Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier: TPPQF8IkA0LmG2bsQ99SEgSqiPUZbF+A1yr9hvNkzDc=
Subject key identifier: 4D:5C:FB:30:25:74:6F:B7:C4:7C:70:C7:5A:E1:4C:EB:D7:AD:3E:FA
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer: /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial: 019D37895AD9937FADE76A6558EE0F88BC62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number: 068E
Signing time: Sun 29 Mar 2026 03:00:41 +0000
Manifest this update: Sun 29 Mar 2026 03:00:41 +0000
Manifest next update: Mon 30 Mar 2026 03:00:41 +0000
Files and hashes: 1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: smsHNsoV570fkZCWR4rmokT/t/evUrERGfwQO5dtzJs=)
2: of5fvbBOl_2ZOya6SQ0xsXlOVng.roa (hash: FlPfu4dwMoPwrHiBDoZEfb7scYNLSD/+Wl4U6dL0V+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:5a:d9:93:7f:ad:e7:6a:65:58:ee:0f:88:bc:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Validity
Not Before: Mar 29 03:00:41 2026 GMT
Not After : Mar 30 03:00:41 2026 GMT
Subject: CN=4d5cfb3025746fb7c47c70c75ae14cebd7ad3efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0c:63:53:11:1a:6e:cd:09:7b:34:d0:54:1a:
ab:45:68:29:b4:70:e7:04:26:bb:5f:ce:4c:ab:1f:
1e:55:18:bd:af:d0:79:db:da:26:bc:87:be:09:c0:
1f:c8:fd:28:12:75:3f:cc:09:e9:7b:9e:86:a1:5b:
51:db:5a:39:26:e8:d4:ea:e8:44:b3:70:83:ce:1f:
7d:45:93:25:dd:51:d0:28:af:36:8b:62:fa:99:6e:
15:78:1f:08:d7:ad:6b:96:bc:ec:e3:f0:58:01:5f:
ba:17:4f:35:b2:a2:22:b2:08:fb:1a:79:94:32:5d:
1c:ca:b5:66:55:22:32:59:83:47:2f:06:ad:50:58:
1c:96:b9:3e:d5:db:a0:c2:c0:3e:eb:ca:87:e6:4f:
32:7d:1e:3d:c9:09:59:d9:1a:01:25:26:ac:fa:20:
07:06:fe:21:ea:88:93:9e:56:e9:93:19:a8:38:1c:
2a:c0:2c:1a:16:0e:10:50:89:bf:13:f6:81:bb:88:
4e:90:65:df:41:93:68:60:99:f2:83:fb:60:20:91:
de:a6:95:c7:2a:f5:a4:d3:8f:f8:06:b7:ed:08:56:
9a:d2:41:1b:56:3c:ed:59:af:ff:f4:a3:29:6e:d0:
f1:7e:64:ef:ef:bd:da:a0:2a:a9:d8:75:a8:b9:75:
0c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:5C:FB:30:25:74:6F:B7:C4:7C:70:C7:5A:E1:4C:EB:D7:AD:3E:FA
X509v3 Authority Key Identifier:
keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:92:39:fd:4f:75:41:46:a7:88:90:2e:75:dc:2f:50:2a:4b:
87:67:f8:b9:cc:1b:89:17:71:c8:c8:1b:53:f3:6f:f3:19:d8:
3c:d5:ee:73:0a:15:0c:d1:69:3b:19:a0:b2:98:18:5a:2a:cb:
ac:c6:95:46:b2:11:0c:63:c5:51:a3:2c:07:12:84:10:42:71:
b8:d5:e2:c4:52:1f:13:36:2b:12:7e:fc:e9:19:92:bc:97:4b:
32:9b:13:5b:c9:4c:ed:10:d6:ff:1f:df:54:a9:d8:e4:ea:03:
bd:75:b7:9b:e0:23:6f:78:28:1f:81:f3:7c:7c:e5:84:12:b1:
7f:66:a6:89:f8:54:2e:68:73:ca:95:19:9d:9b:92:a2:6d:63:
19:11:56:c9:b9:78:5d:8d:fa:ea:0e:c6:3a:44:74:d4:9d:01:
0b:1c:81:01:f2:ef:ba:44:c8:11:a2:aa:a0:a1:12:86:da:2b:
1c:1b:9a:71:29:b8:90:f7:37:db:42:07:71:00:5b:2f:3c:8d:
07:71:fb:6a:92:06:99:67:f8:04:e6:a5:a2:84:c9:e2:0e:52:
19:8e:af:85:60:b7:60:38:b4:61:11:f4:b3:d2:2e:59:d4:8e:
7a:e6:c7:04:08:64:01:fb:0e:5f:a1:b7:ea:a6:b6:ad:f7:d0:
6a:d2:b2:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:47 2026 by rpki-client