Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/JRVNjv9JPDnSy2FL23qqstXSWQk.mft
File: JRVNjv9JPDnSy2FL23qqstXSWQk.mft (raw, json)
Hash identifier: 9tJpgAmk6W7JTPaL97PVMycOcPdcHMFaVTf8fnz+jPg=
Subject key identifier: F4:CA:8F:4A:4B:BF:AE:29:A3:FD:EA:FB:3F:B5:1B:6D:FF:AB:4E:CA
Authority key identifier: 25:15:4D:8E:FF:49:3C:39:D2:CB:61:4B:DB:7A:AA:B2:D5:D2:59:09
Certificate issuer: /CN=25154d8eff493c39d2cb614bdb7aaab2d5d25909
Certificate serial: 019D38D2AF62964A9708DFB1F4657D7EE90D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JRVNjv9JPDnSy2FL23qqstXSWQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/JRVNjv9JPDnSy2FL23qqstXSWQk.mft
Manifest number: F2
Signing time: Sun 29 Mar 2026 09:00:24 +0000
Manifest this update: Sun 29 Mar 2026 09:00:24 +0000
Manifest next update: Mon 30 Mar 2026 09:00:24 +0000
Files and hashes: 1: JRVNjv9JPDnSy2FL23qqstXSWQk.crl (hash: jFU65R9LF+GOMBQlO8lYNNSt0Cenew1q5JuBtZPrRK8=)
2: TMlO6AnGXcNsROAhkS5JIDNDec4.roa (hash: ukR+IVcQtxtVvJJ5kvn7AX1uPqReF7U+G980fOjPOR4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/JRVNjv9JPDnSy2FL23qqstXSWQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/JRVNjv9JPDnSy2FL23qqstXSWQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/JRVNjv9JPDnSy2FL23qqstXSWQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:af:62:96:4a:97:08:df:b1:f4:65:7d:7e:e9:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25154d8eff493c39d2cb614bdb7aaab2d5d25909
Validity
Not Before: Mar 29 09:00:24 2026 GMT
Not After : Mar 30 09:00:24 2026 GMT
Subject: CN=f4ca8f4a4bbfae29a3fdeafb3fb51b6dffab4eca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c0:0d:2e:21:d3:8f:d8:14:5f:1c:6c:2d:2f:
95:bf:c4:28:5e:ac:f5:5a:33:39:21:6a:ab:b8:d1:
a5:3d:ec:bd:d7:de:63:f0:78:33:f7:df:9c:4e:5f:
cd:ef:b6:90:bc:7d:1f:f9:7b:94:20:b4:c7:ec:f2:
d9:bd:9d:81:56:17:0a:83:7f:7f:28:b8:ce:a1:51:
cd:3d:0e:5b:ba:03:11:be:d4:43:f3:21:f8:f1:5b:
2f:ac:9b:d0:ed:87:b4:55:bf:d3:a3:f3:47:bf:1c:
e8:45:7e:22:96:ab:f5:4c:c1:37:0d:96:13:54:41:
ba:04:6d:66:85:a6:a2:4a:e1:9a:c3:34:5b:37:fa:
11:5c:80:38:7f:20:53:d6:26:9f:f3:e1:66:a2:2c:
4f:bf:a6:ef:0e:95:45:ab:9e:45:46:c5:31:9f:de:
9b:e1:63:67:4b:5b:14:26:7f:21:a4:3b:36:89:4b:
35:d4:d4:e2:5a:09:4e:03:28:dc:1e:4d:e4:ca:ca:
92:75:ec:26:5c:54:ed:a6:d3:77:58:14:c4:88:99:
55:18:77:b1:fd:2a:0e:32:13:a7:a7:f0:44:23:f0:
bb:57:cd:12:34:19:56:a3:e8:81:81:3b:c8:59:e5:
a9:ca:5b:45:2d:ba:92:e1:96:98:c3:c5:87:cd:fc:
2b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:CA:8F:4A:4B:BF:AE:29:A3:FD:EA:FB:3F:B5:1B:6D:FF:AB:4E:CA
X509v3 Authority Key Identifier:
keyid:25:15:4D:8E:FF:49:3C:39:D2:CB:61:4B:DB:7A:AA:B2:D5:D2:59:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JRVNjv9JPDnSy2FL23qqstXSWQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/JRVNjv9JPDnSy2FL23qqstXSWQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/JRVNjv9JPDnSy2FL23qqstXSWQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:c2:be:f7:c2:e4:be:b7:63:d0:ba:25:a3:57:f5:90:9e:d0:
25:93:23:a9:79:f0:db:1b:41:ef:aa:03:39:6f:8c:fd:49:b9:
f2:17:be:1e:b9:e0:14:6a:f3:ff:16:b8:b1:7f:fc:8c:6e:8e:
12:1a:3a:3b:70:c6:e7:fd:c6:33:f6:69:88:0d:7e:ec:71:bb:
b5:64:ad:c1:e6:44:99:1c:78:6f:ad:e3:a0:55:f1:c2:7e:85:
f4:5d:44:1b:0a:27:be:33:a7:e7:d7:45:83:7a:db:55:d2:1b:
aa:18:df:d1:53:7a:3e:f8:f7:46:b9:10:a8:be:1d:fe:d6:18:
e3:86:ac:c7:64:7d:cc:c3:30:ab:1f:78:f7:da:5b:99:58:c2:
ed:b8:f0:79:36:d6:5e:54:2a:8e:c2:4d:b3:bc:50:98:45:e8:
9a:26:b5:bd:39:d0:c4:1d:95:f6:61:65:86:62:87:64:5c:e5:
15:3a:32:5f:f2:93:73:e9:e4:df:35:8c:a6:d9:38:6d:fa:dc:
b9:29:56:ef:fe:b1:42:7a:c7:9d:91:32:30:bb:71:b8:7b:45:
24:10:df:b7:26:af:4f:9f:d9:dd:e6:0a:f5:b7:b3:a7:98:e8:
33:7b:ee:3d:08:f2:df:4f:08:7c:63:a4:f8:0d:85:b5:7d:5a:
14:e1:11:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:54 2026 by rpki-client