Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.mft
File: jBOLI8HTvcTBqTzpLed7PHyDWD8.mft (raw, json)
Hash identifier: 4pMyEKKnXhYmzOHz7hyz9oQILslHVA/U1BnujNbbQyY=
Subject key identifier: 5A:C5:8D:CE:5B:26:1A:1F:25:BE:1E:98:43:C3:33:5A:F7:36:08:1A
Authority key identifier: 8C:13:8B:23:C1:D3:BD:C4:C1:A9:3C:E9:2D:E7:7B:3C:7C:83:58:3F
Certificate issuer: /CN=8c138b23c1d3bdc4c1a93ce92de77b3c7c83583f
Certificate serial: 019DA48ABF5DD1606D6A2D35F36BF584EA94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBOLI8HTvcTBqTzpLed7PHyDWD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.mft
Manifest number: DF
Signing time: Sun 19 Apr 2026 07:00:49 +0000
Manifest this update: Sun 19 Apr 2026 07:00:49 +0000
Manifest next update: Mon 20 Apr 2026 07:00:49 +0000
Files and hashes: 1: JeyyXekrP9-O0pqFzDG-ct1765w.roa (hash: qFvedgQA7c9tOwxwHABfKyXAuH54pe3nrNIaVSHkgC8=)
2: jBOLI8HTvcTBqTzpLed7PHyDWD8.crl (hash: kUb3e2DVcgUh8frG8uF7F7CGNe2i5E2eCkmCz1yoFPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.mft
rsync://rpki.ripe.net/repository/DEFAULT/jBOLI8HTvcTBqTzpLed7PHyDWD8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8a:bf:5d:d1:60:6d:6a:2d:35:f3:6b:f5:84:ea:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c138b23c1d3bdc4c1a93ce92de77b3c7c83583f
Validity
Not Before: Apr 19 07:00:49 2026 GMT
Not After : Apr 20 07:00:49 2026 GMT
Subject: CN=5ac58dce5b261a1f25be1e9843c3335af736081a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4b:19:1f:bf:4c:4e:d4:12:47:ab:c7:e8:73:
7d:2c:7d:d5:3a:00:d7:01:19:f0:ef:53:43:94:6c:
63:56:74:5b:ac:e2:4c:cf:d9:51:e6:fb:39:e2:c4:
5f:82:2b:46:fb:8b:e5:dc:7c:3a:3a:cb:27:5a:58:
7e:f8:bd:ca:32:19:56:00:aa:d8:60:7e:47:dd:af:
d7:f4:0f:0f:57:db:37:9a:4f:62:e1:e4:82:59:fc:
71:bc:3f:31:26:6c:26:e1:c7:31:fe:fb:06:f5:90:
b8:2a:23:68:cd:5c:df:1b:11:c7:ab:01:6d:04:7c:
f2:a8:b4:b0:c2:ad:9e:9c:eb:8f:fa:2d:e5:87:cb:
1e:f9:d1:46:25:ce:73:0b:7f:d2:58:3e:e1:fa:7c:
ed:57:64:54:8b:35:ce:24:c1:ba:80:60:9a:ed:1e:
6b:6e:6d:a6:46:82:99:ba:1f:c4:02:79:da:4a:aa:
c8:fe:b3:96:a0:d6:da:13:98:b3:28:e5:2b:32:4a:
c4:ea:79:5a:94:a5:c7:a0:2c:9d:4a:b3:ee:fd:03:
33:8b:29:b8:60:29:29:b4:b9:c3:90:e3:34:01:f3:
33:67:6d:5b:cf:72:cf:ca:be:8d:67:72:f0:f4:59:
8c:f6:72:c6:b9:84:ce:23:17:af:74:d3:4e:ff:28:
f7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C5:8D:CE:5B:26:1A:1F:25:BE:1E:98:43:C3:33:5A:F7:36:08:1A
X509v3 Authority Key Identifier:
keyid:8C:13:8B:23:C1:D3:BD:C4:C1:A9:3C:E9:2D:E7:7B:3C:7C:83:58:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBOLI8HTvcTBqTzpLed7PHyDWD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:5c:3f:2e:a3:88:f5:59:5f:94:d4:4c:5c:15:17:c4:24:b8:
04:f1:a9:31:8a:7d:b7:a6:fd:8b:9e:37:fe:d3:8f:67:e0:b1:
50:fd:07:98:67:ba:c3:45:75:84:2e:6e:46:19:21:11:97:90:
b3:55:2c:8c:53:2b:78:dd:18:9a:83:df:25:c5:23:77:2e:ea:
a2:57:82:f8:b9:48:85:2e:8b:8c:e0:5c:18:0b:84:c0:de:86:
ce:24:0b:ed:a2:d5:18:d8:b8:17:23:7e:88:01:4e:85:8b:c1:
40:e5:10:e8:15:55:43:55:9f:c0:15:85:f0:32:06:54:0c:34:
db:e9:87:7d:bc:88:55:b9:f6:4e:e2:62:63:b7:f3:13:93:73:
f0:ca:78:d6:ab:ec:99:12:b2:4b:15:e4:58:2b:30:a4:72:e3:
f6:38:86:49:94:71:e5:a9:9e:91:10:07:96:c5:af:e4:f7:c7:
22:08:e8:5c:e9:16:df:d7:81:eb:62:9d:f8:33:62:a1:ff:75:
d2:31:b0:95:73:88:45:6c:22:78:0e:7b:c9:34:7e:05:38:ea:
b3:a8:71:56:5d:01:32:ae:f6:ea:f3:ef:ec:f5:04:a3:06:48:
fc:9f:0e:3b:88:92:44:df:fb:c5:a1:d4:77:6a:98:d1:bb:89:
68:83:d9:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:39:28 2026 by rpki-client