Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
File: JHQF6c7jnXGUTV4xSesBth-a2x4.mft (raw, json)
Hash identifier: 34EpEQbdge2pE6DTx0OLao3qzMpE5g4d2fAR9frAv50=
Subject key identifier: 1C:92:B4:09:05:94:E3:0B:F5:46:2B:E1:B9:2B:FC:ED:40:B3:FA:28
Authority key identifier: 24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
Certificate issuer: /CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Certificate serial: 019CE6DB071EE1B5A83B371BE9C087E52B77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
Manifest number: 1372
Signing time: Fri 13 Mar 2026 11:00:39 +0000
Manifest this update: Fri 13 Mar 2026 11:00:39 +0000
Manifest next update: Sat 14 Mar 2026 11:00:39 +0000
Files and hashes: 1: JHQF6c7jnXGUTV4xSesBth-a2x4.crl (hash: dkCmwSA5sAr+4jtWMHKD2KLdWMLoXd7DLyV1kVBoJss=)
2: KcpUiO15Gzl7SK9StcczqpLi6i8.roa (hash: f2aZlDMUXJuXCv7f53eZgqwP78Uz9MlJPKMYPdzciVo=)
3: RHgj94s99yLOm8jJoah9M5rvNqY.roa (hash: 52fyve7WO1cwkbeeuvWUD7YyeD7rPI2Crc9dE/2ZkFM=)
4: Udssf4fE6o3QNpke-lB6PuA0Uo0.roa (hash: 9+ibfBkyOgj0hAuo5PA4Hd1TB41jIqZV5+PkUc7DWA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:db:07:1e:e1:b5:a8:3b:37:1b:e9:c0:87:e5:2b:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Validity
Not Before: Mar 13 11:00:39 2026 GMT
Not After : Mar 14 11:00:39 2026 GMT
Subject: CN=1c92b4090594e30bf5462be1b92bfced40b3fa28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:04:95:07:76:5a:41:dd:92:84:7d:f1:93:7c:
48:d9:9b:9a:67:da:67:b3:32:94:31:5e:a2:54:c4:
ad:fd:2b:74:57:8b:7e:4e:7e:e7:10:40:d3:c2:1a:
b2:f4:5d:de:d5:44:4d:d6:8a:5d:4e:61:c2:7b:83:
d4:60:89:79:12:87:c8:b4:26:cd:de:5e:81:a0:2e:
d4:e7:d1:23:9e:5e:70:8c:fc:76:a2:96:de:3c:9d:
c1:cf:37:d3:27:99:8a:5d:ce:8a:a0:ba:0d:5f:51:
c4:b6:1c:cc:c6:1d:33:b9:69:e4:69:27:d9:ca:ac:
80:ab:1e:e3:ff:57:24:75:b9:93:8d:d3:9f:ed:10:
76:72:24:ca:94:f2:07:a7:6a:41:88:74:3f:3d:7d:
cf:13:82:2c:67:ab:c7:18:84:d5:80:ef:c1:9c:cb:
4e:5d:0c:6d:76:29:0b:da:09:64:79:2d:fe:92:73:
c2:0c:81:4b:5f:2a:a8:d7:d8:35:1b:b8:d2:51:ba:
97:da:18:e9:8f:76:9b:ec:2a:d9:f0:c3:1a:51:06:
b1:cc:8c:a6:60:95:23:b8:ba:f6:57:c5:77:67:63:
29:b9:98:1b:84:cd:5a:77:e6:79:c2:b2:36:62:9f:
dd:bd:b8:e8:5f:3c:3e:b4:20:70:19:d1:f6:4f:ac:
51:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:92:B4:09:05:94:E3:0B:F5:46:2B:E1:B9:2B:FC:ED:40:B3:FA:28
X509v3 Authority Key Identifier:
keyid:24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:5e:3c:f2:4f:b9:d0:d6:cd:9b:c9:e1:d9:a2:88:34:26:ab:
69:b5:1e:d7:66:c2:c0:94:74:cc:e0:12:6e:8d:8d:25:e6:ac:
69:d8:3a:6e:5a:10:5b:6d:9c:cb:04:0b:68:7d:2d:49:27:22:
cf:2f:d0:46:37:ac:42:0b:c5:65:5b:7b:a9:c8:f0:36:62:9d:
8c:d9:95:55:3a:d5:fe:11:0c:d3:7b:ff:bf:59:e2:63:44:b0:
5f:bf:3e:7e:34:de:f4:9c:5d:9d:4c:fd:19:57:7f:30:cf:fb:
63:64:f5:cb:61:81:2d:7d:80:e3:17:26:68:c0:0a:c7:f6:f3:
5f:43:4c:a6:10:06:99:b8:3b:4a:8b:e3:ff:35:e4:4b:2c:fc:
bd:27:af:e5:27:0e:3b:c6:87:27:ad:11:32:33:be:5a:3c:bd:
9d:41:67:aa:59:98:fb:30:ba:6d:32:8f:25:81:7c:95:2c:4f:
63:6d:70:e0:49:f4:eb:60:ac:76:c7:80:d4:64:ba:f1:61:2a:
ba:7b:b5:b8:4b:11:97:78:40:d8:b1:1b:10:00:17:a8:da:81:
20:ed:be:7c:18:63:a8:a3:44:d8:2f:df:87:c6:e5:70:49:2e:
47:0b:8b:50:0b:89:dd:09:c2:bb:96:ba:e5:57:16:30:19:59:
80:a7:a6:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 14:33:16 2026 by rpki-client