Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.mft
File: jzAoLIbxBGuTEkzycOEU5fAm_3M.mft (raw, json)
Hash identifier: dwE0UJ23Nrn8PB+pgcfVdZW48DBOLeoBA0bgmHnta7Y=
Subject key identifier: 05:38:93:82:A2:B4:DD:B7:75:CA:9B:6A:46:94:92:15:DF:5E:29:85
Authority key identifier: 8F:30:28:2C:86:F1:04:6B:93:12:4C:F2:70:E1:14:E5:F0:26:FF:73
Certificate issuer: /CN=8f30282c86f1046b93124cf270e114e5f026ff73
Certificate serial: 019D38664AA8B7D51D8FDE82E701DE02EF24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzAoLIbxBGuTEkzycOEU5fAm_3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.mft
Manifest number: 124D
Signing time: Sun 29 Mar 2026 07:02:01 +0000
Manifest this update: Sun 29 Mar 2026 07:02:01 +0000
Manifest next update: Mon 30 Mar 2026 07:02:01 +0000
Files and hashes: 1: jzAoLIbxBGuTEkzycOEU5fAm_3M.crl (hash: jIOB5B55zBTiXYTDnWaMGcFXUdYjcDotEPKpNLWQAOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/jzAoLIbxBGuTEkzycOEU5fAm_3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:4a:a8:b7:d5:1d:8f:de:82:e7:01:de:02:ef:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f30282c86f1046b93124cf270e114e5f026ff73
Validity
Not Before: Mar 29 07:02:01 2026 GMT
Not After : Mar 30 07:02:01 2026 GMT
Subject: CN=05389382a2b4ddb775ca9b6a46949215df5e2985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:08:94:f8:aa:b3:91:6f:7f:fa:08:4d:79:06:
65:68:1e:41:38:fe:bf:7f:2d:f5:30:2a:d3:3a:72:
32:ef:63:4e:b0:57:b7:3d:3b:71:01:94:6a:5b:b5:
12:c8:40:99:07:e5:2c:fc:0d:6b:ba:a3:98:06:d5:
cb:59:77:a1:83:3f:53:1c:eb:be:d1:6e:b0:fd:45:
f1:3f:05:f2:65:cb:79:f1:b3:b0:5e:ff:bd:de:87:
24:12:df:aa:5c:97:d3:7c:c7:33:85:2a:71:df:8b:
45:11:92:eb:44:be:0b:af:5f:13:b0:de:9a:4c:6e:
4b:cc:70:48:02:05:52:9d:4b:1d:ab:03:93:f3:4e:
1d:c4:cf:90:a7:05:1b:6b:80:5f:51:f8:9d:dc:64:
d3:ab:b3:a1:c3:90:6c:4f:48:96:8c:4c:a8:3f:46:
1b:29:65:be:46:7f:11:e8:86:59:57:20:65:70:aa:
ea:14:e3:52:79:f6:70:4f:f8:b5:8a:4a:37:2e:43:
ad:62:66:bc:b5:03:a9:a8:08:a3:ae:18:a2:21:5b:
3c:88:74:4f:d6:8e:6e:1c:72:af:63:a3:fe:78:80:
e0:1a:85:da:e3:5d:1b:d7:48:be:66:2d:c1:11:db:
7d:2c:9e:b9:1f:b1:26:74:57:41:aa:1c:51:9a:81:
a2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:38:93:82:A2:B4:DD:B7:75:CA:9B:6A:46:94:92:15:DF:5E:29:85
X509v3 Authority Key Identifier:
keyid:8F:30:28:2C:86:F1:04:6B:93:12:4C:F2:70:E1:14:E5:F0:26:FF:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzAoLIbxBGuTEkzycOEU5fAm_3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6cd798-31d4-4478-9962-f98796f51022/1/jzAoLIbxBGuTEkzycOEU5fAm_3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:68:a8:4a:c1:e1:e8:37:c4:c4:53:a4:ee:fc:86:95:e5:a3:
8e:2a:88:2e:ee:68:2c:f1:8c:71:18:a8:b2:2b:d2:51:af:aa:
b6:68:1f:0c:b9:62:a8:be:d0:96:a3:e6:c4:7f:40:be:b0:dd:
dd:03:f5:84:de:60:8c:3b:43:73:79:97:04:c6:c0:a0:11:ed:
91:1a:ac:6f:58:15:c4:f1:d6:0c:a1:1d:28:28:fd:84:56:cd:
13:ce:9a:9c:82:63:e3:a1:6f:5b:2e:47:d6:28:be:40:49:8c:
6e:a6:d0:cc:8f:a4:ee:ee:05:ea:70:de:98:97:0e:1b:57:09:
0b:85:0a:37:05:c2:4b:71:5e:66:7c:09:8b:3c:fb:b4:43:12:
af:88:71:2c:77:ba:dd:c8:2a:7a:68:18:3e:22:25:8a:0a:e2:
9c:43:ad:03:54:79:d3:b0:36:e2:d6:f7:2a:80:49:bb:54:ec:
b6:04:ec:2d:97:70:12:26:8d:0f:37:ca:77:b2:96:df:1e:39:
26:11:c8:fe:2f:e9:27:55:cd:53:1d:e8:f3:7f:04:83:75:44:
67:e8:d0:29:43:0a:21:35:28:89:5c:75:91:93:66:68:06:5e:
b5:f5:31:41:91:ad:4b:17:66:02:11:c0:d9:8c:f1:e7:54:02:
9f:e1:cf:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:49:45 2026 by rpki-client