Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
File: JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft (raw, json)
Hash identifier: LMg2J2owmH7zOTQPe6QtVyN1huWHa9rz2E0r8XRRxOY=
Subject key identifier: 89:B1:38:0F:6E:52:BE:7E:0A:CF:B7:CF:7B:C7:CA:4D:E4:A3:74:7B
Authority key identifier: 25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF
Certificate issuer: /CN=258906554d8c8b428ede8cb35026860d3d7771df
Certificate serial: 019CABD9CE39DFAEA84430716E65AC66BCC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
Manifest number: 0F26
Signing time: Mon 02 Mar 2026 00:01:43 +0000
Manifest this update: Mon 02 Mar 2026 00:01:43 +0000
Manifest next update: Tue 03 Mar 2026 00:01:43 +0000
Files and hashes: 1: JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl (hash: zVMS1zMWGG2YwuOjHhBqrjx1/1gFIloqe/hnMoDqsf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:ce:39:df:ae:a8:44:30:71:6e:65:ac:66:bc:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258906554d8c8b428ede8cb35026860d3d7771df
Validity
Not Before: Mar 2 00:01:43 2026 GMT
Not After : Mar 3 00:01:43 2026 GMT
Subject: CN=89b1380f6e52be7e0acfb7cf7bc7ca4de4a3747b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:15:12:03:b1:6d:8e:96:db:0f:66:c8:f9:c8:
60:1d:bc:63:4e:1c:ac:4a:33:70:e8:91:e9:1d:3a:
c9:7c:4b:3b:1b:f4:7c:0a:0d:5b:d7:a9:88:4c:7f:
95:39:94:a9:71:f2:63:95:5a:97:cd:6c:17:4d:4c:
7d:82:ca:4d:b7:be:8f:3b:32:2f:57:4a:6e:f0:60:
c5:7c:51:b0:a3:2b:76:8b:5e:fb:a2:f9:71:e0:eb:
b7:06:03:dd:4f:b9:a3:e9:5d:f1:42:58:66:fb:44:
72:c8:d4:8b:d1:0f:73:b4:55:cb:9d:3c:b8:71:db:
c5:6b:af:76:9d:d1:4b:7c:61:6b:de:5c:80:3f:8c:
2f:68:57:fa:88:03:83:66:15:64:0f:85:13:ed:c3:
5d:99:02:15:0d:64:d5:d6:d0:38:54:83:3e:2f:3c:
30:27:0f:34:1d:ff:76:5a:55:74:c2:ab:41:b9:c4:
2f:31:33:c3:1a:42:d0:47:af:5d:2a:8c:46:f2:8c:
54:ff:39:be:3a:11:63:aa:3f:3d:f0:18:c0:0c:cc:
ee:39:01:3b:d8:27:9a:ea:6e:00:f2:65:97:81:ae:
78:55:4c:95:99:76:8e:64:4a:69:87:e1:72:58:f3:
7e:51:a0:4f:f0:1c:e4:30:94:5c:23:65:6e:9f:c2:
ff:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B1:38:0F:6E:52:BE:7E:0A:CF:B7:CF:7B:C7:CA:4D:E4:A3:74:7B
X509v3 Authority Key Identifier:
keyid:25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:75:c6:61:73:90:65:d1:62:37:32:ac:27:7c:39:41:49:b3:
75:cb:99:d1:39:48:7f:dd:d5:5e:2e:d3:a5:b5:6c:49:80:74:
a3:19:48:ef:6a:8e:51:4f:dd:2a:11:b9:f1:25:b0:4e:f7:d6:
04:7e:07:13:db:94:da:0d:7f:d8:64:ac:ac:11:4e:88:0e:fe:
05:dd:ad:6e:5c:1b:1f:79:17:40:28:c7:29:42:21:44:89:1f:
91:68:2a:76:da:e1:0e:4a:62:f7:45:dd:96:ac:93:4c:28:5c:
c7:6f:9b:ff:58:c4:12:0c:80:e9:1f:9f:55:e7:13:da:c4:b3:
d2:3a:4a:f1:8b:6b:48:b0:ef:da:6f:ed:d5:62:ba:11:e1:2c:
48:82:0b:e3:9c:a3:ea:3b:f2:11:fb:20:ef:2c:40:d5:8c:a0:
f9:5b:1d:23:3c:dc:ea:82:05:ec:fd:da:72:39:82:14:46:29:
ab:20:80:8d:c1:e3:ab:7e:f4:e6:33:7c:ff:71:6b:08:40:a9:
4e:c9:f1:24:61:6e:9c:bb:7f:04:d7:10:b6:bf:28:e8:32:2d:
6d:7b:96:d4:b3:43:a4:23:cd:f1:fb:59:bf:47:4b:cb:5e:19:
5b:a0:a2:16:98:d9:d5:53:26:90:19:00:0d:cb:f3:37:33:76:
1f:69:39:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:05:38 2026 by rpki-client