Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
File: jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft (raw, json)
Hash identifier: norgQzVGcKxk5YvlPb/2f57vv7Ijc/ilzx5YmP5D6WM=
Subject key identifier: 94:1E:27:F7:3C:7A:CA:96:36:A5:4D:F2:E1:BC:E8:A5:92:76:17:D3
Authority key identifier: 8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
Certificate issuer: /CN=8d843b57d0afcc112fe389668bf675d80d8223da
Certificate serial: 019CACB45F64ECAAD71F4034609B4FE4A24B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
Manifest number: 096B
Signing time: Mon 02 Mar 2026 04:00:27 +0000
Manifest this update: Mon 02 Mar 2026 04:00:27 +0000
Manifest next update: Tue 03 Mar 2026 04:00:27 +0000
Files and hashes: 1: GDYQT_SfN5tMHZpuub3a8jDMqOU.roa (hash: H7jT70GlU7Stcvy2ABi9zYCoyueoBEvW2I5oAX+8wHc=)
2: jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl (hash: DaZWb1harGjLF8qJxYVLOhpugGuww86s/MF8IJqiQQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:5f:64:ec:aa:d7:1f:40:34:60:9b:4f:e4:a2:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d843b57d0afcc112fe389668bf675d80d8223da
Validity
Not Before: Mar 2 04:00:27 2026 GMT
Not After : Mar 3 04:00:27 2026 GMT
Subject: CN=941e27f73c7aca9636a54df2e1bce8a5927617d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ca:33:a3:d8:03:30:5c:ad:dc:e7:db:41:18:
79:a0:7f:17:5c:b1:c8:92:24:23:a0:97:dd:e9:65:
f6:d7:e3:03:ed:9d:4c:f5:4a:0d:34:f3:30:85:34:
0b:48:45:5f:61:29:4e:8f:25:04:0b:4a:56:e4:5b:
1e:36:69:e0:e9:3b:76:be:f0:80:4d:78:c7:51:97:
d1:99:2b:eb:40:43:48:9d:32:cb:67:a5:18:12:a5:
bc:39:dd:5c:a5:ca:74:94:cd:98:e1:58:c8:ba:81:
2e:0f:57:a2:52:15:8d:07:66:d8:4f:b0:54:04:08:
78:9d:77:fd:4b:57:46:99:70:36:5e:49:d1:2d:e2:
b7:8b:b9:bd:c3:46:1d:a3:21:fd:d0:55:e4:02:d5:
4b:5e:c8:76:59:e4:95:0d:7f:6a:28:d4:ae:72:86:
a7:83:1e:e3:4d:0c:64:32:84:24:9c:8f:77:79:34:
79:67:c9:34:87:69:2d:08:f2:41:a0:9c:6c:8c:9d:
da:f6:b7:0c:a6:0f:45:e5:eb:43:31:87:10:2c:cd:
86:21:f8:b7:26:22:00:3c:4f:24:5a:56:34:e4:ca:
6d:0e:03:e1:f3:76:d8:ce:54:b3:f1:0d:bb:cb:93:
21:e1:28:5b:91:ac:4e:2b:a0:37:81:de:1d:2e:66:
0f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1E:27:F7:3C:7A:CA:96:36:A5:4D:F2:E1:BC:E8:A5:92:76:17:D3
X509v3 Authority Key Identifier:
keyid:8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:2b:d3:f1:d1:30:d6:08:69:5c:94:33:e9:13:4c:a3:24:b9:
ed:6a:01:54:6f:e4:50:b8:b2:e7:6d:8b:0e:de:38:d7:6d:eb:
e3:49:a9:1c:d5:0f:d9:60:d4:ca:50:1a:f1:5f:07:3f:e4:64:
8b:05:c9:08:b7:df:c0:0f:fe:d6:5d:ca:45:df:e0:ba:e7:f3:
3a:1e:b6:7e:d5:03:fb:3a:a5:9e:a8:d9:22:26:87:d4:6d:82:
15:d6:68:02:3e:55:66:65:52:83:a4:6d:5e:c2:79:90:34:4c:
c3:67:47:02:bf:7e:46:06:d9:66:85:74:57:16:0d:b8:9f:8f:
ed:da:1b:ef:57:9e:73:5e:e7:2f:0e:c0:18:4d:53:ba:4c:3c:
47:5b:b0:53:d9:ba:fa:b9:57:cf:47:91:8e:11:58:ef:1c:fd:
7e:af:d3:11:db:26:b2:52:0a:ce:66:07:0b:54:a9:69:99:f2:
a9:2f:50:04:56:19:c1:8a:4c:5a:94:06:3b:e8:16:8e:8c:59:
3d:ba:d5:8d:50:fd:90:c1:be:d7:7e:3b:21:ec:83:4c:7b:6a:
24:eb:91:31:83:1f:d8:69:99:ca:67:70:2c:5b:fe:db:f1:ad:
cf:8e:a3:85:29:3d:19:09:97:00:2d:4b:71:c9:29:f8:56:cc:
cb:cc:65:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:25:52 2026 by rpki-client