Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
File: jolfHicMY17GHfmpf8D2aMCo9Ug.mft (raw, json)
Hash identifier: VEebgGeEgZ9y6w0j5iGO1+tqPpDqbKpDvCvlFuR7i+g=
Subject key identifier: D5:E5:F4:76:41:2A:5F:E0:27:31:30:EC:EA:57:99:DA:C5:B8:E3:C0
Authority key identifier: 8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
Certificate issuer: /CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Certificate serial: 019EC1B6800B691BBA8CEF4AE235ED8339A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
Manifest number: 144F
Signing time: Sat 13 Jun 2026 16:00:23 +0000
Manifest this update: Sat 13 Jun 2026 16:00:23 +0000
Manifest next update: Sun 14 Jun 2026 16:00:23 +0000
Files and hashes: 1: L24zb2GPwHD-aPGno9VtNYT_9UA.roa (hash: TV8bwr8KXxyIpZ3hz+LfUH4wszhJw0hokfRXNpqsBSk=)
2: jolfHicMY17GHfmpf8D2aMCo9Ug.crl (hash: lvxmIT3/kElBHLouMl9qLL29UrzwXortRkFn5J0EFpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:80:0b:69:1b:ba:8c:ef:4a:e2:35:ed:83:39:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Validity
Not Before: Jun 13 16:00:23 2026 GMT
Not After : Jun 14 16:00:23 2026 GMT
Subject: CN=d5e5f476412a5fe0273130ecea5799dac5b8e3c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:26:33:dd:b2:98:51:5d:22:02:e5:94:91:d1:
1e:8e:f1:c7:39:32:4f:97:82:fb:b2:44:00:9d:d4:
2b:4a:76:df:70:b6:89:da:d3:4b:ec:fe:ad:27:b4:
e8:91:78:f6:f1:39:4c:8f:a9:d2:b1:a8:33:da:b1:
09:09:09:a6:b3:82:f8:7f:34:4e:38:e1:74:28:0b:
78:05:de:04:4c:10:3b:5e:68:1a:ec:93:a2:d9:dc:
27:da:73:28:82:46:77:00:16:c0:d2:9b:7c:cb:33:
b8:b5:dc:1d:75:97:b3:3f:2a:fa:14:4c:19:b0:03:
c4:ce:8d:98:1e:cf:89:ca:0b:41:28:db:f4:2d:7c:
af:ff:4a:eb:93:b3:51:83:2c:27:66:df:01:7d:48:
7a:01:11:e1:cf:7a:fe:eb:ef:3b:13:4b:61:9b:8b:
a3:bc:2f:ee:0b:d0:89:ee:6e:e3:d3:a4:7e:2b:84:
44:48:bd:e1:80:7b:7d:01:16:ed:1d:83:1d:67:a3:
50:bd:d5:60:d4:c3:ed:a4:7e:b9:78:a5:26:1a:4c:
a1:7f:d4:1a:f3:9b:66:eb:d9:be:b0:84:72:8f:6f:
dc:e3:03:e8:59:92:62:30:d6:06:98:b8:c4:3c:01:
69:4e:38:aa:9c:f6:74:77:ff:11:85:d1:3b:ae:0b:
e9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E5:F4:76:41:2A:5F:E0:27:31:30:EC:EA:57:99:DA:C5:B8:E3:C0
X509v3 Authority Key Identifier:
keyid:8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:43:56:e8:93:93:4f:60:de:a4:e0:67:8a:b1:50:51:73:c2:
5a:2a:80:d0:57:23:08:bd:b8:c3:c2:ba:1e:43:11:66:85:ba:
d8:25:26:cd:ea:e4:54:4b:0f:09:16:4b:bd:3c:79:55:f7:d3:
96:b8:95:bc:2f:ee:6e:be:26:eb:72:af:a0:e2:ad:7c:06:da:
14:af:dc:f1:70:6b:c9:7f:7d:46:02:df:d3:19:a6:16:f2:52:
d0:62:02:86:7c:e7:2d:25:9b:a8:29:b6:8b:2c:33:82:60:46:
24:b3:a6:c2:dc:33:27:e9:b4:6a:99:68:dd:e9:cf:26:43:48:
62:3e:06:5e:f1:dd:0f:a2:1f:8d:08:66:6a:a6:c3:fb:27:04:
fa:d5:9d:cc:f7:3e:9a:95:51:fd:a8:55:9e:94:5d:ca:5d:58:
47:02:dc:f3:5b:c5:1d:cf:f6:d0:72:1d:30:f4:53:99:23:e9:
da:95:e3:68:bf:0e:e9:f2:66:1f:19:df:5e:d4:53:b2:5a:e4:
2a:9f:47:57:90:ea:e1:d1:e8:11:f7:ae:22:c7:06:20:8c:2d:
20:a4:6a:8d:10:fa:05:7b:55:11:ed:0c:81:fb:d3:cc:00:9c:
29:f9:9e:cf:1e:e0:2b:9d:f3:44:c1:ac:b9:bc:21:ed:ff:60:
66:3e:eb:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:17:58 2026 by rpki-client