Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
File: jolfHicMY17GHfmpf8D2aMCo9Ug.mft (raw, json)
Hash identifier: ULReq9CK/Mm/cEtZ54E4Wv8ae+pvFO9PhcNvMgwzqH4=
Subject key identifier: F2:8E:F0:2E:81:E7:20:33:99:3E:93:8E:24:19:00:EF:76:43:14:73
Authority key identifier: 8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
Certificate issuer: /CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Certificate serial: 019D98506714006A81F8FCE4D91993213494
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
Manifest number: 13B5
Signing time: Thu 16 Apr 2026 22:01:39 +0000
Manifest this update: Thu 16 Apr 2026 22:01:39 +0000
Manifest next update: Fri 17 Apr 2026 22:01:39 +0000
Files and hashes: 1: L24zb2GPwHD-aPGno9VtNYT_9UA.roa (hash: TV8bwr8KXxyIpZ3hz+LfUH4wszhJw0hokfRXNpqsBSk=)
2: jolfHicMY17GHfmpf8D2aMCo9Ug.crl (hash: XxKTCEncCNP3kqQESDtSWnXfXaqLAwCDlpC0a5MEP6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:67:14:00:6a:81:f8:fc:e4:d9:19:93:21:34:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Validity
Not Before: Apr 16 22:01:39 2026 GMT
Not After : Apr 17 22:01:39 2026 GMT
Subject: CN=f28ef02e81e72033993e938e241900ef76431473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:97:9a:db:a5:10:39:cc:49:e1:ef:36:41:0b:
cc:37:7a:31:cd:bd:e6:c1:65:51:57:a9:49:62:74:
89:7c:c9:92:af:91:6e:20:c5:8a:a1:e0:58:3f:97:
fa:b0:32:aa:fe:62:a0:1b:b4:31:6c:91:b3:c1:f4:
11:fd:0b:fb:1e:1e:ec:ed:e7:dc:ac:dd:f0:67:a2:
52:25:5a:db:c7:86:b9:e1:3a:92:4b:7d:4e:2a:21:
60:a0:7e:24:b4:a5:ac:c9:17:48:a5:20:8e:d3:e5:
02:b0:0b:43:1e:8d:fd:ce:ae:53:c1:09:c1:d5:e9:
b7:5b:cf:3b:83:a0:29:a4:03:23:3f:39:7d:0b:5e:
67:c6:41:ef:4b:28:2d:79:03:12:35:d6:3a:4f:a8:
93:06:be:9f:15:5f:1d:9a:f5:76:78:9f:fd:80:56:
d1:22:08:d8:17:37:af:3c:6d:b1:d5:2f:f6:ac:e7:
22:1d:8e:c5:4c:92:8f:b8:fb:dd:3d:dd:00:e3:35:
6e:25:5b:d9:4f:eb:30:43:8c:7b:29:6d:59:02:b9:
2b:d9:99:6d:80:07:06:68:d9:2a:f4:0d:c5:4b:14:
da:92:48:50:e3:ef:97:be:5f:04:57:cd:c9:1b:5f:
81:36:67:fa:4a:79:5e:b0:62:c7:d7:2b:5d:b9:ca:
f8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:8E:F0:2E:81:E7:20:33:99:3E:93:8E:24:19:00:EF:76:43:14:73
X509v3 Authority Key Identifier:
keyid:8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:26:ea:93:ee:90:2a:b4:29:89:cd:34:f6:b2:0b:7b:38:06:
ba:21:1b:80:8a:e5:3c:a4:24:41:46:f2:4c:9b:70:62:e3:9e:
a0:b2:5f:88:2d:0f:95:49:cc:1a:b6:47:35:49:f0:94:db:d1:
c9:17:94:23:1a:c0:fe:d8:2f:57:c7:f3:8d:9d:5b:4a:3c:f1:
c0:0a:5b:03:50:5d:43:c8:95:cc:0a:2e:54:a4:2f:e5:5d:8b:
25:a6:5c:de:0f:f7:01:28:fc:9b:23:8d:49:04:81:9c:72:da:
e0:76:2e:34:bc:5c:4f:d4:7e:a1:55:9b:e5:cc:60:79:3b:a3:
b0:05:15:20:67:74:bc:4e:bf:e8:ad:1d:90:72:61:a8:bf:93:
18:66:29:4f:7d:2b:4b:64:84:27:59:55:55:a2:09:7a:f5:a2:
bf:5e:46:55:43:0b:10:a8:e9:cd:a0:be:e9:93:86:d9:3a:1d:
3d:4a:bc:ed:e4:87:3d:13:5b:8d:9f:4b:d5:0d:e6:ec:47:d9:
3b:f3:cd:21:46:25:02:51:bf:dc:45:81:08:90:90:b4:dc:34:
0e:64:fa:9f:6f:dd:bd:b9:ee:f0:f7:72:0e:d5:76:c2:de:01:
f4:4d:f4:d0:13:3c:47:57:31:59:89:09:d6:84:e3:c1:3e:b9:
b6:05:19:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YUGcUAGqB+Pzk2RmTITSUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlODk1ZjFlMjcwYzYzNWVjNjFkZjlhOTdmYzBmNjY4YzBh
OGY1NDgwHhcNMjYwNDE2MjIwMTM5WhcNMjYwNDE3MjIwMTM5WjAzMTEwLwYDVQQD
EyhmMjhlZjAyZTgxZTcyMDMzOTkzZTkzOGUyNDE5MDBlZjc2NDMxNDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZea26UQOcxJ4e82QQvMN3oxzb3m
wWVRV6lJYnSJfMmSr5FuIMWKoeBYP5f6sDKq/mKgG7QxbJGzwfQR/Qv7Hh7s7efc
rN3wZ6JSJVrbx4a54TqSS31OKiFgoH4ktKWsyRdIpSCO0+UCsAtDHo39zq5TwQnB
1em3W887g6AppAMjPzl9C15nxkHvSygteQMSNdY6T6iTBr6fFV8dmvV2eJ/9gFbR
IgjYFzevPG2x1S/2rOciHY7FTJKPuPvdPd0A4zVuJVvZT+swQ4x7KW1ZArkr2Zlt
gAcGaNkq9A3FSxTakkhQ4++Xvl8EV83JG1+BNmf6SnlesGLH1ytducr4xwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPKO8C6B5yAzmT6TjiQZAO92QxRzMB8GA1UdIwQY
MBaAFI6JXx4nDGNexh35qX/A9mjAqPVIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvam9sZkhpY01ZMTdHSGZtcGY4RDJhTUNvOVVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9iYzUzZDItOTEzNy00Nzk5LTllNDEt
ZTY5YTAxNzQ4NWZiLzEvam9sZkhpY01ZMTdHSGZtcGY4RDJhTUNvOVVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy9iYzUzZDItOTEzNy00Nzk5LTllNDEtZTY5YTAxNzQ4NWZi
LzEvam9sZkhpY01ZMTdHSGZtcGY4RDJhTUNvOVVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmybqk+6Q
KrQpic009rILezgGuiEbgIrlPKQkQUbyTJtwYuOeoLJfiC0PlUnMGrZHNUnwlNvR
yReUIxrA/tgvV8fzjZ1bSjzxwApbA1BdQ8iVzAouVKQv5V2LJaZc3g/3ASj8myON
SQSBnHLa4HYuNLxcT9R+oVWb5cxgeTujsAUVIGd0vE6/6K0dkHJhqL+TGGYpT30r
S2SEJ1lVVaIJevWiv15GVUMLEKjpzaC+6ZOG2TodPUq87eSHPRNbjZ9L1Q3m7EfZ
O/PNIUYlAlG/3EWBCJCQtNw0DmT6n2/dvbnu8PdyDtV2wt4B9E300BM8R1cxWYkJ
1oTjwT65tgUZKA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:43:18 2026 by rpki-client