Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
File: JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft (raw, json)
Hash identifier: uXOZ9mRFKr1GAeu2B5Nm6hc70GZ+ivAXLwRwvHn+Xsc=
Subject key identifier: 92:2D:3F:DF:CE:15:DF:D3:09:45:55:36:D7:A4:4F:7B:D2:D5:01:A9
Authority key identifier: 25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F
Certificate issuer: /CN=25b1a223b7e73fd23462c204e60e9d4815cf763f
Certificate serial: 019EC1B674A774BA4FFEE5328A556FC1938F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
Manifest number: 0543
Signing time: Sat 13 Jun 2026 16:00:20 +0000
Manifest this update: Sat 13 Jun 2026 16:00:20 +0000
Manifest next update: Sun 14 Jun 2026 16:00:20 +0000
Files and hashes: 1: 0OEHU7Z4Xep124nqLarwZ20qYvg.roa (hash: EinNI0ZI4eyeX1yQhgmTMLlxSGZ6l01xF7uPwFE7Lv8=)
2: JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl (hash: uHReGKJTnfPNeV3ZvfAi87qiI1A+P+QLipTaBwLM490=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:74:a7:74:ba:4f:fe:e5:32:8a:55:6f:c1:93:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25b1a223b7e73fd23462c204e60e9d4815cf763f
Validity
Not Before: Jun 13 16:00:20 2026 GMT
Not After : Jun 14 16:00:20 2026 GMT
Subject: CN=922d3fdfce15dfd309455536d7a44f7bd2d501a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:59:dd:98:5e:85:84:82:c4:8f:ee:c1:ea:66:
82:22:99:fb:ca:ab:9d:85:0e:14:24:c9:e7:f2:3c:
f5:19:3a:55:c0:42:c8:77:64:90:7d:b8:27:71:8a:
82:4d:c4:22:b7:18:4f:39:4f:80:ae:55:14:f5:14:
c5:48:6a:6c:9c:59:8c:5d:3a:5e:f9:9c:b8:97:10:
51:41:9b:87:fe:1b:99:79:a4:7c:ac:77:f1:58:ef:
1b:09:0c:42:af:c6:60:bd:b9:6d:43:5c:1b:2c:f3:
49:ff:a1:de:51:57:69:73:10:7e:9c:ca:1b:59:09:
5d:85:20:92:f0:fc:20:20:c2:86:e1:76:64:2c:f8:
9a:06:b7:43:d4:08:a1:bf:73:30:29:41:f7:f3:dd:
92:20:9b:0f:21:41:41:f4:ec:8e:9d:55:04:96:b1:
fb:36:1d:fc:1a:23:a1:08:e6:8c:0c:14:2f:1d:c9:
11:ef:0c:78:eb:c3:f5:0d:81:46:f4:b3:42:2d:2f:
70:c7:6d:5f:34:37:70:83:61:4a:ec:21:c0:bb:99:
a6:63:95:78:b2:bd:34:0d:57:03:7c:10:55:44:d1:
9e:ea:34:a6:39:cf:31:2d:fa:c7:0c:50:5e:58:78:
50:38:18:f0:62:7f:f1:fc:e4:57:cf:9c:ed:5f:47:
54:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:2D:3F:DF:CE:15:DF:D3:09:45:55:36:D7:A4:4F:7B:D2:D5:01:A9
X509v3 Authority Key Identifier:
keyid:25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:95:05:07:1c:0c:3a:3d:f6:08:fc:5b:be:aa:fb:22:5c:41:
45:6d:44:f1:20:ad:88:66:d4:1b:0d:2d:f0:98:1d:f0:95:a3:
f5:92:5a:7e:de:44:70:4b:e5:47:74:4a:fd:4a:d1:f4:55:12:
39:93:a9:35:fe:eb:77:6c:0d:02:8a:49:c1:76:fa:39:c6:3a:
44:c7:75:19:09:75:3d:6d:97:8f:98:c0:a5:be:fd:14:4f:4a:
d7:bd:f6:85:54:52:15:d2:85:dc:a9:65:1d:01:2a:80:f9:89:
64:af:2d:e6:6f:ed:98:a2:81:91:35:4b:f6:bd:a0:b9:0f:e9:
8f:70:f0:d9:00:2d:fa:48:37:91:62:c4:04:97:10:c8:f2:ec:
c5:00:4a:74:e2:8c:87:64:39:44:a7:b1:9c:7e:c0:85:ba:41:
e8:53:98:e0:67:df:55:1d:3d:c5:3c:9f:63:c5:a9:9a:c6:5d:
7b:62:57:3a:3b:a7:eb:41:4b:e6:f0:57:7b:8b:1f:b6:b6:61:
84:cf:fd:41:8b:77:e9:b2:33:01:57:47:f6:74:5a:7f:d8:1a:
9e:8d:8e:65:3c:21:95:8a:1f:e8:2d:88:f9:f0:ed:2e:52:87:
c1:8e:65:59:93:08:85:f7:44:17:36:9d:e0:30:3c:2f:b7:50:
85:f0:7a:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:32:07 2026 by rpki-client