Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
File: jR4EozwylZxnL0X0a-EIZLgemEo.mft (raw, json)
Hash identifier: vbq+SZ/3tT1Q5JWDfnO65yZZj5GiMUIs/W1TuvqnzTE=
Subject key identifier: 59:C4:55:DF:6D:50:21:A8:AB:D4:83:99:4B:07:27:2A:B8:C7:8C:3A
Authority key identifier: 8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
Certificate issuer: /CN=8d1e04a33c32959c672f45f46be10864b81e984a
Certificate serial: 019D9999001AECA01F99A57AE949D62FAA65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
Manifest number: 18BC
Signing time: Fri 17 Apr 2026 04:00:34 +0000
Manifest this update: Fri 17 Apr 2026 04:00:34 +0000
Manifest next update: Sat 18 Apr 2026 04:00:34 +0000
Files and hashes: 1: jR4EozwylZxnL0X0a-EIZLgemEo.crl (hash: NZgFzlx5DxOPCUsqFOlvQHwHsMADW+KYp7cdNVrfB2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:00:1a:ec:a0:1f:99:a5:7a:e9:49:d6:2f:aa:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1e04a33c32959c672f45f46be10864b81e984a
Validity
Not Before: Apr 17 04:00:34 2026 GMT
Not After : Apr 18 04:00:34 2026 GMT
Subject: CN=59c455df6d5021a8abd483994b07272ab8c78c3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:43:7c:d3:3c:24:d9:df:c5:4e:27:9d:a1:f1:
88:e4:8b:0f:af:75:21:3b:e1:7c:b9:51:af:98:3b:
31:8a:05:ac:65:f8:61:29:10:cb:79:37:6b:30:f9:
46:96:3b:82:15:28:24:e7:fc:21:5e:3e:8e:f7:4c:
c6:f8:ae:21:a6:68:61:12:b8:4a:4f:c4:5a:31:eb:
2a:de:24:98:06:31:af:2c:7c:94:22:af:df:5a:72:
37:fb:61:2a:13:ba:1c:58:b4:17:77:34:c0:3b:5a:
42:e4:41:cd:ed:a6:19:c4:b9:32:af:5c:0a:64:a2:
f8:86:1c:84:27:9d:91:ab:7e:75:19:eb:10:7f:90:
a9:92:dc:d0:61:0c:2b:a7:ec:24:df:57:56:c6:42:
1f:42:81:ce:ab:04:fa:1b:91:e9:7e:d0:0c:be:bf:
51:52:26:b2:ea:ad:ca:49:29:65:23:00:d6:0a:cb:
e2:6f:00:40:19:08:a8:a1:d1:2a:f8:75:93:fb:06:
3d:94:08:12:61:4b:e0:4e:e1:3e:e4:ed:7c:f6:19:
1f:2c:ff:28:46:83:21:4d:0f:d8:fe:c3:fc:48:a3:
88:65:74:a7:9f:e9:36:d2:b7:01:04:fc:cd:a2:88:
a9:6d:75:13:da:05:a4:ca:66:81:87:34:c8:a9:bd:
fb:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C4:55:DF:6D:50:21:A8:AB:D4:83:99:4B:07:27:2A:B8:C7:8C:3A
X509v3 Authority Key Identifier:
keyid:8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:1f:40:21:99:dc:3e:02:4a:39:86:a1:9c:46:67:e6:1c:fb:
60:63:27:3f:7f:29:66:08:fc:fb:c0:e2:ed:d8:77:12:62:74:
56:46:43:46:da:85:b9:f8:5f:ac:82:d8:c7:6c:bb:96:29:cf:
24:2a:1d:51:e4:55:21:4b:23:f8:ec:85:90:85:bd:33:84:28:
b3:49:1c:7a:f7:48:55:f5:bb:04:f6:e8:d8:f6:41:b6:c4:f8:
52:13:b6:a4:ed:43:7b:73:4f:09:95:32:a2:68:a9:9b:04:22:
4f:2b:45:f9:26:ca:21:57:be:6b:26:3c:20:5b:ac:31:1c:24:
b1:8c:cd:75:5d:bf:03:ea:4d:5c:09:04:58:22:e0:d3:bf:2b:
03:17:fc:fa:e1:31:5b:cd:aa:74:37:b4:3f:6d:0d:6a:c3:5c:
14:5a:84:3e:24:f3:65:25:dd:1f:30:23:d4:9a:dd:24:d3:e5:
28:b6:3b:8d:80:bb:22:36:f3:0e:8d:f4:ff:c2:a9:92:7d:fd:
73:b3:9f:c5:a0:6b:9c:7c:14:73:c1:3b:e5:62:7a:d3:28:bc:
de:39:44:c6:ef:6c:b8:6b:1f:e7:6d:26:33:20:1c:a5:a2:e5:
cc:73:c5:4a:ea:21:d8:63:60:c6:c4:de:13:8a:c9:9c:02:53:
01:11:ce:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:23:45 2026 by rpki-client