Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
File: jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft (raw, json)
Hash identifier: jGRPhOipSnOsCrkPvvsJEX8pQKdv9qYHBkN/bmxwlP8=
Subject key identifier: A4:96:A4:6C:4F:53:2C:EB:E7:59:B8:77:11:CB:45:93:08:B7:7A:0E
Authority key identifier: 8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
Certificate issuer: /CN=8d843b57d0afcc112fe389668bf675d80d8223da
Certificate serial: 019D9C2C9183ACCAF92249A96B737E67117E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
Manifest number: 09E7
Signing time: Fri 17 Apr 2026 16:00:59 +0000
Manifest this update: Fri 17 Apr 2026 16:00:59 +0000
Manifest next update: Sat 18 Apr 2026 16:00:59 +0000
Files and hashes: 1: GDYQT_SfN5tMHZpuub3a8jDMqOU.roa (hash: H7jT70GlU7Stcvy2ABi9zYCoyueoBEvW2I5oAX+8wHc=)
2: jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl (hash: wzVmSF/yjnsOE7UIAkXE6bx6UC+ZqiA3Py+aPdJ8rTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:91:83:ac:ca:f9:22:49:a9:6b:73:7e:67:11:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d843b57d0afcc112fe389668bf675d80d8223da
Validity
Not Before: Apr 17 16:00:59 2026 GMT
Not After : Apr 18 16:00:59 2026 GMT
Subject: CN=a496a46c4f532cebe759b87711cb459308b77a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7d:45:2f:ef:bf:bc:9e:6f:86:f4:bd:7c:10:
24:78:26:fe:da:5d:1f:1e:f1:b7:b7:f6:9e:62:79:
3f:20:31:c3:17:c6:6f:1d:54:ec:5a:2a:5d:23:ab:
85:24:db:bc:c0:96:4e:5d:b7:82:88:0c:63:e7:12:
53:8b:45:16:d4:b2:39:61:13:e0:83:24:08:e9:db:
98:a7:87:7d:11:9f:31:ff:f4:9d:df:43:e6:4d:6d:
a7:43:f9:c8:27:77:73:2f:ca:da:07:c0:03:17:c6:
e7:af:de:46:41:02:b4:bc:9a:4b:8a:8e:d8:24:9d:
0b:1c:9c:40:56:a3:15:aa:7b:0f:a2:0f:71:75:b1:
7f:ee:4b:7e:07:da:e6:fe:d0:63:33:4c:43:bf:6a:
e0:11:b8:08:0a:07:05:7e:5d:62:4e:e1:8b:63:fb:
2d:2f:34:9d:57:cf:62:45:75:33:9b:2c:44:8f:c3:
90:41:43:63:e4:1e:6e:35:e2:9f:80:57:79:f0:5c:
5e:90:8d:08:de:05:f4:8a:32:47:c1:42:66:0f:5c:
c7:8c:e6:48:dc:1b:8b:14:c9:7a:28:07:b1:fd:e7:
8c:c8:cb:d8:c5:b4:11:25:eb:33:95:f2:20:45:f8:
29:14:54:b8:6b:0b:8e:f6:f3:42:a8:ab:b3:cb:c9:
6c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:96:A4:6C:4F:53:2C:EB:E7:59:B8:77:11:CB:45:93:08:B7:7A:0E
X509v3 Authority Key Identifier:
keyid:8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:73:9c:4d:41:87:2f:fb:65:b2:6d:2f:43:2e:d2:76:45:02:
16:80:df:ae:57:62:b4:72:c1:42:d8:fe:3c:ed:3e:76:d0:c2:
b8:76:30:97:99:e2:4f:52:65:a2:6c:28:e6:e0:2c:c9:1c:e3:
36:f5:1e:f2:27:c6:02:2d:da:f2:aa:1f:4e:bc:f6:f2:a2:fd:
8b:8c:be:23:27:3a:fa:ee:30:e6:18:1f:89:af:5b:07:70:8e:
9f:4b:b8:40:1e:f9:69:15:eb:06:49:22:27:21:f3:eb:50:5a:
ba:0a:2a:e5:69:95:8d:27:6d:57:e2:07:7e:97:ae:2f:86:f1:
e5:98:51:fa:f1:5c:3a:06:55:9c:7f:80:04:a7:c4:c1:af:61:
18:5f:1e:f9:0a:3a:c1:27:97:4d:b5:8d:d6:23:01:b6:db:92:
7c:85:b4:bd:88:68:22:4f:b1:59:62:6d:e3:f9:bd:4a:a9:98:
b1:3c:8e:b0:78:b2:47:bc:2e:b1:0c:03:eb:52:da:f8:45:b2:
c3:fe:c7:ea:15:2f:ae:a3:ca:27:9a:e3:21:49:3c:79:cc:ef:
71:76:39:86:ed:e2:2d:7c:d5:a7:d5:c3:ff:04:7e:d4:68:24:
9e:a7:33:49:47:f0:4d:c7:4b:5e:24:9a:16:b5:ec:7a:98:60:
53:57:96:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:46:11 2026 by rpki-client