Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
File: 0jtkd-HIT1KQfNYMY-qD715Kx4I.mft (raw, json)
Hash identifier: xuVI9xThpGXNiOH+Cqtuje72gYfkNhidk/BRUcYaKh0=
Subject key identifier: C2:97:35:AB:D7:5A:38:55:0F:86:97:41:2B:70:A3:B6:06:52:D1:47
Authority key identifier: D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
Certificate issuer: /CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Certificate serial: 019D9BBE8BD76585B1CD3820D4EB0347FC95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
Manifest number: 0C0F
Signing time: Fri 17 Apr 2026 14:00:49 +0000
Manifest this update: Fri 17 Apr 2026 14:00:49 +0000
Manifest next update: Sat 18 Apr 2026 14:00:49 +0000
Files and hashes: 1: 0jtkd-HIT1KQfNYMY-qD715Kx4I.crl (hash: dzSANlpUG2z9Y6ECWAvHz8OdpENEBY1o/OhjQwApVbo=)
2: u74Y2DtNYCrFLzeUZsDA2ek1RJQ.roa (hash: v4D4CGF7IK7jFQI/k7wDX6FIFSnqg7cuKSN4Jo5u5mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:8b:d7:65:85:b1:cd:38:20:d4:eb:03:47:fc:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Validity
Not Before: Apr 17 14:00:49 2026 GMT
Not After : Apr 18 14:00:49 2026 GMT
Subject: CN=c29735abd75a38550f8697412b70a3b60652d147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3e:08:42:30:f5:b3:76:77:dc:08:b9:b4:47:
b8:e9:99:bd:32:70:9a:f9:c4:96:ee:81:a2:0e:55:
a9:0a:b1:a0:62:f5:a7:4d:ef:5c:3f:c6:1d:ba:2f:
39:e5:b7:bb:d2:01:1f:74:ed:f6:3b:b7:0a:47:0b:
74:ba:84:9c:df:1f:6e:30:ca:4e:54:a6:ea:4e:ad:
c1:3a:4a:9d:7e:85:51:c7:8a:c5:0d:b4:da:11:4a:
49:69:71:73:20:71:a8:dd:47:37:a8:70:73:e7:1d:
a4:b2:37:11:c7:53:39:c6:31:c3:9a:55:4b:55:9c:
b1:03:e6:bd:f1:0a:76:27:0a:f7:cf:a1:fe:03:b2:
2f:de:e0:d4:fd:a0:2c:c8:6f:24:65:ff:2d:a6:47:
34:38:ac:43:b5:fc:7e:52:12:6e:77:7a:18:96:8e:
b6:a8:85:75:bf:f4:97:5a:10:68:fb:97:29:bd:e7:
04:d8:4c:c8:73:90:6d:45:fd:a0:02:17:b8:2b:be:
a9:48:38:0d:7d:b3:70:15:c8:dd:12:2d:44:79:6f:
f1:d1:7d:79:35:b0:09:f6:dc:b3:16:eb:71:51:45:
09:59:2c:ea:b8:d9:69:32:fa:c2:73:12:0d:06:83:
bc:6b:95:30:75:f3:19:51:95:53:13:eb:e1:22:2a:
60:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:97:35:AB:D7:5A:38:55:0F:86:97:41:2B:70:A3:B6:06:52:D1:47
X509v3 Authority Key Identifier:
keyid:D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:c2:cd:dc:68:54:66:59:2f:c9:0e:41:73:05:34:5f:76:60:
81:02:48:8b:b0:df:82:64:ad:39:00:5f:63:28:37:a9:d7:95:
51:0e:e7:d4:29:11:07:41:c0:48:ae:eb:c1:97:8e:a9:a0:15:
5d:ff:86:56:03:67:8a:d8:1a:46:60:64:24:48:8a:f0:d5:b2:
06:76:a1:ac:9e:ba:52:84:5f:97:21:2e:92:33:96:9e:bc:aa:
89:c0:ab:e9:fc:48:cd:b8:bf:a6:69:9c:66:ba:bc:4b:bf:03:
d8:26:88:3c:79:9b:17:e1:d2:41:fe:08:15:c9:c1:1b:05:0a:
f9:3c:e7:49:81:f0:50:1d:6d:89:03:59:c6:2e:fc:e6:a3:d7:
fd:5d:ee:44:30:19:8d:19:0b:d4:0b:59:46:b3:34:89:b6:b9:
6a:66:ad:58:72:44:6d:19:2c:ee:f6:b0:69:27:f8:69:33:da:
6f:48:2a:f8:53:a2:72:fa:ea:f6:37:dd:28:1d:9f:a8:23:c7:
ff:ed:15:88:85:c4:bd:f9:ff:f2:4a:1d:79:8a:e0:d8:a8:43:
b7:59:6f:85:2e:b7:0f:d9:a6:57:75:09:02:87:03:12:c9:a0:
1f:ac:ec:d2:c7:cd:d4:44:cd:8b:0e:c8:e2:14:2e:7d:09:86:
4e:51:92:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:47:42 2026 by rpki-client