Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
File: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft (raw, json)
Hash identifier: X0Dxo9i9a9hqgJl45OZpYMIt/dwVvJ7s67t48mv0Qao=
Subject key identifier: 76:8B:7F:27:35:EE:CA:83:47:D5:9A:A8:97:3E:58:48:EC:74:91:A1
Authority key identifier: 8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
Certificate issuer: /CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4
Certificate serial: 019D382E2C8CC8AEAFBE4D9F3CB1478CF003
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
Manifest number: 15B0
Signing time: Sun 29 Mar 2026 06:00:43 +0000
Manifest this update: Sun 29 Mar 2026 06:00:43 +0000
Manifest next update: Mon 30 Mar 2026 06:00:43 +0000
Files and hashes: 1: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl (hash: 5Kf+FZtSt+vPtLtUIZFtjaJlpI9dv9eeH7QZ7excpig=)
2: n2cwiplK4QxCrTwGBHLplO2ULeU.roa (hash: 7aeKHzASb9QXAHN2dhVECcGoHU8aQKfp4EYYcWeuYiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:2c:8c:c8:ae:af:be:4d:9f:3c:b1:47:8c:f0:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4
Validity
Not Before: Mar 29 06:00:43 2026 GMT
Not After : Mar 30 06:00:43 2026 GMT
Subject: CN=768b7f2735eeca8347d59aa8973e5848ec7491a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:91:a1:58:bb:15:13:cb:05:19:fd:2b:e7:7a:
43:36:88:61:1e:29:15:19:83:0b:c3:a2:d6:a9:be:
58:dc:4a:19:05:f6:62:3a:a0:56:e2:17:a7:16:1e:
23:da:1b:e0:5d:39:20:25:a1:1b:21:a7:9a:ed:c4:
f7:c0:db:fe:f4:9e:c5:d4:a6:5c:95:50:a1:88:87:
20:8d:2c:d3:37:13:08:0a:1b:91:d0:90:64:e2:0b:
95:70:16:45:6d:fa:0e:a4:58:61:ac:ef:11:d8:4a:
16:c8:43:bd:c7:f6:ed:2e:85:7a:5f:61:3f:28:60:
20:fe:2a:38:3e:5b:79:f4:4a:79:af:ca:05:0e:ef:
15:66:d5:d6:d1:bf:9f:e5:23:86:18:cf:69:0e:a8:
a6:31:81:3b:e4:4d:a0:2c:86:dd:7d:a5:ef:15:04:
b3:45:49:52:be:e1:4d:55:e2:58:ed:fa:44:9b:7d:
46:ac:34:78:51:7d:c4:1e:28:a1:f6:dc:cb:1c:5d:
4d:53:36:fe:f0:a7:ab:a0:88:87:ff:07:43:fa:78:
fa:20:66:74:22:cf:49:e6:6a:2f:36:80:52:f5:b3:
71:3b:94:8c:d2:c4:da:c3:dc:fd:d4:85:62:09:e6:
42:db:17:74:00:31:2d:f2:db:fd:46:fb:a5:ce:12:
23:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:8B:7F:27:35:EE:CA:83:47:D5:9A:A8:97:3E:58:48:EC:74:91:A1
X509v3 Authority Key Identifier:
keyid:8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:57:e4:bd:23:85:95:76:d1:26:56:79:89:96:21:a7:43:63:
a9:06:a3:45:3c:37:75:e7:3b:04:65:73:a6:c3:28:84:52:d8:
01:ab:5c:72:a4:aa:39:76:c4:9d:0f:e7:dc:41:60:da:02:6f:
51:83:c6:1f:de:0f:53:26:73:11:bc:b2:15:51:1c:77:25:0c:
f2:30:9c:2b:a9:a6:90:5b:11:89:9d:f5:40:21:b5:34:53:7d:
47:f4:b3:54:f6:61:ac:b5:98:64:de:9c:e7:ed:e4:8d:c4:ce:
ff:f2:2f:c6:4b:47:dd:85:ab:56:5c:44:08:a9:88:37:0e:d2:
96:6a:21:d4:ea:ac:c5:ce:dd:22:7e:54:7e:3e:6d:d3:65:5d:
e7:cc:b8:62:94:02:72:53:0e:76:29:8d:a4:26:c1:8d:7e:e3:
8f:0a:3f:8c:9c:98:09:a2:86:b2:49:12:d0:0e:bb:75:79:8b:
af:55:ad:3d:04:61:43:33:38:2b:ce:b2:67:15:6b:a1:fb:97:
8c:ea:90:67:e4:41:2b:57:57:11:39:45:8e:44:75:a2:a5:b6:
fc:6a:12:46:46:e1:ae:8b:ec:87:77:c1:fc:bc:ad:ff:71:ee:
c1:8e:6f:8f:73:3f:7e:46:26:2c:2c:8a:15:45:f6:0a:ea:94:
93:73:13:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04LiyMyK6vvk2fPLFHjPADMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkZDA5ODE3ZGZlYTRjNjZjOTQxOGY5ZjM5MDZmMWQwZTA3
Y2M5ZDQwHhcNMjYwMzI5MDYwMDQzWhcNMjYwMzMwMDYwMDQzWjAzMTEwLwYDVQQD
Eyg3NjhiN2YyNzM1ZWVjYTgzNDdkNTlhYTg5NzNlNTg0OGVjNzQ5MWExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJGhWLsVE8sFGf0r53pDNohhHikV
GYMLw6LWqb5Y3EoZBfZiOqBW4henFh4j2hvgXTkgJaEbIaea7cT3wNv+9J7F1KZc
lVChiIcgjSzTNxMIChuR0JBk4guVcBZFbfoOpFhhrO8R2EoWyEO9x/btLoV6X2E/
KGAg/io4Plt59Ep5r8oFDu8VZtXW0b+f5SOGGM9pDqimMYE75E2gLIbdfaXvFQSz
RUlSvuFNVeJY7fpEm31GrDR4UX3EHiih9tzLHF1NUzb+8KeroIiH/wdD+nj6IGZ0
Is9J5movNoBS9bNxO5SM0sTaw9z91IViCeZC2xd0ADEt8tv9RvulzhIjqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHaLfyc17sqDR9WaqJc+WEjsdJGhMB8GA1UdIwQY
MBaAFI3QmBff6kxmyUGPnzkG8dDgfMnUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamRDWUY5X3FUR2JKUVktZk9RYngwT0I4eWRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85MzM3ZWMtYjRkZS00NDlhLWI2MDct
ZWE5Y2I1MjdhZTcxLzEvamRDWUY5X3FUR2JKUVktZk9RYngwT0I4eWRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85MzM3ZWMtYjRkZS00NDlhLWI2MDctZWE5Y2I1MjdhZTcx
LzEvamRDWUY5X3FUR2JKUVktZk9RYngwT0I4eWRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlFfkvSOF
lXbRJlZ5iZYhp0NjqQajRTw3dec7BGVzpsMohFLYAatccqSqOXbEnQ/n3EFg2gJv
UYPGH94PUyZzEbyyFVEcdyUM8jCcK6mmkFsRiZ31QCG1NFN9R/SzVPZhrLWYZN6c
5+3kjcTO//IvxktH3YWrVlxECKmINw7Slmoh1Oqsxc7dIn5Ufj5t02Vd58y4YpQC
clMOdimNpCbBjX7jjwo/jJyYCaKGskkS0A67dXmLr1WtPQRhQzM4K86yZxVrofuX
jOqQZ+RBK1dXETlFjkR1oqW2/GoSRkbhrovsh3fB/Lyt/3HuwY5vj3M/fkYmLCyK
FUX2CuqUk3MT/Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:47:22 2026 by rpki-client