Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
File: jghAgExmgMQfIehybzgLleaelEc.mft (raw, json)
Hash identifier: OSuWRnwIzlAK8TRlZIbXoHErKjlPtwl0z1k5uj6IEi8=
Subject key identifier: 3C:6E:D1:87:48:08:F7:EE:A9:47:57:1F:5D:1F:5F:DE:77:5F:B0:BD
Authority key identifier: 8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
Certificate issuer: /CN=8e0840804c6680c41f21e8726f380b95e69e9447
Certificate serial: 019F11C0E5EAF99B30E39C3797E0D9E57354
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
Manifest number: 0ED5
Signing time: Mon 29 Jun 2026 05:01:22 +0000
Manifest this update: Mon 29 Jun 2026 05:01:22 +0000
Manifest next update: Tue 30 Jun 2026 05:01:22 +0000
Files and hashes: 1: FcDP4t2fUN_dTrYyfxsE8QW3Eyg.roa (hash: sDQcJIThGsK9Nrdf2isebfLDyVxi7JAHTUMrXx4QKTw=)
2: cjfADLaDEFlQK8qrVJ5NipbhmYQ.roa (hash: IRslVjUODdyfex5FaSaSEKWcalRpU1+utYy+dcv1SD4=)
3: jghAgExmgMQfIehybzgLleaelEc.crl (hash: +Prc7VrhPWRbyJj95B28zxPyky4jOUQfT1GeW6BGldM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:e5:ea:f9:9b:30:e3:9c:37:97:e0:d9:e5:73:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0840804c6680c41f21e8726f380b95e69e9447
Validity
Not Before: Jun 29 05:01:22 2026 GMT
Not After : Jun 30 05:01:22 2026 GMT
Subject: CN=3c6ed1874808f7eea947571f5d1f5fde775fb0bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:88:92:bb:ff:8c:0a:60:cf:82:75:45:55:ba:
90:9b:de:bd:90:50:4c:92:db:cd:d6:3a:ba:be:60:
6f:98:2e:2d:ba:96:09:12:ea:f2:93:8a:62:4f:32:
d6:d5:6a:f7:c6:ec:b1:82:a8:f1:35:b6:7a:da:32:
e7:47:43:90:58:aa:fe:cd:eb:cd:55:2a:d9:6c:73:
3e:bc:0d:c5:dc:f0:28:b9:6b:a0:c5:85:fa:7f:60:
4b:27:7e:b6:fa:c2:82:7f:9b:09:90:b5:cb:d8:55:
45:0f:be:34:11:5c:0b:59:8d:24:c8:e1:1d:d2:20:
a2:a6:4a:da:6b:b1:f9:96:8c:d7:cd:a4:ab:5d:15:
67:cf:e8:3e:be:60:df:3c:df:65:e0:89:9b:65:5d:
4b:35:7f:71:a6:a6:d7:89:e4:b0:3f:11:0d:98:bd:
87:d1:c6:fa:02:09:e1:bc:76:f5:65:cd:87:7b:3c:
09:10:95:3f:c8:4a:2c:5a:10:62:8f:ce:ea:2f:5f:
83:2e:e2:5a:10:e0:3a:a8:58:96:86:50:6a:62:da:
c1:73:5c:04:30:13:3e:3e:99:32:9b:a0:94:29:b9:
ca:31:73:77:38:08:aa:de:7b:ba:87:f7:e6:fc:26:
52:ee:74:35:88:d1:12:b9:4f:de:0e:10:8f:29:7e:
b4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:6E:D1:87:48:08:F7:EE:A9:47:57:1F:5D:1F:5F:DE:77:5F:B0:BD
X509v3 Authority Key Identifier:
keyid:8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:83:dd:c9:c9:91:05:3b:de:0e:8b:70:53:d2:e2:f9:dd:50:
e9:56:bb:32:bf:1b:86:23:7a:1d:b5:48:82:5b:68:b5:9b:cf:
c9:50:10:69:74:10:92:fd:c4:01:d2:fd:c7:f8:44:b7:ce:86:
9e:84:d4:1b:00:a7:4f:53:1c:ab:45:49:12:a7:6f:e8:0d:d5:
8a:33:fc:98:79:9b:de:db:af:84:be:c6:80:75:78:35:17:cf:
91:51:a1:f5:ba:c0:8e:8d:87:0b:b7:10:c5:b4:21:d5:d2:89:
d0:51:65:49:71:d3:d2:06:6a:23:3f:64:43:5d:14:56:9b:d7:
26:e9:e6:9d:ea:14:8d:58:fd:17:96:c4:8c:6b:2e:ed:03:3f:
b7:56:e3:96:3a:db:8b:f4:65:3e:18:b7:13:3a:05:27:ce:92:
df:a4:00:97:af:45:c4:62:5f:d3:24:db:80:b0:cd:4f:82:fc:
74:cb:cf:7c:4c:a0:df:6d:94:7e:f4:d6:db:22:c1:fc:24:80:
91:dc:e7:19:2d:a7:35:6c:f3:ba:e7:4a:06:21:f4:6c:d7:e9:
56:bb:fa:e0:ca:5b:d4:2a:54:5f:2e:1b:c1:cd:22:cf:20:d9:
da:1d:64:eb:76:44:fa:ba:9e:ab:f0:35:b4:6b:d7:b1:1e:e5:
9f:c9:e5:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:43:07 2026 by rpki-client