Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
File: JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft (raw, json)
Hash identifier: goZN1wETo/fxIiS72Ad5I576cbgSlhQdX9+4pWdJqG0=
Subject key identifier: 58:22:9C:69:12:0A:BA:89:89:ED:E8:94:77:0E:15:65:21:33:4A:A2
Authority key identifier: 25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F
Certificate issuer: /CN=25b1a223b7e73fd23462c204e60e9d4815cf763f
Certificate serial: 019CAAC65DEFEE19E218832C2A12E16367FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
Manifest number: 042E
Signing time: Sun 01 Mar 2026 19:00:52 +0000
Manifest this update: Sun 01 Mar 2026 19:00:52 +0000
Manifest next update: Mon 02 Mar 2026 19:00:52 +0000
Files and hashes: 1: 0OEHU7Z4Xep124nqLarwZ20qYvg.roa (hash: EinNI0ZI4eyeX1yQhgmTMLlxSGZ6l01xF7uPwFE7Lv8=)
2: JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl (hash: fjHaGBFoLkdvvPLUAlDYgw1heklo07KXj2GDOfpeepc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:5d:ef:ee:19:e2:18:83:2c:2a:12:e1:63:67:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25b1a223b7e73fd23462c204e60e9d4815cf763f
Validity
Not Before: Mar 1 19:00:52 2026 GMT
Not After : Mar 2 19:00:52 2026 GMT
Subject: CN=58229c69120aba8989ede894770e156521334aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:eb:05:69:3c:a1:f9:94:e6:26:10:09:be:7d:
b1:8e:51:8a:10:88:ce:a2:b2:fe:91:00:d9:b4:f6:
3d:97:30:9f:51:b9:79:0f:dc:06:8d:fd:59:cf:ee:
e4:93:32:d5:25:81:74:d9:05:ad:0c:29:3e:a0:94:
2d:d9:59:28:56:e5:64:2c:99:c7:14:64:e4:59:09:
1d:0a:e2:29:ce:5c:db:54:1b:01:be:b6:5b:ae:c1:
b4:79:ad:3d:d6:4d:a2:ca:b0:92:d1:98:d6:9f:d6:
5a:35:fb:b2:f3:f9:8a:d7:2c:d6:09:9f:65:51:9c:
28:99:c0:92:e5:f5:7c:22:24:35:b7:31:ca:94:7c:
73:43:e3:8a:0e:f6:6a:8c:cc:e5:fc:a9:45:6b:20:
35:d4:a2:36:48:6c:dc:e4:c9:06:1f:dc:83:6e:b2:
19:0a:9d:0e:49:61:be:a0:31:3c:0c:9f:60:b1:3e:
0d:b8:f4:33:a3:40:66:19:3c:44:6f:8f:2c:bc:63:
9e:32:0f:fe:28:eb:e0:7c:60:47:53:2b:9e:0c:97:
45:cb:d3:6d:70:d0:82:06:f4:f7:51:b4:d4:9d:74:
be:33:9d:15:12:61:88:75:4c:74:b4:56:dc:eb:fb:
89:37:a0:14:fb:34:eb:43:37:f3:61:7b:17:22:c2:
93:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:22:9C:69:12:0A:BA:89:89:ED:E8:94:77:0E:15:65:21:33:4A:A2
X509v3 Authority Key Identifier:
keyid:25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:76:3f:96:d1:b2:4d:f3:6d:89:73:ec:6d:b8:9c:ea:7f:bf:
c3:1c:a9:b8:35:d9:0a:fc:5f:a4:c6:d4:27:3d:68:01:c0:2b:
ca:af:dc:cd:2f:09:ae:11:96:05:51:17:2a:e3:f6:32:23:3f:
be:37:f5:13:29:a5:b5:16:6d:1b:68:bd:f7:5c:4f:c1:a6:84:
09:15:80:55:0c:2f:9e:28:8a:55:f4:27:a3:a6:be:55:78:4a:
ef:e8:65:2f:34:e4:06:14:04:18:ee:ff:0d:bd:b4:48:63:ea:
90:b6:df:71:7f:3b:ee:96:46:09:e8:aa:0d:67:72:99:f1:2a:
59:97:35:5d:24:96:b8:47:4c:81:b3:c5:33:c8:16:74:8b:9d:
75:ad:13:b1:2a:5c:c0:db:a7:fb:37:21:12:c6:22:78:6d:78:
03:ed:9b:8f:da:9c:66:cb:3b:33:e1:41:bc:f6:f0:5f:87:d1:
fc:99:69:f0:71:13:b3:90:be:6e:f6:ec:4b:3b:51:1e:b5:b9:
bb:71:84:7d:9a:c9:79:ed:5b:77:e5:a3:5c:f2:0e:e6:cd:18:
55:ea:7e:a2:12:f4:6f:8f:0d:ef:a7:7b:b6:ad:25:46:68:e1:
37:c3:68:5b:ad:4c:f6:07:52:3c:e3:6e:84:b9:89:82:62:8d:
d8:cd:7a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:41:03 2026 by rpki-client