Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: YTxJAPvBKj+q047bzzLn6ctrdDCOIngPwXZTqBjF8Yw=
Subject key identifier: E0:9F:68:37:9D:F6:B4:95:3D:45:43:12:E7:1B:28:F3:5D:A6:E0:15
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 019CAC46AA94C18929FF21696E6F2FD4FF4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0BDB
Signing time: Mon 02 Mar 2026 02:00:38 +0000
Manifest this update: Mon 02 Mar 2026 02:00:38 +0000
Manifest next update: Tue 03 Mar 2026 02:00:38 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: vUFxxW3PpSqAJ6Nu+g202ASNVJvSXB02E4vJb6fFn4Q=)
2: rIbppOfNfFYdHELW2Brc9R0i8ZQ.roa (hash: 6K2aNO9ERJucL5JHeR5DeWEg9tZjVrX7Cr/llqySGJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:aa:94:c1:89:29:ff:21:69:6e:6f:2f:d4:ff:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Mar 2 02:00:38 2026 GMT
Not After : Mar 3 02:00:38 2026 GMT
Subject: CN=e09f68379df6b4953d454312e71b28f35da6e015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d0:a3:3a:30:20:db:97:bb:2e:b8:84:12:7e:
6f:56:8a:b7:96:2f:22:16:5d:b0:94:69:97:a6:ef:
82:b4:a0:e0:aa:5f:06:9f:96:b0:32:b5:79:15:4d:
3a:b5:51:b7:42:39:98:cd:77:f2:85:1a:0c:00:47:
5e:25:90:bf:14:96:a2:2b:bc:b8:85:b7:87:a5:a9:
99:e4:e0:2c:20:df:37:1d:69:f0:56:9e:e1:d3:6c:
b1:ce:c4:9e:61:41:93:4b:88:e7:fa:9e:5a:fb:d7:
47:ce:cb:eb:96:8b:31:af:ab:cf:bf:56:6b:9b:df:
90:e4:67:76:5e:84:f2:7d:8f:a5:11:98:9c:c9:7d:
42:6a:e5:2d:75:aa:1e:94:f0:af:7a:d3:13:b6:0d:
bd:d5:b2:44:6b:96:45:59:12:c7:6f:52:9d:c9:c9:
56:86:2c:42:91:d8:6f:36:0f:97:52:6f:53:5a:6e:
1f:f7:6b:01:ac:22:75:00:70:0d:3a:c1:52:46:94:
de:1d:74:6b:d3:e8:d0:3c:56:10:91:28:4b:6f:4e:
e9:2b:4a:a2:d7:11:9d:94:8a:21:c2:1e:bf:d5:61:
ce:18:2a:d3:b2:5d:e2:32:07:29:8d:a4:39:31:6b:
ad:b5:6b:03:f3:07:e7:ba:f3:ac:7d:ea:54:3d:37:
80:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:9F:68:37:9D:F6:B4:95:3D:45:43:12:E7:1B:28:F3:5D:A6:E0:15
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:87:2b:0a:cf:71:dc:12:56:cf:f9:c7:0b:44:64:62:a6:39:
7e:bb:bd:15:d1:4b:09:95:e9:f4:0e:88:73:44:2f:c8:4b:52:
f3:a8:f1:99:f4:6b:0a:d6:fa:bb:eb:7d:37:c5:75:28:d4:63:
8d:9f:31:8d:8a:cb:0d:08:0c:c8:32:6b:46:12:0b:84:63:da:
83:be:13:7c:11:f8:70:20:0d:4b:72:f5:d4:57:91:2f:e7:16:
d1:2d:51:b1:6c:a4:82:65:87:57:32:f7:f4:60:2d:71:fd:1a:
70:e1:fb:d1:de:58:02:b9:21:39:f0:2a:29:7d:be:1a:37:5c:
bb:9a:21:a8:be:83:c5:22:78:cc:dd:77:dc:42:97:96:f8:4c:
a6:c5:3f:1e:0a:42:10:bc:95:b8:ad:ad:10:d3:ad:90:5a:a1:
12:ee:1e:5c:69:86:8f:b5:7d:33:07:30:94:14:62:63:53:ad:
0b:33:a9:f1:78:bd:67:57:5f:a3:1b:e3:f0:07:0e:81:01:08:
5d:68:ff:a1:a3:2f:79:56:d6:b7:e2:1c:7e:d0:48:ce:13:0c:
56:a0:e8:67:b1:2a:8e:08:66:4b:b5:05:27:c7:08:f7:13:7e:
6f:15:5b:22:3a:4a:56:7a:1d:98:e6:b4:61:09:99:4f:50:e6:
6a:97:29:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:39:45 2026 by rpki-client