Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
File: jghAgExmgMQfIehybzgLleaelEc.mft (raw, json)
Hash identifier: DA6v3ws5n6qlF9i87xi2VpMCTCFpmFExlLhXWyhpWUI=
Subject key identifier: F5:83:11:BA:64:7C:CF:58:E5:EE:60:30:EA:FC:89:9F:A7:52:A5:5C
Authority key identifier: 8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
Certificate issuer: /CN=8e0840804c6680c41f21e8726f380b95e69e9447
Certificate serial: 019E2A029E02FB352CCC0FE21DB40F08A81E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
Manifest number: 0E5D
Signing time: Fri 15 May 2026 05:01:14 +0000
Manifest this update: Fri 15 May 2026 05:01:14 +0000
Manifest next update: Sat 16 May 2026 05:01:14 +0000
Files and hashes: 1: FcDP4t2fUN_dTrYyfxsE8QW3Eyg.roa (hash: sDQcJIThGsK9Nrdf2isebfLDyVxi7JAHTUMrXx4QKTw=)
2: cjfADLaDEFlQK8qrVJ5NipbhmYQ.roa (hash: IRslVjUODdyfex5FaSaSEKWcalRpU1+utYy+dcv1SD4=)
3: jghAgExmgMQfIehybzgLleaelEc.crl (hash: sK89PNuVvxeDiT6bCM9wR2i44va+tpwW7m1aIvy9sw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:02:9e:02:fb:35:2c:cc:0f:e2:1d:b4:0f:08:a8:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0840804c6680c41f21e8726f380b95e69e9447
Validity
Not Before: May 15 05:01:14 2026 GMT
Not After : May 16 05:01:14 2026 GMT
Subject: CN=f58311ba647ccf58e5ee6030eafc899fa752a55c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5b:7c:4e:b1:5f:bd:01:c0:64:28:53:99:67:
0d:c0:e2:6c:fc:55:a5:ae:0f:89:d0:93:04:47:88:
1b:3f:4c:3b:18:e1:55:2b:d4:99:99:cc:b7:5f:d6:
c7:f0:a8:34:15:41:7f:27:f5:e4:da:8e:4b:54:16:
cc:f5:09:55:a4:ed:25:6b:f4:c9:3a:1e:ac:4d:be:
ca:fd:c0:11:aa:6c:48:19:bb:17:d8:a9:2d:55:b3:
3a:d5:4b:39:dc:cc:05:5b:f9:ae:14:1f:f3:c6:d6:
0a:3e:ac:25:53:c0:fd:cc:0f:3e:ad:9c:58:97:d7:
e2:48:cb:cc:ee:d5:a6:35:ee:95:e3:d4:05:88:0a:
c5:d2:65:2d:b7:fa:02:33:08:3e:30:df:85:1d:22:
50:72:62:4d:27:95:ec:ed:41:cc:87:a3:f2:b6:ef:
c6:61:6f:e2:ca:81:9a:71:cc:68:2a:d4:74:10:1a:
64:4b:00:c8:47:ed:fb:77:17:ec:3e:d1:9f:39:8d:
56:37:a6:32:ca:ec:f6:99:06:58:c1:95:56:d7:6e:
bd:50:e2:4a:f3:c3:8e:37:6f:82:18:c1:a9:66:b5:
76:75:1f:25:f2:e6:32:b3:61:3a:3c:84:62:ac:59:
2a:a9:5b:3f:c3:38:7a:f5:5d:c6:0c:be:4d:56:32:
c7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:83:11:BA:64:7C:CF:58:E5:EE:60:30:EA:FC:89:9F:A7:52:A5:5C
X509v3 Authority Key Identifier:
keyid:8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:f5:50:56:79:0b:8c:3c:8c:c1:44:fb:1e:e6:da:03:eb:64:
b7:84:2b:8d:be:c2:2d:37:aa:ea:45:ba:47:64:30:0a:67:17:
1e:a2:cd:87:4b:65:b9:cc:8a:14:c6:83:7d:4b:e4:a7:89:10:
4f:7a:13:4a:df:1b:9c:15:c1:0f:90:94:78:53:9c:78:76:e0:
65:ca:c9:2e:16:c8:5c:31:08:1a:51:5e:37:e0:94:71:79:c8:
26:34:60:61:9e:fc:ba:c5:70:0c:b1:94:aa:47:e9:40:19:a7:
93:df:47:1d:77:6d:5c:93:78:76:99:89:f1:ba:76:c2:a5:53:
f6:49:ff:e5:e8:f8:54:4a:b2:38:43:21:ba:cd:d3:8b:f4:23:
8f:48:4e:5a:e4:19:1d:46:fd:c5:fe:31:a8:e0:f0:37:3d:35:
f7:4e:70:db:29:e6:b3:4b:6c:56:c0:63:15:a1:6c:23:3f:47:
7f:52:6b:76:75:23:b6:94:45:30:d0:d6:8c:b7:84:ab:cb:f8:
31:79:97:d2:9b:33:21:be:ea:a5:45:49:46:40:b5:e6:7d:00:
06:3a:c7:68:7c:5c:58:f6:78:0d:56:d8:cb:67:fe:0e:ad:61:
08:55:3c:04:fd:8d:7a:d6:c6:8d:33:de:c9:43:c2:a4:cc:50:
79:c6:08:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4qAp4C+zUszA/iHbQPCKgeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMDg0MDgwNGM2NjgwYzQxZjIxZTg3MjZmMzgwYjk1ZTY5
ZTk0NDcwHhcNMjYwNTE1MDUwMTE0WhcNMjYwNTE2MDUwMTE0WjAzMTEwLwYDVQQD
EyhmNTgzMTFiYTY0N2NjZjU4ZTVlZTYwMzBlYWZjODk5ZmE3NTJhNTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA11t8TrFfvQHAZChTmWcNwOJs/FWl
rg+J0JMER4gbP0w7GOFVK9SZmcy3X9bH8Kg0FUF/J/Xk2o5LVBbM9QlVpO0la/TJ
Oh6sTb7K/cARqmxIGbsX2KktVbM61Us53MwFW/muFB/zxtYKPqwlU8D9zA8+rZxY
l9fiSMvM7tWmNe6V49QFiArF0mUtt/oCMwg+MN+FHSJQcmJNJ5Xs7UHMh6Pytu/G
YW/iyoGaccxoKtR0EBpkSwDIR+37dxfsPtGfOY1WN6Yyyuz2mQZYwZVW1269UOJK
88OON2+CGMGpZrV2dR8l8uYys2E6PIRirFkqqVs/wzh69V3GDL5NVjLHBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPWDEbpkfM9Y5e5gMOr8iZ+nUqVcMB8GA1UdIwQY
MBaAFI4IQIBMZoDEHyHocm84C5XmnpRHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamdoQWdFeG1nTVFmSWVoeWJ6Z0xsZWFlbEVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9jZWU1NzItMzQyMC00NWU0LTg3YjYt
YzI3OTk3NTNjODUzLzEvamdoQWdFeG1nTVFmSWVoeWJ6Z0xsZWFlbEVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi9jZWU1NzItMzQyMC00NWU0LTg3YjYtYzI3OTk3NTNjODUz
LzEvamdoQWdFeG1nTVFmSWVoeWJ6Z0xsZWFlbEVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFfVQVnkL
jDyMwUT7HubaA+tkt4Qrjb7CLTeq6kW6R2QwCmcXHqLNh0tlucyKFMaDfUvkp4kQ
T3oTSt8bnBXBD5CUeFOceHbgZcrJLhbIXDEIGlFeN+CUcXnIJjRgYZ78usVwDLGU
qkfpQBmnk99HHXdtXJN4dpmJ8bp2wqVT9kn/5ej4VEqyOEMhus3Ti/Qjj0hOWuQZ
HUb9xf4xqODwNz01905w2ynms0tsVsBjFaFsIz9Hf1JrdnUjtpRFMNDWjLeEq8v4
MXmX0pszIb7qpUVJRkC15n0ABjrHaHxcWPZ4DVbYy2f+Dq1hCFU8BP2NetbGjTPe
yUPCpMxQecYIYg==
-----END CERTIFICATE-----
Generated at Fri May 15 06:58:42 2026 by rpki-client