Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: t2Qiu7pd1BTfp//kKOBvD/teznljQCtnNpHc6MT7blo=
Subject key identifier: 9E:31:A9:D2:C0:CB:68:90:F6:4B:AC:0F:3F:AD:4A:C2:39:F2:90:E6
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 019DA30AEA4F197509BFB4C07814146185E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 0C12
Signing time: Sun 19 Apr 2026 00:01:34 +0000
Manifest this update: Sun 19 Apr 2026 00:01:34 +0000
Manifest next update: Mon 20 Apr 2026 00:01:34 +0000
Files and hashes: 1: Cpe2_Ojc_FZLY2oGHgVbMwJjk9A.roa (hash: QYPBK9tLe2NLf5ToJsGlVRXUrRctKZptQZU1FwtQfmU=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: Ru6302EciRvMNuaZNhxZSkvrLp/2AoCqgWj8at5atug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:0a:ea:4f:19:75:09:bf:b4:c0:78:14:14:61:85:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: Apr 19 00:01:34 2026 GMT
Not After : Apr 20 00:01:34 2026 GMT
Subject: CN=9e31a9d2c0cb6890f64bac0f3fad4ac239f290e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d2:de:a2:b2:8c:b7:ad:e3:5e:5f:65:af:55:
37:fe:c8:48:63:75:21:6b:77:60:67:fa:06:ee:1e:
1a:c6:c8:ea:44:42:e4:cc:aa:82:e6:0a:da:99:03:
9a:57:4a:23:38:d6:a9:bc:9b:64:42:73:8c:78:0a:
e5:2f:17:68:d9:0d:f3:3b:34:e5:50:ee:c4:04:45:
d5:a7:51:4c:ad:8b:50:89:63:fd:5e:9c:30:95:9d:
35:e1:ee:4e:d6:55:12:c4:60:1f:06:16:49:5c:85:
9c:d2:17:e4:d1:53:46:d4:e3:36:fb:ba:a4:09:d7:
a1:5d:c6:bf:3f:2d:c5:78:b1:a0:57:9a:4e:10:5e:
5e:7b:cc:c9:88:41:fa:3c:8c:dd:91:6c:f8:b0:f3:
98:28:fe:b5:99:8e:81:a8:f5:c0:1a:a3:ad:d0:e7:
9f:f9:60:ae:b1:09:e2:56:8f:74:8e:f0:49:04:c0:
ed:2d:fa:e3:dd:44:6a:c1:d9:44:fe:d4:8c:89:f5:
22:8b:5c:c3:db:a3:75:80:25:5b:4f:d1:59:7a:53:
a4:a9:da:9c:12:7d:1c:4b:b1:62:0d:71:73:9d:6b:
cc:e2:18:24:69:97:aa:30:03:9b:81:aa:d6:ec:1c:
c5:07:b0:ef:81:16:9e:83:17:28:3d:a6:c1:7d:97:
ae:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:31:A9:D2:C0:CB:68:90:F6:4B:AC:0F:3F:AD:4A:C2:39:F2:90:E6
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:50:6b:e0:25:e1:36:7a:17:20:2c:1e:cd:2d:0d:e7:b5:89:
33:bf:34:8c:a7:56:e7:25:7a:e4:e2:08:4c:cd:16:36:31:cb:
72:12:64:79:25:ee:50:bc:ba:07:4f:20:f9:a1:0f:17:f3:eb:
ae:2e:76:0f:87:3d:8d:93:8f:47:32:cc:75:77:a7:8c:0a:36:
58:95:0a:95:68:c3:26:2a:31:5a:78:dd:be:7d:da:b8:85:a0:
81:aa:3d:a4:d6:82:fe:ec:70:21:e0:67:59:9b:4e:72:49:75:
f7:e0:36:38:22:a6:df:a1:7e:59:4e:36:08:84:93:85:70:f1:
2d:df:bf:fa:65:1b:35:b9:ba:60:94:1a:4e:b3:bc:8c:79:4a:
9b:0a:20:d7:77:3f:6f:c0:7b:6c:d3:ce:38:d8:d5:0c:0b:06:
ff:cd:db:b6:8b:dd:ca:a6:61:f7:d5:4b:e3:c7:31:7e:6f:e5:
68:91:d1:5e:d0:77:7b:ab:cf:72:71:4a:a7:4f:0f:7f:1d:ba:
a5:83:54:f0:bf:83:9c:69:8a:a4:d8:a9:b2:3d:93:37:19:f8:
5c:7e:90:12:18:bb:ef:91:ba:1b:de:9e:15:c8:0b:f4:02:6d:
d4:d4:e6:ac:b8:6e:75:87:a5:26:00:53:e1:35:31:e4:a9:cf:
1a:0d:9d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:29:25 2026 by rpki-client