Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
File: JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft (raw, json)
Hash identifier: DMFJChucUQWx6nIfzzgDtiOAej6PZpExF84TvItX92s=
Subject key identifier: FA:19:EC:58:94:AF:6E:F3:61:99:8E:2E:F6:BD:A8:B6:A4:3E:AD:0B
Authority key identifier: 25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F
Certificate issuer: /CN=25b1a223b7e73fd23462c204e60e9d4815cf763f
Certificate serial: 019D9A3ECFA270129FC321C57F6F127428F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
Manifest number: 04AA
Signing time: Fri 17 Apr 2026 07:01:40 +0000
Manifest this update: Fri 17 Apr 2026 07:01:40 +0000
Manifest next update: Sat 18 Apr 2026 07:01:40 +0000
Files and hashes: 1: 0OEHU7Z4Xep124nqLarwZ20qYvg.roa (hash: EinNI0ZI4eyeX1yQhgmTMLlxSGZ6l01xF7uPwFE7Lv8=)
2: JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl (hash: 5sCxdTeG0sI3xd/X0kCnT4NouHZCXhb5/we/rMO+vcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:cf:a2:70:12:9f:c3:21:c5:7f:6f:12:74:28:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25b1a223b7e73fd23462c204e60e9d4815cf763f
Validity
Not Before: Apr 17 07:01:40 2026 GMT
Not After : Apr 18 07:01:40 2026 GMT
Subject: CN=fa19ec5894af6ef361998e2ef6bda8b6a43ead0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:99:63:ac:50:cc:83:8a:25:77:18:c1:42:79:
2c:76:a0:76:66:03:ca:1d:b1:37:a4:84:ee:e7:33:
a5:6a:35:07:05:14:dd:7f:54:a7:06:08:17:6e:1a:
de:2f:c2:b3:20:45:d1:32:e5:ad:f4:40:0b:4c:23:
e6:08:95:db:6d:a9:fe:5b:27:31:8d:e8:51:3d:7a:
e6:b5:df:e5:c0:9b:3e:cd:15:af:3c:bb:37:6b:90:
02:29:21:83:64:d4:08:0c:f0:98:35:b4:fb:61:03:
5a:bc:af:1b:ce:b9:88:c3:4e:18:72:29:05:9c:ab:
d0:0b:1f:11:34:5e:34:00:ad:a7:43:ea:61:77:7a:
a9:f3:15:1b:1a:15:b0:a1:31:82:a4:62:7a:2f:45:
9a:88:66:da:76:f8:75:da:fd:13:9b:90:5d:3a:11:
29:3e:1e:8d:07:a5:5c:0e:74:78:1d:f0:b9:21:a5:
29:a7:c8:8e:ff:23:f5:5f:ec:0a:38:a1:7a:83:a8:
17:81:83:ee:e8:31:e8:df:8b:1d:fb:77:9a:a1:0c:
53:fa:92:f1:9a:d0:c1:8b:ef:5d:05:87:07:a7:ca:
4e:36:42:ef:22:5d:d5:d9:67:2f:83:ef:78:3a:ea:
0f:61:57:eb:dc:dd:86:04:dd:fe:58:71:3a:c4:f4:
10:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:19:EC:58:94:AF:6E:F3:61:99:8E:2E:F6:BD:A8:B6:A4:3E:AD:0B
X509v3 Authority Key Identifier:
keyid:25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:5c:9b:fa:2e:ee:b7:87:5e:37:29:31:ac:6b:99:8f:f5:c7:
45:c4:f7:33:61:b1:61:ce:2c:e7:89:dd:3a:f3:0a:79:05:5b:
39:87:70:e7:5e:e9:8f:c7:88:bc:b5:c5:6b:bc:0b:1d:0c:b1:
e0:64:ff:e7:b1:41:0a:bc:79:e2:5d:1a:bf:12:f3:f9:a6:be:
ec:b2:c9:e0:49:27:77:95:28:c4:d8:cb:d8:2b:ea:f9:00:1b:
7e:ab:7f:fb:56:a0:58:32:40:c6:19:6f:5e:bc:db:5b:61:ce:
56:cb:e9:02:e7:53:27:54:4e:35:59:a5:0b:4c:7e:06:d3:00:
d2:39:52:a1:04:a0:de:fe:63:f7:81:14:e2:2c:bb:d0:8e:f1:
c6:56:a0:79:69:a5:00:f5:78:e3:e7:22:92:14:cd:7f:02:48:
9e:0e:4c:67:e6:d7:c3:3d:54:3c:2e:f8:85:54:a4:5e:0b:21:
73:3c:fb:49:9f:6a:cc:62:c5:9d:8c:ab:bd:99:d3:10:6c:48:
8f:e6:94:d6:04:59:61:a4:26:fd:4b:f4:19:f5:7f:c5:ff:66:
37:21:af:d5:e3:bd:71:3d:c6:ea:ad:00:07:d9:b2:eb:ed:f9:
14:35:c8:89:74:8b:c9:55:3f:99:f0:da:4c:4a:c8:45:28:7d:
0c:34:c4:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:57:52 2026 by rpki-client