Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: n5FChi6QsttfMQqaoekjpsd6obj0SS9MlXAG3/yr5DM=
Subject key identifier: D9:E0:99:22:4C:24:A5:82:05:BC:16:9B:30:94:7F:87:E1:8C:EE:58
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 019D9BBE7ADF7B464AACF19D78EA0F291038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0C57
Signing time: Fri 17 Apr 2026 14:00:44 +0000
Manifest this update: Fri 17 Apr 2026 14:00:44 +0000
Manifest next update: Sat 18 Apr 2026 14:00:44 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: x2fotY6EOcDrCnHYs//KLPcqzAb8bwwl7kuXa0haiPs=)
2: rIbppOfNfFYdHELW2Brc9R0i8ZQ.roa (hash: 6K2aNO9ERJucL5JHeR5DeWEg9tZjVrX7Cr/llqySGJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:7a:df:7b:46:4a:ac:f1:9d:78:ea:0f:29:10:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Apr 17 14:00:44 2026 GMT
Not After : Apr 18 14:00:44 2026 GMT
Subject: CN=d9e099224c24a58205bc169b30947f87e18cee58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:09:5b:e8:4c:2c:5e:18:f4:49:89:5d:71:f7:
e4:e2:8f:d8:8a:35:e2:fe:ed:89:9d:04:9d:9c:fc:
41:fe:b1:2f:00:d0:dc:4c:a4:3c:bf:32:7b:80:c2:
05:37:17:a2:ba:b7:5c:02:e8:41:43:42:88:7b:f3:
e2:5d:9a:00:1b:68:a0:34:bb:93:13:8d:e5:17:55:
85:e9:9f:e1:8f:2b:86:06:ae:01:83:7e:f3:16:f5:
f8:03:9d:5c:03:11:9a:b4:de:e5:cd:9b:cc:c8:d5:
b3:f8:ea:86:75:11:22:72:6f:68:c2:1c:71:32:36:
f0:84:c6:2c:3a:44:8f:8c:53:65:09:a1:e0:72:a7:
2d:04:4c:bd:c0:66:73:61:96:55:9d:a0:f6:a9:01:
76:89:db:ae:56:81:42:66:89:9b:6d:14:81:85:19:
cd:da:57:5d:cc:19:a8:5d:8c:1c:66:cc:5f:aa:59:
51:24:8b:42:3d:db:cf:ee:3f:8f:f5:15:ec:6b:ea:
01:fa:50:53:ea:cc:89:d5:7b:04:2c:11:57:58:99:
21:59:6b:a4:33:8d:86:c8:2b:d8:69:17:10:83:d6:
91:de:05:10:b8:65:3c:90:42:dc:39:6d:c3:dd:58:
68:90:a0:c6:e8:65:a3:5e:bd:1e:5c:93:01:3f:9e:
6b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E0:99:22:4C:24:A5:82:05:BC:16:9B:30:94:7F:87:E1:8C:EE:58
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:db:10:28:7a:d7:11:10:7c:f5:0c:e3:2a:f2:97:a8:50:19:
e0:d2:14:60:cc:db:e3:63:c5:97:9e:ee:47:5b:db:4b:01:05:
2d:df:2a:c1:5a:e1:e7:8d:c0:1d:31:c9:5c:c3:d5:00:39:78:
20:64:23:d4:30:34:3a:38:6e:8a:65:f2:aa:90:59:e7:ff:04:
71:c6:b0:7b:5c:24:eb:96:85:fa:ca:c2:21:77:ea:e7:8f:6c:
66:76:0f:b0:5a:f0:0e:f3:7b:e8:87:cc:e9:18:7a:82:00:8b:
86:7d:b0:6e:33:62:d5:50:2b:73:9c:52:ed:5f:57:cf:d1:86:
b6:4d:8a:b1:01:e8:c9:d7:f2:fc:32:d8:55:9f:e5:5a:21:d7:
a6:7a:42:1d:26:45:b3:cc:b8:07:a8:8a:bf:01:94:18:f0:8b:
62:78:de:7b:2d:7a:24:d9:3e:19:71:c1:31:69:56:d1:1d:1b:
3c:6a:5d:5f:d2:b8:da:0c:4b:63:a8:b1:bb:55:e9:25:9c:a7:
e6:e1:47:ec:2f:e6:c5:2d:20:4c:4c:4b:4f:ae:a4:12:af:8e:
4e:72:c2:8c:9c:75:d6:fb:0e:88:89:7a:f7:d8:2d:25:27:52:
ab:30:fe:43:4c:0c:fe:4e:e0:10:df:64:72:99:7e:2f:d2:01:
55:31:db:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:03:09 2026 by rpki-client