Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
File: jbNHdLAZeShP2edU_qaPo8YXg9A.mft (raw, json)
Hash identifier: /R2ND5jaeNXCmAv794DJUFoPpYNNUha546a4Dqa8u20=
Subject key identifier: D4:8F:F3:F5:9E:E3:03:C4:19:AF:B5:9B:07:7A:35:49:04:17:DC:F8
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 019CACB532B74FD2783C10F51CD1802C9A4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
Manifest number: 1892
Signing time: Mon 02 Mar 2026 04:01:21 +0000
Manifest this update: Mon 02 Mar 2026 04:01:21 +0000
Manifest next update: Tue 03 Mar 2026 04:01:21 +0000
Files and hashes: 1: 7M11WAr8ASMmTsOpEXXftqbLZKI.roa (hash: Hy7iKCS/PTOuaQ4Hy/XwhYj+Mf9Lpbiz3nTqAU+v+KA=)
2: IPD7v-J9c376oyXeNIKc_aWnNmQ.roa (hash: EEItVG+CeXn/JupxjY6OK4AdQvnwdrYLgxk2U0ldhpY=)
3: _gRsaSao0vaUMwc0x3LyFobrYg8.roa (hash: NuZeEvpoAsVGvJOhf6lMpbCZ6vhyLjtVLY0IuaaWnsk=)
4: gpd1mhOHXiMRj4sBD1YUlIe0OKY.roa (hash: Mp1A6bnLjG6e+iNvqlRY2Pi1q3kKD3uoZO/De04Jgqw=)
5: jbNHdLAZeShP2edU_qaPo8YXg9A.crl (hash: sYvPUxMgRePRT2vqGYAGDD0dEaDYxIm1wRvOasZ84ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:32:b7:4f:d2:78:3c:10:f5:1c:d1:80:2c:9a:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Mar 2 04:01:21 2026 GMT
Not After : Mar 3 04:01:21 2026 GMT
Subject: CN=d48ff3f59ee303c419afb59b077a35490417dcf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:73:60:aa:d5:e0:fc:9f:9a:dc:02:28:b0:96:
b6:10:d1:8e:f6:a2:ac:4b:a0:a8:17:59:bd:44:03:
57:3e:60:1c:6c:32:5f:ec:cf:b8:53:92:a0:d4:ec:
88:59:cd:e4:62:2e:b6:24:83:da:9b:bc:41:aa:33:
6b:c5:ed:61:35:84:a2:85:1a:0f:20:c8:d8:42:91:
31:1e:b6:2f:35:fa:92:c5:b7:ed:77:47:f2:b9:97:
fa:7f:82:9f:f3:74:a7:03:98:e5:5c:67:82:1f:ec:
2f:84:8d:6c:61:6b:2d:6a:24:85:f8:26:71:eb:d6:
4b:26:74:3c:de:9f:9f:e5:4a:46:e0:c0:d6:0d:de:
fa:fb:5b:54:de:90:74:ab:91:2a:4a:7b:10:4a:60:
b2:90:30:e1:63:c0:60:48:38:86:9d:5b:18:fc:a3:
93:af:7d:74:63:2c:c3:fd:b7:68:8a:08:ed:d9:16:
2d:cd:5a:83:6e:5e:dd:d9:66:f4:85:df:7a:00:eb:
5b:6a:aa:34:21:f4:38:1b:d8:21:ab:24:26:ec:aa:
e4:12:4f:60:a1:57:66:f8:b7:2b:c7:d5:a1:e4:1c:
ed:20:47:99:39:7f:3b:b3:11:da:87:41:89:e5:15:
07:97:7b:8e:a3:4d:b4:47:82:29:8f:5b:32:72:76:
13:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:8F:F3:F5:9E:E3:03:C4:19:AF:B5:9B:07:7A:35:49:04:17:DC:F8
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:9f:e5:1d:06:7c:7c:b9:00:09:42:f8:59:7a:f9:f2:2b:e0:
ae:96:3b:1c:91:a4:c8:36:d4:1a:28:92:54:20:c6:5c:d4:29:
9b:ae:50:29:34:51:b2:32:c5:f8:52:0a:fd:84:96:9d:fb:be:
e7:cd:27:1f:24:01:0d:91:8c:6a:60:b1:77:c8:30:94:64:2c:
f8:a9:2b:79:9a:85:a3:f4:fd:86:eb:2f:47:2c:ad:ab:5d:c0:
51:85:61:7a:73:c8:3c:3e:d0:a1:02:84:08:22:02:7b:32:22:
3b:76:89:26:19:04:94:e0:ea:92:12:72:34:2b:76:8d:de:7a:
87:5b:a8:d0:47:b4:5f:27:f8:dc:4c:ca:0a:bc:de:fd:ed:d8:
c9:73:9b:72:40:fd:a6:93:fd:64:a1:6a:7f:7c:0f:3f:e3:2f:
16:75:59:40:37:c9:5f:92:2c:0f:8b:1c:4c:7e:33:7f:bb:8d:
1b:01:b7:93:47:6e:7c:4f:9b:10:70:5e:8c:2f:ba:85:1a:01:
26:26:fb:25:63:ca:15:f1:01:6b:6d:a2:f5:1e:88:af:5d:70:
17:31:78:a7:fb:36:bc:23:ae:53:a1:b3:30:ec:ff:3d:a0:f0:
5e:f6:72:1b:eb:96:9a:2c:f1:29:5e:ca:43:b5:0b:53:c6:d4:
22:15:fb:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZystTK3T9J4PBD1HNGALJpMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkYjM0Nzc0YjAxOTc5Mjg0ZmQ5ZTc1NGZlYTY4ZmEzYzYx
NzgzZDAwHhcNMjYwMzAyMDQwMTIxWhcNMjYwMzAzMDQwMTIxWjAzMTEwLwYDVQQD
EyhkNDhmZjNmNTllZTMwM2M0MTlhZmI1OWIwNzdhMzU0OTA0MTdkY2Y4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3NgqtXg/J+a3AIosJa2ENGO9qKs
S6CoF1m9RANXPmAcbDJf7M+4U5Kg1OyIWc3kYi62JIPam7xBqjNrxe1hNYSihRoP
IMjYQpExHrYvNfqSxbftd0fyuZf6f4Kf83SnA5jlXGeCH+wvhI1sYWstaiSF+CZx
69ZLJnQ83p+f5UpG4MDWDd76+1tU3pB0q5EqSnsQSmCykDDhY8BgSDiGnVsY/KOT
r310YyzD/bdoigjt2RYtzVqDbl7d2Wb0hd96AOtbaqo0IfQ4G9ghqyQm7KrkEk9g
oVdm+Lcrx9Wh5BztIEeZOX87sxHah0GJ5RUHl3uOo020R4Ipj1sycnYTiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNSP8/We4wPEGa+1mwd6NUkEF9z4MB8GA1UdIwQY
MBaAFI2zR3SwGXkoT9nnVP6mj6PGF4PQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGIt
NjI2NTUyMWY2ZGY3LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGItNjI2NTUyMWY2ZGY3
LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsJ/lHQZ8
fLkACUL4WXr58ivgrpY7HJGkyDbUGiiSVCDGXNQpm65QKTRRsjLF+FIK/YSWnfu+
580nHyQBDZGMamCxd8gwlGQs+KkreZqFo/T9husvRyytq13AUYVhenPIPD7QoQKE
CCICezIiO3aJJhkElODqkhJyNCt2jd56h1uo0Ee0Xyf43EzKCrze/e3YyXObckD9
ppP9ZKFqf3wPP+MvFnVZQDfJX5IsD4scTH4zf7uNGwG3k0dufE+bEHBejC+6hRoB
Jib7JWPKFfEBa22i9R6Ir11wFzF4p/s2vCOuU6GzMOz/PaDwXvZyG+uWmizxKV7K
Q7ULU8bUIhX7wg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 07:26:42 2026 by rpki-client