Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
File: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft (raw, json)
Hash identifier: aA7t/RLWwaI3s2ZvRvT/TpDBwXzwIywu23glwn7FOYM=
Subject key identifier: 74:D9:70:B7:65:BD:4B:22:0F:5D:4C:FE:43:6D:8E:2A:98:DA:3E:26
Authority key identifier: 8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D
Certificate issuer: /CN=8d50b3a9a0503905596c77f5802bef9fc73d647d
Certificate serial: 019D394072C4E25F7590227A376CF8244C2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
Manifest number: 050A
Signing time: Sun 29 Mar 2026 11:00:18 +0000
Manifest this update: Sun 29 Mar 2026 11:00:18 +0000
Manifest next update: Mon 30 Mar 2026 11:00:18 +0000
Files and hashes: 1: 08TX7zGJM_9SDvXsn_IRwc2BjrU.roa (hash: jT+EKCy6Js0nlHIQwG+OyzWgM7mgDMvpygyb2+ijALI=)
2: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl (hash: Hb7BYtbudqvXMCeJ4MHfWcwv8RVyRRiv+4II8MN6L7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:72:c4:e2:5f:75:90:22:7a:37:6c:f8:24:4c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d50b3a9a0503905596c77f5802bef9fc73d647d
Validity
Not Before: Mar 29 11:00:18 2026 GMT
Not After : Mar 30 11:00:18 2026 GMT
Subject: CN=74d970b765bd4b220f5d4cfe436d8e2a98da3e26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:da:cd:ab:fc:3c:08:7e:1c:91:2a:dc:2d:0d:
32:73:09:bf:54:45:b0:cd:22:f5:34:af:f1:cd:48:
91:d7:11:76:42:2f:1d:28:2e:10:06:50:24:f0:17:
b8:5b:f6:ff:6e:9e:5a:21:8c:bf:55:86:b1:fb:98:
d8:eb:48:af:d3:e3:b3:1a:33:4a:a6:ab:7a:96:86:
59:38:8c:d7:ca:92:d7:f8:4f:22:cf:0c:be:1a:ff:
a0:39:9c:6e:9b:7e:bc:33:9e:f6:7c:01:2c:2f:70:
88:2b:30:38:8e:96:f5:d5:40:14:d7:7f:6f:79:05:
fe:36:49:aa:42:26:f4:dc:79:52:ef:52:f8:48:14:
7a:f3:1e:70:8c:6f:52:37:68:de:7a:63:6e:9e:4b:
ed:c7:c4:3e:63:2b:2c:24:18:a1:3d:18:7d:94:15:
0e:5c:68:72:1c:65:68:bc:ef:a1:fb:c5:78:a4:80:
d0:89:9b:b0:f8:5e:7d:ad:e0:cc:51:f4:23:7d:0f:
7e:8c:29:02:61:28:e4:2b:da:0b:c9:4a:c2:b5:35:
08:c2:da:f1:b7:44:d9:42:3b:79:06:01:85:61:2d:
d7:06:fb:15:ef:d8:ce:e1:6e:b5:72:21:db:fb:ad:
80:cb:96:7d:c6:a6:27:b1:66:76:73:ef:74:d7:56:
d7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D9:70:B7:65:BD:4B:22:0F:5D:4C:FE:43:6D:8E:2A:98:DA:3E:26
X509v3 Authority Key Identifier:
keyid:8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:a6:a1:40:52:a6:9d:5d:e0:5a:69:42:0a:72:82:5e:76:63:
dd:54:64:5a:99:2d:cb:88:65:39:af:5b:9e:f3:0d:90:8b:f8:
58:0a:44:b8:02:2c:b2:8f:01:f7:30:4d:c6:cf:da:a1:e9:4f:
c4:ef:85:ae:80:61:ab:56:24:fc:c5:ab:e0:dd:63:2e:1b:64:
b7:51:91:fb:31:e7:f0:f4:5d:43:21:1e:94:a4:76:4a:13:39:
d7:87:4a:c8:cf:43:8f:bd:a0:0e:ae:32:38:ec:fd:ca:f9:8f:
c8:d9:40:0b:8e:20:a0:70:cf:a2:c2:5b:76:b5:4e:aa:67:5e:
b0:cc:73:44:fb:0f:2d:b7:e4:61:23:df:36:e4:14:45:32:1f:
f0:05:0f:a5:9c:e5:77:0c:79:f2:60:bf:e8:6e:b4:c6:c5:c1:
d1:0b:cf:ab:78:e8:42:4f:82:97:ba:96:55:7b:20:06:59:d9:
ad:71:88:b8:da:9c:55:2a:7e:40:b5:74:44:e4:c2:93:4e:01:
a9:b5:95:14:45:50:05:18:dd:29:0d:43:d3:d3:19:8a:92:b6:
d3:d3:63:2f:b7:90:4f:71:f3:e5:cc:d3:83:7e:15:16:77:6c:
ac:53:0c:5f:0f:75:59:c9:3b:68:d5:17:b0:fa:22:de:6b:cf:
f1:55:1a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:01:21 2026 by rpki-client