Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
File: 0jtkd-HIT1KQfNYMY-qD715Kx4I.mft (raw, json)
Hash identifier: gGQTEo7TeCU4EHCFoQ+gXXzlYzpRLffYP8NkPTTKc8E=
Subject key identifier: 17:A9:C7:0A:CD:CC:32:AC:18:35:A8:31:11:5D:06:A6:E8:CA:BE:BF
Authority key identifier: D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
Certificate issuer: /CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Certificate serial: 019CAA58C4CEDAE79629E6AE73ACFD753615
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
Manifest number: 0B92
Signing time: Sun 01 Mar 2026 17:01:10 +0000
Manifest this update: Sun 01 Mar 2026 17:01:10 +0000
Manifest next update: Mon 02 Mar 2026 17:01:10 +0000
Files and hashes: 1: 0jtkd-HIT1KQfNYMY-qD715Kx4I.crl (hash: Lj5fuGB/BHssPrOs7vHTWLrC0YjdhargEfcMMVLSAao=)
2: u74Y2DtNYCrFLzeUZsDA2ek1RJQ.roa (hash: v4D4CGF7IK7jFQI/k7wDX6FIFSnqg7cuKSN4Jo5u5mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:c4:ce:da:e7:96:29:e6:ae:73:ac:fd:75:36:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Validity
Not Before: Mar 1 17:01:10 2026 GMT
Not After : Mar 2 17:01:10 2026 GMT
Subject: CN=17a9c70acdcc32ac1835a831115d06a6e8cabebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3e:e3:2b:c8:ba:59:4f:05:17:7a:20:fb:ec:
d8:32:8f:0b:8c:fa:f0:4c:b4:ac:57:73:76:f8:53:
74:c7:05:da:d4:22:a4:90:36:e2:ce:42:aa:0b:51:
5b:ff:12:5a:e3:d2:54:1b:ad:69:91:67:73:5b:f8:
e8:d5:65:71:71:4d:fd:af:e6:13:d1:1c:81:8d:e4:
26:0a:0b:c9:a5:85:07:2d:1a:ac:db:32:70:3d:1a:
8f:54:24:72:34:82:21:5f:21:2f:2f:fe:dd:46:64:
b4:00:69:ba:41:12:8e:cf:33:6f:c4:27:c9:f3:bc:
35:df:17:64:1f:97:8f:b4:52:74:cc:c4:f8:0e:7b:
f7:a3:78:a9:dd:ec:b8:5f:28:90:6f:9b:02:70:1b:
71:a3:af:71:c7:ab:7b:18:8d:9d:24:12:fb:11:a0:
24:e8:67:56:47:ac:e6:11:9f:74:0d:40:ea:e9:2b:
85:10:97:cf:32:c4:1d:75:42:4a:51:6e:e0:2e:9b:
c0:a0:95:3d:4c:45:b5:d9:34:1e:ee:1f:9a:d7:e4:
36:d1:57:50:c3:0b:56:25:22:b9:ef:47:d1:07:ce:
97:62:33:00:94:6e:b4:fd:ac:e0:11:af:35:17:55:
33:d7:ec:9b:85:db:d5:67:f4:14:8d:ae:07:51:52:
3a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:A9:C7:0A:CD:CC:32:AC:18:35:A8:31:11:5D:06:A6:E8:CA:BE:BF
X509v3 Authority Key Identifier:
keyid:D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:72:bb:ca:40:8a:65:05:4c:25:b3:a9:62:9e:89:2f:40:e8:
75:7d:ea:36:0c:20:a7:30:39:f6:84:e9:0d:3a:29:69:20:d5:
9c:f2:23:43:f2:f8:20:8b:3d:44:a3:0e:12:e7:95:41:fb:f0:
b6:ae:8f:3c:97:63:5d:e4:83:3a:37:cb:78:30:c1:9c:4f:f1:
1a:ec:11:a9:da:82:a9:23:b3:7b:98:81:55:26:98:ca:b2:64:
1b:88:70:15:37:ba:2a:97:23:2a:7b:a1:cc:91:38:b3:d2:27:
c1:34:80:5d:14:08:c5:0b:1d:28:e9:8d:f8:8b:da:f2:b0:ea:
73:37:a8:35:91:f7:60:9a:da:3b:b8:7d:77:8a:50:92:08:1a:
b0:39:b8:95:90:6a:17:5d:83:59:d3:b0:4f:2c:2b:60:1e:bb:
49:e3:ac:79:11:da:06:17:d5:89:b5:3b:15:4d:06:3d:71:0f:
34:37:12:bb:0a:29:cc:c5:4d:cc:dd:c1:c1:44:4e:18:bc:0b:
5f:bf:54:01:78:ea:23:09:0f:ee:71:b2:69:6c:5f:9b:13:30:
8f:72:97:38:9e:b4:ca:2f:c9:37:60:fb:c6:56:33:86:6a:60:
58:7b:6d:32:78:0c:c3:1b:90:f8:b5:94:39:94:12:a9:f0:68:
f2:1c:73:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:39 2026 by rpki-client