Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
File: jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft (raw, json)
Hash identifier: GRSDlWLQ1+3l7IIoOXbwG/BfNb6IkiRvAFpohhP8OmQ=
Subject key identifier: DF:49:39:35:EE:8F:38:41:E3:73:25:A4:47:2D:87:50:B3:51:AC:78
Authority key identifier: 8D:C2:97:EF:18:59:CA:33:75:97:06:BD:C6:EE:79:25:CF:A5:14:1D
Certificate issuer: /CN=8dc297ef1859ca33759706bdc6ee7925cfa5141d
Certificate serial: 019D38661B97ADD9BE0C84E8A2096F6670C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
Manifest number: 106C
Signing time: Sun 29 Mar 2026 07:01:48 +0000
Manifest this update: Sun 29 Mar 2026 07:01:48 +0000
Manifest next update: Mon 30 Mar 2026 07:01:48 +0000
Files and hashes: 1: jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl (hash: aBMtQzETXc7ospctMzEbBjnunaKaaEDqeSVr75NkqYs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:1b:97:ad:d9:be:0c:84:e8:a2:09:6f:66:70:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dc297ef1859ca33759706bdc6ee7925cfa5141d
Validity
Not Before: Mar 29 07:01:48 2026 GMT
Not After : Mar 30 07:01:48 2026 GMT
Subject: CN=df493935ee8f3841e37325a4472d8750b351ac78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6f:52:19:14:8b:fb:72:cc:79:41:ab:cf:68:
8c:18:cc:7c:e6:91:74:c6:ab:36:56:1c:3c:66:df:
76:12:93:06:55:ea:f4:22:75:8c:e5:a4:a1:70:8a:
4d:29:b8:27:7f:27:3a:f3:44:b8:45:2a:df:93:0b:
ba:22:80:89:8a:1f:1f:cb:c3:66:f9:c2:80:1f:b8:
26:42:53:7d:e2:70:0e:e3:81:2e:b8:f0:76:d1:b9:
5c:3b:76:48:2b:f7:9f:f6:d9:d6:13:2d:d1:ec:1b:
68:0e:ca:77:fb:2c:9c:96:c5:d3:d9:5c:60:ec:4d:
f7:d6:6b:fc:50:39:b9:c3:38:da:79:78:23:35:75:
b4:8e:6c:83:80:9d:bc:3b:f7:c0:fe:77:cc:45:7a:
15:e0:a8:b2:40:93:44:8b:09:cf:8b:8d:a9:96:c0:
e0:9d:20:13:27:f7:de:ac:85:f5:83:ca:b6:f4:b6:
1d:c1:a7:e2:30:fc:8d:8d:4c:2d:07:cf:6a:ac:c0:
96:8f:09:24:5c:68:f3:60:a7:58:df:3a:cf:4e:c8:
d5:18:5b:16:3d:26:4c:8e:60:ac:85:d2:6d:e2:89:
7f:39:3b:44:7e:5f:b7:98:aa:1e:e1:ea:a5:51:47:
03:df:12:61:e5:b2:ad:a8:0a:78:6e:39:c6:00:06:
5d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:49:39:35:EE:8F:38:41:E3:73:25:A4:47:2D:87:50:B3:51:AC:78
X509v3 Authority Key Identifier:
keyid:8D:C2:97:EF:18:59:CA:33:75:97:06:BD:C6:EE:79:25:CF:A5:14:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:06:4d:2f:ae:1e:a0:8c:a5:0a:b0:17:82:a2:da:2e:ec:c7:
69:3b:98:59:b4:af:b6:1a:55:67:72:35:bd:4c:a1:a9:b9:f7:
cb:dd:32:3e:c0:bb:6d:55:72:ac:82:ab:4a:8e:70:44:a1:38:
2e:7c:b6:8a:8c:9b:4f:c5:ed:00:a5:95:de:dc:37:6f:ee:24:
92:7d:d5:35:27:30:ca:ee:fe:ea:ce:7b:90:ea:43:8d:9f:3a:
92:4f:f0:1a:fc:9e:e5:a7:31:1d:33:62:e1:7a:73:9f:bf:df:
29:e3:3c:eb:f4:59:bf:56:96:c6:b8:7c:4b:1a:b8:98:7c:ce:
9a:c2:2f:1c:4a:e9:0d:52:f4:2a:0a:96:00:91:ea:ff:52:24:
aa:55:66:38:e8:36:42:7a:a4:1c:ba:8e:3b:41:d6:bd:f6:c9:
d1:80:4e:30:f0:08:9e:31:1b:6c:54:20:2e:4f:cf:2f:78:cc:
81:1b:27:ed:6e:dc:dc:c0:bd:80:ea:6a:a4:76:25:d3:a7:68:
0f:87:df:fa:7c:f5:08:06:5c:93:53:1c:28:e2:a7:a1:13:d1:
cc:8e:a9:e1:4a:ac:cd:0f:fe:78:0a:37:9d:2b:f5:d2:cb:f5:
8c:21:bb:de:91:64:24:83:92:49:37:e2:a2:67:ec:84:7c:23:
b3:1e:40:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:09:35 2026 by rpki-client