Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
File: jrsOsZ53d9cDgAD2wS053tEgQkI.mft (raw, json)
Hash identifier: RI3sjSt+eFXeYQZ6e3KzOHaTkXk2xA5zfTziuNUMEec=
Subject key identifier: 95:2D:66:B8:7C:BB:9E:F6:05:A2:66:8F:BD:74:E9:E0:B1:3A:55:14
Authority key identifier: 8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
Certificate issuer: /CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Certificate serial: 019D9A75148B6F3F64CFBDFCD132DF51C349
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
Manifest number: 0EFC
Signing time: Fri 17 Apr 2026 08:00:57 +0000
Manifest this update: Fri 17 Apr 2026 08:00:57 +0000
Manifest next update: Sat 18 Apr 2026 08:00:57 +0000
Files and hashes: 1: 1Q9fXglvsAmLyk7oBnnGROcZ55Q.roa (hash: 8sGtUkhkFlICQ8XRP+JZAkWRdlSZS/aRM+3p/w/Efdw=)
2: jrsOsZ53d9cDgAD2wS053tEgQkI.crl (hash: e5iU2Qv5lLi75N6lKdA3V7YMptmZvV589FtxicdKFWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:14:8b:6f:3f:64:cf:bd:fc:d1:32:df:51:c3:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Validity
Not Before: Apr 17 08:00:57 2026 GMT
Not After : Apr 18 08:00:57 2026 GMT
Subject: CN=952d66b87cbb9ef605a2668fbd74e9e0b13a5514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:11:50:ab:63:46:03:6e:0c:75:1d:26:a9:4d:
43:1f:0c:39:ae:9f:c5:af:dd:18:8c:74:b3:fe:86:
0d:01:8b:fe:60:fa:fd:3f:e9:81:89:2f:13:51:7c:
9b:96:78:89:73:07:39:14:73:fd:0b:8e:3a:39:65:
14:92:5a:0f:0c:4d:0d:51:1f:25:c8:6c:68:50:93:
56:c3:9c:6f:35:42:96:d2:6f:d7:3d:11:68:f7:6b:
23:88:31:e2:fa:eb:c3:ac:f0:6b:ac:5b:ed:1b:1e:
f4:05:30:3f:05:cb:e3:51:e2:66:8a:ab:ef:72:cd:
d3:55:29:59:39:16:74:7a:00:8d:07:b5:a4:f4:8a:
70:db:3d:6e:6e:3a:f4:ca:6b:7a:a5:37:8d:a6:cf:
16:6b:f2:57:32:e8:cb:3e:ff:fa:61:ed:8b:d9:e1:
cc:b2:d0:6e:5c:97:65:60:e5:2f:d9:00:67:7b:89:
51:1c:6d:a6:4e:d0:f9:16:51:50:ac:2d:9a:24:e6:
d4:d9:de:b6:49:0b:d2:d5:21:42:23:43:62:4f:b9:
6b:11:16:c1:93:16:c2:39:70:86:3e:33:75:0e:9a:
6d:c1:89:d1:3e:41:fa:93:e1:d4:9a:2d:01:f3:b2:
b9:e6:3f:59:a2:61:58:e1:04:02:5a:b6:9c:aa:88:
01:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:2D:66:B8:7C:BB:9E:F6:05:A2:66:8F:BD:74:E9:E0:B1:3A:55:14
X509v3 Authority Key Identifier:
keyid:8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:8f:28:e4:52:d4:8b:b1:e5:2b:b3:3d:3f:15:52:96:a3:a0:
80:28:98:75:54:44:c5:c2:40:7e:cd:1d:45:7e:74:0e:2b:2c:
cb:ac:b0:8e:99:1b:c8:db:0e:c8:dd:d8:b6:c5:6b:4a:ba:14:
a7:65:15:c1:9c:66:90:8d:3e:e8:62:85:57:49:cb:dc:47:a7:
a4:af:d9:d3:d4:8d:09:44:f8:9c:a7:f2:c0:d1:77:95:6e:5a:
75:d4:77:1d:cb:4b:2b:d0:79:d6:ea:b1:fa:9c:ed:59:78:d7:
c9:05:bd:c0:b0:68:23:03:c3:ca:26:86:f8:5c:2f:f9:6c:6f:
94:b3:bb:b1:e5:cc:d9:1a:64:9d:43:46:f0:76:ca:1f:6a:48:
ef:b3:27:a2:ba:13:72:fb:2e:e2:09:2b:40:8f:e8:0a:b0:29:
e4:af:bd:24:b2:0f:c9:73:7e:c0:27:0c:5a:59:93:75:61:f2:
0e:db:f1:dd:4d:dd:50:88:c2:c4:24:e9:49:c4:6d:e8:b2:38:
5d:4a:e5:de:00:7f:07:cd:65:18:76:fa:9e:90:8d:1c:e6:cb:
4f:a7:01:07:c4:f0:69:ed:cb:16:18:59:0a:25:fb:e1:75:60:
40:d5:87:fe:7e:44:54:f6:de:91:04:8d:13:d0:24:19:ac:f6:
de:fc:5c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:06:59 2026 by rpki-client