Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
File: jbK0TyPcypwGBL7WkPKKatkBeZk.mft (raw, json)
Hash identifier: 9MFkSR8ZvKWVaGeG67mv3Qth/N4Q6uNpVAL5wi1a+lo=
Subject key identifier: 71:25:16:CD:50:6C:86:86:D9:2D:D3:88:72:F2:A2:49:30:81:83:1A
Authority key identifier: 8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99
Certificate issuer: /CN=8db2b44f23dcca9c0604bed690f28a6ad9017999
Certificate serial: 019D296152D16760B98CE3E1235812C97D70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
Manifest number: 0168
Signing time: Thu 26 Mar 2026 09:02:17 +0000
Manifest this update: Thu 26 Mar 2026 09:02:17 +0000
Manifest next update: Fri 27 Mar 2026 09:02:17 +0000
Files and hashes: 1: H60TaHzgzIDq5bEuHBb2yyowYNw.roa (hash: MUV9kznaIpAsdXMNwJm4Ji4yLC8b4zqE7vuFtiUPGnQ=)
2: jbK0TyPcypwGBL7WkPKKatkBeZk.crl (hash: G4/VNrp7BbnNRty0jU2nevy9Y3EDVXn+TEXtPrYZjRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:52:d1:67:60:b9:8c:e3:e1:23:58:12:c9:7d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db2b44f23dcca9c0604bed690f28a6ad9017999
Validity
Not Before: Mar 26 09:02:17 2026 GMT
Not After : Mar 27 09:02:17 2026 GMT
Subject: CN=712516cd506c8686d92dd38872f2a2493081831a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e1:03:0a:ea:74:74:e9:31:c3:8f:70:bb:df:
7d:09:1a:1f:a9:de:f6:df:99:48:a2:c3:f0:35:c7:
b1:2c:76:16:cf:5b:a8:8f:04:26:e1:82:c6:b3:3b:
9f:7f:5b:52:13:41:53:39:65:ec:61:29:91:ab:b7:
f6:71:94:e9:db:ad:57:cf:05:df:52:de:a9:7e:0f:
41:de:b2:29:06:b1:6c:f0:c4:73:12:a5:1e:d2:f1:
7a:45:c5:3f:f7:dd:6a:79:e2:b0:d0:1e:6d:88:74:
22:21:a4:88:8b:4c:51:c4:8f:fc:0a:cc:6e:a3:00:
4c:f0:d4:89:0b:2f:99:a6:6d:90:35:97:9a:80:26:
fb:85:89:c5:14:d7:3b:0a:b7:20:ec:e8:02:12:06:
d9:6b:9a:58:e9:1b:5b:f3:34:c1:c8:6f:b6:01:2c:
cf:43:85:2e:89:20:07:8b:83:13:9c:32:bd:b0:4a:
5a:1e:20:f9:cd:61:0d:23:be:17:71:e1:07:89:71:
9e:5a:61:9f:4d:fa:01:30:f6:cc:79:70:3a:d5:6e:
17:6d:ba:b7:67:e3:10:08:af:ff:9a:6d:73:2a:43:
f8:f4:e8:5c:2f:61:b3:e4:1f:f7:e3:15:9f:cc:5a:
c1:67:82:d2:f2:ef:72:1a:ef:da:f2:56:a5:0a:e4:
60:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:25:16:CD:50:6C:86:86:D9:2D:D3:88:72:F2:A2:49:30:81:83:1A
X509v3 Authority Key Identifier:
keyid:8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:29:71:25:6f:6c:22:f3:6a:c9:58:60:fe:4f:46:91:e9:9c:
e7:87:d2:12:31:e4:51:c3:a8:9c:9f:4a:d0:c3:e5:e0:29:6e:
7c:f8:7d:55:b9:37:e1:3f:90:b5:51:e6:aa:45:a7:4e:c8:fc:
c6:a8:40:d3:95:a2:74:19:e6:a1:be:78:2c:d7:74:6c:b4:ad:
c4:43:c0:b9:83:57:9e:f5:74:b0:b8:c3:ee:28:9f:a6:97:88:
f7:a3:f2:1b:ff:82:e8:fc:bc:58:1e:65:6d:2b:42:51:40:9e:
ff:3f:d3:85:0a:2d:23:88:45:66:da:22:40:ef:7a:44:ba:d1:
74:62:58:db:b1:a9:60:26:6c:42:16:d2:7b:39:9f:b7:08:87:
04:e0:9a:e3:49:6f:39:a9:85:78:64:0e:8d:6d:6a:a5:67:b0:
69:1b:57:51:9b:0a:b5:eb:55:17:fb:dc:5c:bf:ca:a8:52:39:
f7:75:53:b7:9c:b8:9e:8a:1f:9d:21:38:35:56:4f:42:fa:c7:
0a:e5:b4:ac:68:37:82:53:d7:a8:e4:cd:7d:59:7f:4b:5f:e2:
a5:20:c4:e4:d1:4d:64:2e:9f:5b:8e:79:9d:23:c5:43:ae:9f:
0e:b6:02:e1:a5:ce:c6:5c:9e:6c:47:4e:69:b8:e5:af:91:34:
00:bc:f0:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:01:45 2026 by rpki-client