 21:55:35 2026 by rpki-client