Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json)
Hash identifier: Vc5o7Zeh8mwQ7h4S0Eia5SIPeoLRXpBGL2rtWNFXUmM=
Subject key identifier: CC:89:32:BE:25:61:85:C9:4E:0A:02:77:D4:85:40:0A:A7:14:7D:C5
Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Certificate serial: 019CA9B403CA245D88F9D70BA52B6D30BC26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
Manifest number: 0BF7
Signing time: Sun 01 Mar 2026 14:01:12 +0000
Manifest this update: Sun 01 Mar 2026 14:01:12 +0000
Manifest next update: Mon 02 Mar 2026 14:01:12 +0000
Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: KVZQECehwqPvYSX7v/HWagGqEbxaWoL2Qp8Wuc+CmhE=)
2: mcYH2WbtharfS1cKE4nDVc9cSUQ.roa (hash: 6NNnIl4fnOkglhpxTOXbgmIwZY5zvuF1yTHWpVT47EM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 14:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b4:03:ca:24:5d:88:f9:d7:0b:a5:2b:6d:30:bc:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Validity
Not Before: Mar 1 14:01:12 2026 GMT
Not After : Mar 2 14:01:12 2026 GMT
Subject: CN=cc8932be256185c94e0a0277d485400aa7147dc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:61:0b:23:21:10:2b:35:f3:f5:c2:29:47:e7:
6f:67:5e:b6:b4:bb:ee:49:da:63:2a:c7:c6:e9:57:
d6:3a:87:e0:e3:cc:9b:02:0e:cf:87:a1:1d:c6:45:
64:a7:84:8a:a1:36:9c:70:7f:1d:fc:73:e5:d3:0b:
1a:eb:ef:76:cd:d2:19:81:cb:c7:c8:10:a2:38:61:
81:ed:e9:45:72:e6:31:e6:c4:bf:cf:57:63:02:db:
85:b9:57:92:41:23:fb:e0:32:4a:ef:72:83:b9:2b:
a9:c7:b2:57:af:55:c1:f5:42:46:d6:db:a3:51:00:
50:2c:8c:7e:3f:84:a2:77:ba:f9:5f:b6:3b:b1:8d:
ec:6c:eb:1f:77:15:11:a6:01:a2:8a:4e:c4:bf:50:
63:f2:47:a9:cc:b7:42:9c:2b:ac:c9:7a:e1:25:7a:
45:66:cf:be:bb:0b:8f:30:09:f5:c5:b8:98:c1:74:
6d:1b:bc:f5:cb:34:8d:e7:3b:2b:ee:9a:13:a4:2d:
5b:a4:eb:12:ad:24:c7:23:91:39:cd:b3:b0:4f:aa:
a7:5a:15:db:fb:88:b9:e1:de:78:f1:db:d3:97:40:
c5:a3:eb:1e:55:b0:a5:8e:b6:66:0a:04:83:2c:37:
0d:c2:cd:d1:32:3d:ab:28:58:a5:38:e2:62:d1:62:
92:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:89:32:BE:25:61:85:C9:4E:0A:02:77:D4:85:40:0A:A7:14:7D:C5
X509v3 Authority Key Identifier:
keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:7a:ea:18:90:f7:0b:ca:af:d1:32:1a:03:85:bd:87:d5:df:
15:c9:75:b8:f5:70:62:9e:fb:0a:8a:2a:cc:ce:b6:b7:14:4b:
bd:7d:47:4a:f6:9c:86:78:af:fc:e4:98:a8:cf:e1:fc:31:9e:
be:9d:1d:a9:14:0b:0a:a8:3d:29:fb:7a:fb:68:fd:b0:12:f0:
a8:dd:a8:6f:47:7c:d8:b2:ff:f7:92:95:b2:d8:2b:db:5b:2b:
03:db:68:06:c7:a0:ff:6e:1d:00:45:5f:ab:43:04:10:ad:06:
4c:88:95:2c:cb:2b:5f:a7:60:fe:68:c5:1e:ba:79:2e:21:5e:
5c:82:5b:f8:48:58:f6:e3:88:ec:06:52:9b:41:0c:dd:4c:8c:
1d:2e:26:f2:08:3d:50:74:da:ce:e3:33:56:fe:f9:db:f8:46:
84:c2:3d:65:23:6c:09:d2:78:6a:15:73:57:52:cb:4b:08:ba:
77:c5:d2:83:eb:31:04:55:cc:8a:9b:12:c4:50:f6:1f:b4:0d:
88:cf:10:6e:1a:35:f7:51:c0:52:75:44:26:20:80:61:d1:f2:
8a:68:31:76:9a:03:b2:9d:c9:8e:04:dd:5c:fe:85:ff:33:e0:
23:2b:3d:bb:13:43:0b:3a:43:cd:c5:b7:fc:7c:4c:c4:1a:41:
37:e6:cc:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:45:02 2026 by rpki-client