Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: 0r/BWnw2VyPrXQxP+jCymqfAKDHp+5YCDgwdcapCiT8=
Subject key identifier: 78:A7:C7:88:9B:B5:D8:80:E8:56:49:26:DA:3A:7D:60:DC:56:46:8B
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 019EC0DBB137AEBC66BB12191F830CC72BDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 0CA6
Signing time: Sat 13 Jun 2026 12:01:23 +0000
Manifest this update: Sat 13 Jun 2026 12:01:23 +0000
Manifest next update: Sun 14 Jun 2026 12:01:23 +0000
Files and hashes: 1: Cpe2_Ojc_FZLY2oGHgVbMwJjk9A.roa (hash: QYPBK9tLe2NLf5ToJsGlVRXUrRctKZptQZU1FwtQfmU=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: 8GBdp4363FepPykYxxkOtO82FaKr/ni/gQ2DTm7K7lQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:b1:37:ae:bc:66:bb:12:19:1f:83:0c:c7:2b:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: Jun 13 12:01:23 2026 GMT
Not After : Jun 14 12:01:23 2026 GMT
Subject: CN=78a7c7889bb5d880e8564926da3a7d60dc56468b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3d:22:50:0a:e7:09:c9:6d:ab:3e:ce:ff:8a:
25:40:ae:27:4b:c9:65:b3:e8:08:64:73:74:37:39:
61:ce:93:b8:bf:bd:57:d0:95:2c:61:66:2e:f4:cf:
c0:08:e0:bb:da:ad:c6:11:06:21:22:d6:2b:0e:5e:
e4:3d:dc:b3:c0:6d:3a:8e:72:c4:bc:ad:a3:1d:8d:
3e:96:f1:e6:ee:58:5b:a9:fe:0e:b8:c9:bb:64:d4:
33:98:8f:3f:3f:9f:db:12:a0:da:1d:98:5e:22:36:
1a:ff:ac:4e:73:72:e8:56:7c:e0:82:06:b6:06:77:
a4:65:85:86:3d:59:95:ca:44:2c:92:5b:9d:5e:65:
e1:a3:6a:a1:73:d9:1d:4e:9f:8e:b7:35:d5:a1:94:
5a:c3:d6:9a:15:e4:f5:10:a8:b7:d0:2c:0e:1c:94:
39:bc:78:f8:f8:1e:dd:f0:b3:62:25:05:57:0c:8f:
b4:23:32:4d:aa:a6:67:76:65:19:b8:a5:f3:d9:10:
4b:d0:a4:01:e6:61:e8:45:7b:26:9b:85:b5:4c:ce:
22:0d:87:aa:8d:e0:3f:fd:af:27:9b:27:ba:82:f8:
4e:b6:e6:10:e4:3b:82:ac:df:23:66:d6:8e:56:25:
d1:b2:7a:c4:45:49:22:27:54:57:ce:19:a3:fc:2e:
fe:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A7:C7:88:9B:B5:D8:80:E8:56:49:26:DA:3A:7D:60:DC:56:46:8B
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:ca:95:be:6e:8f:63:04:c7:4d:dd:30:d0:1f:d4:cf:8c:c9:
a9:fd:dd:57:17:3b:f9:db:31:ae:ee:08:06:21:01:11:17:46:
37:40:b4:07:ff:19:e8:99:4f:a9:6f:e5:94:6d:9e:71:e2:97:
9b:90:d8:f2:42:59:ef:fb:f2:f6:5d:96:2d:17:6c:c8:f8:ab:
5f:30:99:e3:c2:1c:77:d2:a7:60:40:d4:cd:a4:fe:89:f0:08:
a0:a8:7a:89:a4:1c:93:f4:fd:a8:95:a5:1e:5d:d0:ff:ff:3b:
e6:00:f1:df:1e:95:50:0e:56:fb:24:f8:f6:0b:d6:e1:73:d5:
a1:8b:cb:1f:2a:8c:99:86:7f:07:49:6c:46:03:ce:f6:68:47:
9e:02:90:c8:6d:b4:f3:57:42:9a:bd:10:66:a6:ca:9a:55:20:
0c:87:90:d9:b3:42:9c:92:e6:2c:5b:98:27:1b:da:79:2f:87:
63:83:91:76:ae:41:59:f0:ae:72:1e:91:07:ae:56:e3:3c:12:
0c:a0:1e:43:35:21:e8:b0:7f:70:95:13:96:bb:00:0c:c3:69:
02:a9:d4:87:ea:c5:51:b9:f4:d1:cf:67:ca:ea:84:30:9b:32:
f7:e1:f9:d6:9a:de:1b:7c:af:8d:c4:03:27:25:d7:b0:46:d9:
5e:f4:d9:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:44:40 2026 by rpki-client