Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
File: JHQF6c7jnXGUTV4xSesBth-a2x4.mft (raw, json)
Hash identifier: 790v4eeIhMjiZcx+39tEmRnbLePhwIzVZgVEIMlElGA=
Subject key identifier: 9F:A8:B6:CB:93:E5:77:D6:F4:97:14:C9:6B:D9:3F:07:78:89:02:FB
Authority key identifier: 24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
Certificate issuer: /CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Certificate serial: 019DCE9929E873C258CDDBA9AA0989437F5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
Manifest number: 13EA
Signing time: Mon 27 Apr 2026 11:00:37 +0000
Manifest this update: Mon 27 Apr 2026 11:00:37 +0000
Manifest next update: Tue 28 Apr 2026 11:00:37 +0000
Files and hashes: 1: JHQF6c7jnXGUTV4xSesBth-a2x4.crl (hash: Y2Z4jaJmu+z+/jp8yOOX9g+dSFx36V0hDRccSKFNtBs=)
2: KcpUiO15Gzl7SK9StcczqpLi6i8.roa (hash: f2aZlDMUXJuXCv7f53eZgqwP78Uz9MlJPKMYPdzciVo=)
3: RHgj94s99yLOm8jJoah9M5rvNqY.roa (hash: 52fyve7WO1cwkbeeuvWUD7YyeD7rPI2Crc9dE/2ZkFM=)
4: Udssf4fE6o3QNpke-lB6PuA0Uo0.roa (hash: 9+ibfBkyOgj0hAuo5PA4Hd1TB41jIqZV5+PkUc7DWA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 11:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:99:29:e8:73:c2:58:cd:db:a9:aa:09:89:43:7f:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Validity
Not Before: Apr 27 11:00:37 2026 GMT
Not After : Apr 28 11:00:37 2026 GMT
Subject: CN=9fa8b6cb93e577d6f49714c96bd93f07788902fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:94:f3:b4:e1:48:24:54:ef:a9:85:10:54:b4:
b7:ae:d8:8a:78:2d:af:0b:1a:d6:c8:3d:eb:2e:84:
e6:36:40:79:4f:c0:38:65:f7:1e:6e:9c:f5:2c:5d:
be:5c:e5:2a:c4:6a:58:d9:cf:2b:4a:ca:9e:e7:f3:
75:b7:1a:f2:58:21:00:8d:2f:b3:6b:f8:38:34:89:
0e:1b:b3:49:af:49:e0:f9:35:43:74:4f:b1:94:f0:
e9:c5:3f:03:86:78:09:28:03:d1:2f:74:d8:9b:07:
7e:91:6a:05:ff:13:0a:fe:46:0d:32:72:83:45:f8:
c3:6c:0f:5b:f2:f5:6e:38:b4:5a:2e:95:96:99:ef:
a5:10:01:d3:0c:e6:20:7a:d7:48:17:3e:96:c2:0a:
79:e8:41:6d:71:3c:ae:45:65:9d:48:88:8d:6e:69:
ee:61:07:ed:8a:4b:ec:6b:57:5d:0a:b2:a6:23:ec:
56:05:96:e2:c4:87:8b:30:ac:bb:a4:f4:24:cd:a6:
6a:09:2b:c3:dc:44:51:7b:34:0f:8b:0a:83:cc:16:
51:34:2d:90:f7:cf:9d:1c:43:19:af:61:9f:65:6d:
ce:9f:23:37:8e:08:a5:61:5e:91:5b:ac:76:e8:aa:
96:80:42:1c:b5:66:4b:70:2b:2a:c1:19:58:cd:04:
40:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A8:B6:CB:93:E5:77:D6:F4:97:14:C9:6B:D9:3F:07:78:89:02:FB
X509v3 Authority Key Identifier:
keyid:24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:cf:e0:82:b4:27:21:25:f4:e2:29:e9:76:7f:2a:66:ec:89:
00:fa:a1:1e:3f:a9:4c:b5:28:0b:2c:0c:32:f3:84:78:dd:3f:
69:71:62:00:b0:74:9d:ba:95:dd:14:ab:16:9f:b7:e3:b2:38:
90:76:3a:d9:fb:f0:4e:c3:c2:17:9a:b9:90:0c:db:7f:73:c3:
3d:56:77:c1:40:71:76:c2:64:4b:59:3c:b3:e9:b4:9e:50:0c:
f8:ef:63:31:67:5b:91:82:bf:49:bd:31:f8:b2:b8:84:80:9b:
f0:78:fe:80:cf:5c:ad:24:50:e3:8a:12:82:33:70:a1:7e:1b:
db:0b:25:97:e3:cf:7f:5f:9e:e1:60:b2:2b:36:e0:b1:3f:03:
30:fd:bc:93:52:ae:52:cb:f1:e4:4f:74:89:04:a4:60:2b:17:
98:92:b5:91:1f:d6:6f:de:15:a8:65:5c:b1:2c:76:15:42:f0:
f6:11:dd:5c:b5:8f:f1:69:f9:e4:f5:cf:32:9b:fd:c9:ae:5d:
1f:9f:a0:73:25:17:73:38:da:2b:a4:d6:7a:63:44:ca:5d:8a:
2c:cd:dd:fc:4b:68:a1:cc:ba:9b:b5:7c:e1:fa:a7:c1:9b:3c:
c9:e8:66:37:3d:75:b4:4c:28:fb:90:c5:a8:84:1b:c6:75:cd:
af:29:d0:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 18:52:34 2026 by rpki-client