Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
File: jbK0TyPcypwGBL7WkPKKatkBeZk.mft (raw, json)
Hash identifier: 3PiKsokd21psuDRl+9QBD7L8/EydRuEtIkLcR+tx+Iw=
Subject key identifier: B4:C4:E8:EC:24:9C:DF:A2:F9:22:B1:C3:FD:77:BB:95:CD:AA:DF:35
Authority key identifier: 8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99
Certificate issuer: /CN=8db2b44f23dcca9c0604bed690f28a6ad9017999
Certificate serial: 019D9D3F128EC783FC1AD60795A6397FB0B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
Manifest number: 01A4
Signing time: Fri 17 Apr 2026 21:00:49 +0000
Manifest this update: Fri 17 Apr 2026 21:00:49 +0000
Manifest next update: Sat 18 Apr 2026 21:00:49 +0000
Files and hashes: 1: H60TaHzgzIDq5bEuHBb2yyowYNw.roa (hash: MUV9kznaIpAsdXMNwJm4Ji4yLC8b4zqE7vuFtiUPGnQ=)
2: jbK0TyPcypwGBL7WkPKKatkBeZk.crl (hash: MqMsZsY+3UH2BPRra/BI+85nc7zSqOrC2fR/zctwGuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:3f:12:8e:c7:83:fc:1a:d6:07:95:a6:39:7f:b0:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db2b44f23dcca9c0604bed690f28a6ad9017999
Validity
Not Before: Apr 17 21:00:49 2026 GMT
Not After : Apr 18 21:00:49 2026 GMT
Subject: CN=b4c4e8ec249cdfa2f922b1c3fd77bb95cdaadf35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:86:31:ec:01:4d:17:37:ea:85:a1:15:33:87:
24:fc:d2:3d:1e:38:b3:56:d2:a4:a8:42:65:4f:70:
21:e2:f8:4a:45:ae:66:36:81:33:08:8f:c1:7f:5e:
34:e2:79:fb:54:5a:a2:38:e5:45:16:4b:ed:3a:e5:
50:1c:be:98:03:7d:c4:ed:ae:58:62:68:31:34:3c:
67:ad:a4:29:b3:de:1b:6f:35:d4:e5:a1:5c:18:56:
15:2e:38:06:ac:61:28:ca:66:7d:fc:75:0b:20:40:
da:0c:5f:48:24:5e:93:0b:ce:55:73:21:cf:96:d2:
b2:99:38:43:a9:24:2a:b7:1d:8a:27:ef:32:c5:78:
f4:ed:1c:86:78:a0:26:78:1d:e9:e8:a7:c5:a8:b0:
95:ed:fa:70:df:64:75:09:e9:9b:d4:8c:1d:3c:a1:
8a:ed:f8:ae:b7:5f:b9:53:0e:59:58:b2:24:ba:2d:
78:37:51:ea:3c:63:5f:54:2c:0e:49:0b:89:9e:4c:
d2:89:e9:90:31:b7:54:d4:16:49:76:91:c8:6e:2c:
83:c8:0b:23:69:e0:c7:1d:c2:ee:74:3e:18:a9:d2:
6a:42:f2:f7:8d:56:6f:03:53:5e:be:91:ab:34:d0:
13:5f:3f:bc:f7:94:68:1c:4f:fe:28:a3:38:f3:da:
be:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C4:E8:EC:24:9C:DF:A2:F9:22:B1:C3:FD:77:BB:95:CD:AA:DF:35
X509v3 Authority Key Identifier:
keyid:8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:9d:ab:91:7f:c9:5c:bd:a3:d6:01:d0:0a:1a:e9:75:d9:fe:
26:a4:2a:09:1f:8a:1a:fa:c6:d3:e7:1b:9a:e4:85:4c:d7:31:
17:21:9a:a4:ed:26:56:f0:f0:ae:4c:39:d3:52:5d:19:48:9f:
62:b0:bc:66:7f:f9:fb:2c:90:a0:1b:12:83:7b:f5:3d:e7:eb:
76:51:f8:4a:3a:b8:18:3c:94:7f:a0:f3:f4:2b:c5:f4:a8:82:
70:e0:82:da:e5:80:f0:c3:08:e0:80:e4:df:f8:34:92:cb:d6:
5f:c1:2f:52:7d:c5:57:18:07:f4:a7:3f:6c:e8:6f:e0:2c:1e:
b3:88:e3:d5:f8:ac:00:44:f9:32:a4:70:7f:3b:91:f2:03:e3:
67:3b:93:77:7d:d7:a6:5c:a5:31:3e:77:d9:31:63:95:9d:20:
08:8e:10:de:80:94:fa:0c:2e:a4:45:9d:5a:95:8d:6c:ce:7e:
ee:61:37:d4:61:71:31:78:45:27:9d:6f:e0:4d:1b:bb:c4:2e:
5a:27:ae:0c:7c:4c:60:72:90:5a:f8:5f:8a:8e:bd:38:30:17:
76:09:fd:7a:75:9b:d4:c2:77:36:6c:ba:83:b2:b2:c4:24:2f:
d2:e2:35:81:40:10:fe:66:4f:d8:91:8c:da:03:a6:71:b1:ce:
81:a7:4c:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:43:12 2026 by rpki-client