Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json)
Hash identifier: ynHswXxKTjRuvlxgIMSRqIGsMZaXDYF9f8rdWcvnmIU=
Subject key identifier: 5C:AB:5D:3D:37:EF:37:02:4D:2F:67:EC:E8:6F:FF:F7:7A:3D:01:EE
Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Certificate serial: 019D992AF431D357BA412F798E4BC45F5CCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
Manifest number: 0C73
Signing time: Fri 17 Apr 2026 02:00:22 +0000
Manifest this update: Fri 17 Apr 2026 02:00:22 +0000
Manifest next update: Sat 18 Apr 2026 02:00:22 +0000
Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: Mc6gCZ4oENozHNkooEEdvioDqpWZL3Hh46d8Gl9wm5Y=)
2: mcYH2WbtharfS1cKE4nDVc9cSUQ.roa (hash: 6NNnIl4fnOkglhpxTOXbgmIwZY5zvuF1yTHWpVT47EM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2a:f4:31:d3:57:ba:41:2f:79:8e:4b:c4:5f:5c:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Validity
Not Before: Apr 17 02:00:22 2026 GMT
Not After : Apr 18 02:00:22 2026 GMT
Subject: CN=5cab5d3d37ef37024d2f67ece86ffff77a3d01ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2e:2a:7a:7a:25:6d:88:67:0a:3d:17:d4:d7:
d8:d4:45:9a:ac:1f:c8:6c:23:57:0d:c0:80:b6:6f:
eb:39:ce:fd:ec:f7:86:ba:35:63:d3:c0:0d:99:dd:
99:57:d3:72:e1:c5:67:4d:85:4e:ec:e6:f1:be:e9:
f1:00:62:ba:9f:d2:a2:a9:41:4a:2a:98:05:20:9e:
23:e4:24:91:10:90:0a:f5:46:a9:87:bd:0c:bf:8e:
2a:8e:02:01:ee:13:02:90:34:3d:26:0a:65:0c:e4:
63:aa:b6:46:02:74:af:54:51:66:e9:ed:7b:19:c9:
65:91:54:53:a9:37:93:f1:19:91:b0:f2:46:fa:1d:
2c:83:d3:ce:b9:76:0e:44:1b:28:81:61:9e:bd:39:
8e:90:f3:37:fa:bd:b6:3d:9c:a7:ff:10:c5:f9:44:
c1:c4:22:90:fe:cd:4a:72:41:2e:82:c3:9f:1e:7e:
11:af:7c:56:48:92:db:50:7c:6c:2d:c2:a0:1b:06:
e7:17:48:62:02:6d:bf:ae:be:79:28:8c:d7:2f:cf:
84:ad:c1:b8:9d:82:d3:4b:81:cc:89:b9:90:b7:75:
8c:d6:af:fe:37:c6:46:67:5a:3e:2f:b2:c0:d2:e3:
25:6e:11:18:29:ba:48:d4:cd:af:12:0e:62:fa:25:
3a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:AB:5D:3D:37:EF:37:02:4D:2F:67:EC:E8:6F:FF:F7:7A:3D:01:EE
X509v3 Authority Key Identifier:
keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:56:03:20:90:11:b5:14:3f:09:29:a4:6e:7d:da:c4:b4:1b:
8c:e1:15:c9:02:96:8a:13:13:9f:ac:8d:a4:d1:4d:86:c2:31:
29:90:ba:e4:a7:df:51:1b:c3:ad:f0:8e:53:33:2b:04:f7:cf:
28:9b:75:38:53:ad:a2:dc:51:88:0f:83:51:a8:b6:43:c1:5d:
5c:84:6d:49:ff:c6:a3:a5:77:a3:03:c7:37:3e:e7:f7:01:1a:
2e:ca:5d:88:76:70:99:b3:98:1e:42:9b:d8:80:de:0f:b6:43:
af:0b:cc:b2:f7:37:25:d6:91:b8:06:7f:d6:31:1e:7f:47:02:
48:af:a5:4e:fb:67:ae:bd:65:21:9f:8a:00:bc:af:fe:8f:3b:
c7:60:78:3a:66:dd:45:26:cb:e2:a5:8d:a6:2d:0f:fb:f8:51:
cd:05:bf:dc:32:2e:27:e1:e1:5c:d4:ba:33:93:8b:81:d6:93:
5a:06:94:e3:a1:63:f6:51:0b:78:3b:ae:8d:2f:ef:7f:07:d5:
23:c0:d9:2a:74:10:8c:48:40:92:1b:13:b1:f5:6e:61:03:40:
89:48:27:31:f9:94:8d:3c:f9:d2:8e:db:d5:be:9b:b5:9e:57:
1b:09:8a:cf:d6:52:5f:9a:f5:1a:60:97:13:df:28:9b:33:5f:
8b:67:56:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:04:32 2026 by rpki-client