Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
File: jR4EozwylZxnL0X0a-EIZLgemEo.mft (raw, json)
Hash identifier: pPtWWV+5/x+TWw3Y6GF3UxRsgM29JN3awkes54ErMVs=
Subject key identifier: 7D:5C:C5:F7:C7:E7:7B:DD:0E:92:5F:CA:67:86:10:F2:CD:29:87:0D
Authority key identifier: 8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
Certificate issuer: /CN=8d1e04a33c32959c672f45f46be10864b81e984a
Certificate serial: 019D3909BCA4BEF6CDC193FA9EAC5008D154
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
Manifest number: 188A
Signing time: Sun 29 Mar 2026 10:00:32 +0000
Manifest this update: Sun 29 Mar 2026 10:00:32 +0000
Manifest next update: Mon 30 Mar 2026 10:00:32 +0000
Files and hashes: 1: jR4EozwylZxnL0X0a-EIZLgemEo.crl (hash: 8qDWPHlQjZpm2Q787ogQs79avFwqoEHXmkDCuMIRdGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:bc:a4:be:f6:cd:c1:93:fa:9e:ac:50:08:d1:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1e04a33c32959c672f45f46be10864b81e984a
Validity
Not Before: Mar 29 10:00:32 2026 GMT
Not After : Mar 30 10:00:32 2026 GMT
Subject: CN=7d5cc5f7c7e77bdd0e925fca678610f2cd29870d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d8:3c:46:ab:b3:fa:d7:78:44:99:ed:89:7e:
30:62:13:1d:31:d6:1e:cd:90:c1:0a:b5:1d:2a:df:
77:9e:bd:9c:aa:7b:86:d8:72:5b:61:6c:b3:9b:9c:
14:43:2d:75:e7:96:85:5e:e2:54:b6:c2:e6:68:00:
f8:ff:5b:33:c1:89:e9:9e:22:4f:7a:13:07:f1:7d:
d0:7e:2e:d5:b8:78:65:21:f6:91:4d:04:06:35:94:
4e:0b:2a:32:e3:25:7c:c1:49:10:84:be:3e:21:fa:
db:38:7e:96:e5:7d:fb:08:ff:bd:a7:16:2d:f7:bd:
d0:77:43:0e:2a:4d:ab:af:e5:5c:82:b8:52:5f:36:
dd:b4:96:8c:28:5b:c1:e5:75:da:c2:61:e9:e0:c5:
4e:77:e0:6a:2b:52:c9:0d:b7:13:bf:18:83:d7:2d:
9e:69:7d:a4:78:ae:73:74:3e:27:19:fc:a3:14:31:
23:17:fc:a6:58:5d:a8:04:8b:69:a8:48:38:51:fe:
f5:c0:96:5a:6a:1c:37:38:98:82:91:00:5e:d0:ab:
8c:b0:5c:03:65:71:89:0b:04:23:2f:62:97:7a:d6:
ad:61:a1:8c:d0:9a:eb:3e:61:2f:9e:d0:09:bb:6c:
e0:d0:d4:66:22:17:89:f5:ec:00:86:08:26:b4:b7:
ac:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:5C:C5:F7:C7:E7:7B:DD:0E:92:5F:CA:67:86:10:F2:CD:29:87:0D
X509v3 Authority Key Identifier:
keyid:8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:f0:10:ca:a7:5e:ee:3a:97:a4:2b:37:c1:8d:ae:34:16:79:
d5:d2:b0:9a:89:83:f2:81:46:64:c0:a2:f4:62:8a:54:be:16:
18:03:db:89:7e:84:2a:52:ed:e1:5b:4d:2b:16:bd:df:37:e4:
46:5f:77:cf:38:d4:c3:3e:5c:23:14:ec:df:07:b5:7d:4d:8f:
6d:8d:b7:0d:07:ef:31:76:73:12:ef:3f:87:97:a2:98:b8:1b:
5f:6e:01:43:2c:ec:f5:43:93:d7:71:88:b8:f8:d6:e1:93:4b:
13:40:31:12:f3:67:13:bb:d0:8b:89:4b:f8:aa:1e:2f:8c:8a:
4d:47:83:5d:2a:fc:73:2d:c6:43:ca:75:e0:2a:f4:e1:e9:89:
9d:27:a6:3f:d8:f4:81:01:67:dd:f9:ba:36:6e:9e:d0:17:a7:
2a:a5:b4:cf:97:eb:5b:34:a9:b7:b9:a6:f8:4c:c9:5f:4b:bb:
da:25:3e:f7:19:6c:29:91:b6:65:99:0a:1f:e9:2d:9d:8d:78:
3e:49:89:64:14:19:19:de:2d:e1:a3:45:30:72:4c:49:ed:9f:
cb:48:4e:4a:b6:e7:33:e0:2f:39:3b:b1:4a:91:43:5b:b4:d3:
39:8d:94:f2:41:e7:37:06:d1:cb:e9:d2:d4:c3:3e:38:56:04:
64:4a:48:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05CbykvvbNwZP6nqxQCNFUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWUwNGEzM2MzMjk1OWM2NzJmNDVmNDZiZTEwODY0Yjgx
ZTk4NGEwHhcNMjYwMzI5MTAwMDMyWhcNMjYwMzMwMTAwMDMyWjAzMTEwLwYDVQQD
Eyg3ZDVjYzVmN2M3ZTc3YmRkMGU5MjVmY2E2Nzg2MTBmMmNkMjk4NzBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9g8Rquz+td4RJntiX4wYhMdMdYe
zZDBCrUdKt93nr2cqnuG2HJbYWyzm5wUQy1155aFXuJUtsLmaAD4/1szwYnpniJP
ehMH8X3Qfi7VuHhlIfaRTQQGNZROCyoy4yV8wUkQhL4+IfrbOH6W5X37CP+9pxYt
973Qd0MOKk2rr+VcgrhSXzbdtJaMKFvB5XXawmHp4MVOd+BqK1LJDbcTvxiD1y2e
aX2keK5zdD4nGfyjFDEjF/ymWF2oBItpqEg4Uf71wJZaahw3OJiCkQBe0KuMsFwD
ZXGJCwQjL2KXetatYaGM0JrrPmEvntAJu2zg0NRmIheJ9ewAhggmtLesBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH1cxffH53vdDpJfymeGEPLNKYcNMB8GA1UdIwQY
MBaAFI0eBKM8MpWcZy9F9GvhCGS4HphKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalI0RW96d3lsWnhuTDBYMGEtRUlaTGdlbUVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9lZTYzZjMtN2Q0OC00OWU3LWFlYTct
ZTI0OWU3M2VjY2YxLzEvalI0RW96d3lsWnhuTDBYMGEtRUlaTGdlbUVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS9lZTYzZjMtN2Q0OC00OWU3LWFlYTctZTI0OWU3M2VjY2Yx
LzEvalI0RW96d3lsWnhuTDBYMGEtRUlaTGdlbUVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk/AQyqde
7jqXpCs3wY2uNBZ51dKwmomD8oFGZMCi9GKKVL4WGAPbiX6EKlLt4VtNKxa93zfk
Rl93zzjUwz5cIxTs3we1fU2PbY23DQfvMXZzEu8/h5eimLgbX24BQyzs9UOT13GI
uPjW4ZNLE0AxEvNnE7vQi4lL+KoeL4yKTUeDXSr8cy3GQ8p14Cr04emJnSemP9j0
gQFn3fm6Nm6e0BenKqW0z5frWzSpt7mm+EzJX0u72iU+9xlsKZG2ZZkKH+ktnY14
PkmJZBQZGd4t4aNFMHJMSe2fy0hOSrbnM+AvOTuxSpFDW7TTOY2U8kHnNwbRy+nS
1MM+OFYEZEpIsA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:44:50 2026 by rpki-client