Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.mft
File: jBOLI8HTvcTBqTzpLed7PHyDWD8.mft (raw, json)
Hash identifier: caut87aITaMphIer1lENtV5ECQIcn+OWAPsdGYIiISU=
Subject key identifier: D8:2F:48:60:18:75:7E:39:B9:97:92:DC:FE:AB:52:56:B8:B5:7E:B0
Authority key identifier: 8C:13:8B:23:C1:D3:BD:C4:C1:A9:3C:E9:2D:E7:7B:3C:7C:83:58:3F
Certificate issuer: /CN=8c138b23c1d3bdc4c1a93ce92de77b3c7c83583f
Certificate serial: 019CAD5989B2F409132B8A7B8CB04A9B6BFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBOLI8HTvcTBqTzpLed7PHyDWD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.mft
Manifest number: 5F
Signing time: Mon 02 Mar 2026 07:00:52 +0000
Manifest this update: Mon 02 Mar 2026 07:00:52 +0000
Manifest next update: Tue 03 Mar 2026 07:00:52 +0000
Files and hashes: 1: JeyyXekrP9-O0pqFzDG-ct1765w.roa (hash: qFvedgQA7c9tOwxwHABfKyXAuH54pe3nrNIaVSHkgC8=)
2: jBOLI8HTvcTBqTzpLed7PHyDWD8.crl (hash: QYSDEbOAIMvCZxy19sFZTk6X5XTanJAExFnQpXOp9ho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.mft
rsync://rpki.ripe.net/repository/DEFAULT/jBOLI8HTvcTBqTzpLed7PHyDWD8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:89:b2:f4:09:13:2b:8a:7b:8c:b0:4a:9b:6b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c138b23c1d3bdc4c1a93ce92de77b3c7c83583f
Validity
Not Before: Mar 2 07:00:52 2026 GMT
Not After : Mar 3 07:00:52 2026 GMT
Subject: CN=d82f486018757e39b99792dcfeab5256b8b57eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ff:7a:7c:8c:6f:e7:c9:c3:5d:2f:b3:90:c8:
8c:64:41:03:88:90:3f:12:06:32:bf:37:67:5d:da:
6b:8e:68:5f:f6:50:aa:d1:79:20:71:3f:c7:f7:6a:
cf:4d:c1:8e:31:32:e3:3e:fd:29:96:3f:c1:41:aa:
86:a5:d2:26:87:a2:af:cd:57:cb:67:09:30:bb:3b:
3d:be:de:89:c5:db:67:de:76:66:09:9f:7f:cc:1a:
1d:94:d4:aa:18:67:0d:1d:cc:6d:a2:ef:90:5f:f6:
88:a2:16:43:9e:63:e7:2a:52:e8:f4:75:c6:d5:92:
77:7c:77:49:8a:54:b3:c0:03:1c:58:f5:be:0e:1c:
b8:ef:52:52:b3:bd:8d:51:fa:49:97:07:5e:44:4c:
2d:35:ba:f8:be:7d:d2:d0:cd:76:c2:0a:63:87:71:
48:af:d0:bc:96:bc:d5:54:83:ee:4c:37:30:d5:85:
49:21:3f:e3:ae:7f:24:1a:95:2d:b8:2d:52:eb:cc:
7a:ca:35:a9:23:15:65:3e:bf:91:c2:f2:75:4f:ad:
b7:94:d4:ad:2c:87:b3:e1:f8:db:e7:51:a3:5d:bd:
c4:32:30:0b:91:a1:53:f1:e5:61:1d:df:0a:c8:b4:
b8:21:df:ea:5c:86:46:7a:87:a1:57:bf:fe:2b:07:
5a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:2F:48:60:18:75:7E:39:B9:97:92:DC:FE:AB:52:56:B8:B5:7E:B0
X509v3 Authority Key Identifier:
keyid:8C:13:8B:23:C1:D3:BD:C4:C1:A9:3C:E9:2D:E7:7B:3C:7C:83:58:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBOLI8HTvcTBqTzpLed7PHyDWD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/47ea1d-a828-48d9-b8c8-838307be4faa/1/jBOLI8HTvcTBqTzpLed7PHyDWD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:a2:ae:73:1d:78:c5:1d:ba:dc:cd:98:8f:73:5e:1a:b8:0b:
83:e4:ad:a7:6a:db:d7:9c:c7:61:6b:4e:e7:2c:2e:b7:a2:ad:
61:7a:aa:c0:d8:83:97:c3:49:74:d9:17:9a:0c:1d:ef:ef:c6:
e9:ca:d3:b8:12:1f:5f:29:1b:59:6b:e8:28:1a:c7:05:7f:8c:
b5:18:25:93:45:f9:71:00:18:fc:4c:30:0f:49:74:39:da:0d:
84:8d:d8:66:7e:e3:2a:74:b0:1f:0a:42:19:78:47:30:41:1a:
50:1f:29:0b:1a:25:c6:47:8d:23:65:2b:69:1c:89:92:d1:9b:
67:c4:55:73:d1:0a:4d:b0:40:46:18:08:05:26:79:86:b7:a5:
c6:ae:02:05:22:f3:c3:30:ff:c5:55:9d:33:ad:c3:20:64:ca:
c5:31:c8:a2:10:8a:4a:a2:3b:f2:a1:19:5a:1b:7e:ac:da:a2:
71:84:fc:9d:0d:84:cf:5b:05:c8:db:c5:ad:20:00:e9:67:15:
fa:94:39:4e:95:74:76:d7:ca:fa:cd:0a:ca:b7:c0:0a:22:f9:
ab:a8:56:3a:44:46:26:37:7e:07:66:75:e8:40:6c:53:ab:2a:
f7:46:a0:19:3b:41:e5:2e:32:44:54:35:60:e7:d3:0b:2f:f7:
1c:53:46:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:18:47 2026 by rpki-client