Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
File: jbK0TyPcypwGBL7WkPKKatkBeZk.mft (raw, json)
Hash identifier: N06EIbNNYcOXM3yFsYIZbkPpbydAeH8QMwQX2CTDHMs=
Subject key identifier: 3B:30:6A:AA:51:97:99:AB:C9:00:66:50:69:DF:CE:8E:4C:00:35:7D
Authority key identifier: 8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99
Certificate issuer: /CN=8db2b44f23dcca9c0604bed690f28a6ad9017999
Certificate serial: 019CAFB5C6F0116AE7A71128E6692F07E5DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
Manifest number: 0129
Signing time: Mon 02 Mar 2026 18:00:51 +0000
Manifest this update: Mon 02 Mar 2026 18:00:51 +0000
Manifest next update: Tue 03 Mar 2026 18:00:51 +0000
Files and hashes: 1: H60TaHzgzIDq5bEuHBb2yyowYNw.roa (hash: MUV9kznaIpAsdXMNwJm4Ji4yLC8b4zqE7vuFtiUPGnQ=)
2: jbK0TyPcypwGBL7WkPKKatkBeZk.crl (hash: 0WH6ekiLvnVpg08HSynE+7ZxaXlzpKshyWVv7Qp2Jpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:b5:c6:f0:11:6a:e7:a7:11:28:e6:69:2f:07:e5:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db2b44f23dcca9c0604bed690f28a6ad9017999
Validity
Not Before: Mar 2 18:00:51 2026 GMT
Not After : Mar 3 18:00:51 2026 GMT
Subject: CN=3b306aaa519799abc900665069dfce8e4c00357d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:96:91:9e:77:76:2e:5e:7d:01:cf:01:94:63:
d1:29:cc:a0:05:b5:00:61:76:6a:37:a9:f5:49:0d:
b2:49:80:36:78:f1:2a:54:c9:01:b2:70:88:c8:06:
7a:16:88:26:24:36:b0:2f:5e:56:cb:11:cc:03:ea:
52:e2:08:a4:69:dd:e4:b9:29:52:16:2f:a3:1b:5f:
67:90:eb:a8:ad:ca:29:60:1c:0f:4f:54:4c:87:e0:
6b:42:86:df:48:c6:95:3e:44:0c:c3:68:63:59:e5:
5e:a1:af:12:df:ee:ac:e0:79:56:ff:0e:85:17:ef:
d6:82:90:ea:f3:18:ca:7f:33:3e:93:aa:f7:b7:71:
22:98:00:d0:18:16:dd:08:24:22:0e:c9:c5:78:7a:
22:99:2e:a9:9b:d0:de:eb:87:bd:32:e8:df:2a:b9:
ab:0d:07:cd:89:c3:40:73:59:ba:87:05:2f:56:6d:
62:51:fe:10:97:f1:df:d9:84:50:10:64:a8:38:a1:
48:58:48:d0:08:81:ea:aa:b2:0e:a5:34:e6:9a:f5:
b4:ce:41:4a:7a:e6:18:db:6b:52:92:50:2f:3c:98:
ca:62:70:e0:24:18:a5:5a:73:19:09:0e:dd:59:c5:
db:25:5b:34:e4:bb:c1:64:24:08:0f:59:b7:d4:77:
df:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:30:6A:AA:51:97:99:AB:C9:00:66:50:69:DF:CE:8E:4C:00:35:7D
X509v3 Authority Key Identifier:
keyid:8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:67:34:23:5f:0b:fc:36:c3:a7:99:2b:36:f7:b0:5c:48:c2:
7e:77:96:46:bc:b3:c4:56:ec:ac:e5:92:be:96:48:77:e5:f1:
28:9a:98:87:f8:33:ea:e6:aa:17:e7:94:46:9c:7c:98:5a:b3:
cb:5e:d2:3a:45:28:65:5e:81:29:5b:b9:7a:9c:27:69:3a:9c:
97:f5:62:aa:34:ec:0e:e0:ff:ec:e4:4f:39:11:13:b2:5c:55:
7a:24:dc:f3:71:bf:2d:0d:0e:19:42:f3:91:21:08:bf:5a:19:
08:fd:cd:87:a2:44:89:ea:3b:ae:53:41:17:96:d2:3a:77:85:
35:7b:d8:36:33:37:bd:69:d1:82:39:4a:e3:b7:43:90:7f:3d:
05:51:c5:d7:f1:16:a8:3c:8c:e0:a3:54:05:06:6d:a2:8c:be:
dc:89:8f:39:4b:13:1c:bc:7b:b2:d7:e4:47:21:92:b3:4e:2c:
69:1c:cb:c2:94:f4:bc:5e:6b:3c:0b:37:57:9f:fd:5e:8b:e9:
32:b4:26:f4:cb:bd:f6:d5:25:bc:39:e4:0f:83:0b:60:85:6f:
c5:46:03:46:05:d5:8b:81:8d:06:30:53:72:c1:be:e8:d0:e5:
be:6c:d8:1a:9c:30:49:d2:e6:04:14:80:81:6e:c2:99:46:a7:
f2:4b:33:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 23:55:32 2026 by rpki-client