Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
File: jolfHicMY17GHfmpf8D2aMCo9Ug.mft (raw, json)
Hash identifier: /P11k4kapiNDORLOpWwYAf4StYCpDo10f6BQjNl8quo=
Subject key identifier: C9:EF:F1:32:F4:80:B8:DA:5D:43:0B:70:BD:D8:C4:DC:05:DF:BE:33
Authority key identifier: 8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
Certificate issuer: /CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Certificate serial: 019CAAC6F15DC1F43208A0375E67D88DB468
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
Manifest number: 133A
Signing time: Sun 01 Mar 2026 19:01:30 +0000
Manifest this update: Sun 01 Mar 2026 19:01:30 +0000
Manifest next update: Mon 02 Mar 2026 19:01:30 +0000
Files and hashes: 1: L24zb2GPwHD-aPGno9VtNYT_9UA.roa (hash: TV8bwr8KXxyIpZ3hz+LfUH4wszhJw0hokfRXNpqsBSk=)
2: jolfHicMY17GHfmpf8D2aMCo9Ug.crl (hash: 10QrWIFIHN7UiAVSu0hKPRQ6I2/ka+KJH8kvTpF4Bd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:f1:5d:c1:f4:32:08:a0:37:5e:67:d8:8d:b4:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Validity
Not Before: Mar 1 19:01:30 2026 GMT
Not After : Mar 2 19:01:30 2026 GMT
Subject: CN=c9eff132f480b8da5d430b70bdd8c4dc05dfbe33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7f:6b:3f:5c:f1:ad:ae:17:78:c5:be:99:a3:
0d:c0:4c:d4:99:b0:6b:8e:1b:72:ed:f8:dc:94:dd:
d9:7e:38:12:ff:e9:2e:bc:cb:91:9f:0f:e1:35:e8:
3c:26:a8:69:ac:48:e9:d6:6e:c7:c2:43:5b:87:e4:
66:96:4c:c2:5f:12:df:a9:5c:5f:45:e0:ae:bf:ea:
b1:b6:e5:3c:ef:ef:7e:9c:75:0a:9a:dc:5f:21:fd:
4a:a9:a0:17:71:01:06:02:d4:6a:18:3d:09:a7:fc:
54:ac:51:7b:08:bc:49:5b:c4:61:e0:32:65:e8:ab:
7d:99:ac:d7:44:85:ee:09:f2:c6:2a:97:ff:08:b5:
f6:6e:67:5d:f2:3b:d3:21:02:26:b9:16:b1:c0:7a:
a5:b7:34:51:ad:84:d9:2d:12:e6:a7:d3:9c:ff:b0:
8f:ec:6e:ca:74:76:a4:da:d0:08:87:30:17:5f:95:
24:85:5f:19:b9:48:48:6c:44:8e:9d:a8:d7:f9:98:
39:a3:a6:5d:98:6c:63:23:48:6d:25:65:ad:cd:8f:
1c:2e:f9:5d:ab:a8:d6:fc:08:f6:18:73:2e:e1:23:
ba:e6:40:4e:bc:91:66:48:d6:26:5e:c7:be:38:3e:
0b:e9:6c:35:57:d6:30:db:8a:f8:f5:75:42:3f:f0:
2b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:EF:F1:32:F4:80:B8:DA:5D:43:0B:70:BD:D8:C4:DC:05:DF:BE:33
X509v3 Authority Key Identifier:
keyid:8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:97:98:fb:42:f4:32:73:e3:af:3b:39:ce:5a:9e:0b:c2:79:
2b:7f:d7:f1:24:ed:b2:17:96:c4:b7:00:05:d3:b7:3e:f1:03:
82:09:cf:be:56:be:4a:66:2b:b6:94:97:e6:cb:d0:69:c7:a2:
e6:50:83:4d:3e:66:88:a0:8c:c0:85:0f:a9:32:e2:00:ee:69:
0a:0e:67:07:42:9c:97:8c:19:9f:42:b3:c1:a4:c8:d2:27:ff:
57:ea:cf:9a:f7:bf:c9:0f:67:14:53:3e:b8:05:9e:f8:db:79:
de:0a:b5:aa:af:65:00:86:8b:2c:30:b5:da:18:02:4e:fd:dd:
9c:0d:b0:7d:bb:95:56:de:23:bc:9a:b4:33:da:24:d3:6e:38:
23:bc:7d:e8:a3:91:91:50:b5:cc:ec:b7:ab:e4:c3:9e:f4:29:
c2:fc:0c:9f:39:18:3a:1a:ca:d3:c6:0d:6d:61:39:ae:eb:9b:
16:ce:5b:38:7e:a6:99:6e:c0:b7:9d:48:04:d1:e4:d6:6f:5e:
3f:ae:5b:dc:f1:a7:77:cb:32:fe:83:3e:77:f6:c4:f0:e6:c6:
7d:cc:d2:74:a9:19:8b:b5:dd:af:7f:db:98:72:3a:b7:45:9b:
7e:50:34:df:bb:ba:ea:f7:f6:f0:6a:0c:f3:4a:65:14:0e:5d:
23:d0:8c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:30:13 2026 by rpki-client