Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
File: JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft (raw, json)
Hash identifier: aWVo/6Y904v3p77/WSvh7RFUIY77Z5PfG4jTdfILzCk=
Subject key identifier: 32:67:9B:BD:98:08:35:DB:22:ED:F5:57:29:72:D4:B2:85:03:DB:82
Authority key identifier: 24:E9:40:DB:19:0B:69:2C:D1:B0:D5:83:ED:B6:D8:C3:61:12:45:69
Certificate issuer: /CN=24e940db190b692cd1b0d583edb6d8c361124569
Certificate serial: 019D28BB78A1BAEA14135DAC016D58C12D7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
Manifest number: 0316
Signing time: Thu 26 Mar 2026 06:01:07 +0000
Manifest this update: Thu 26 Mar 2026 06:01:07 +0000
Manifest next update: Fri 27 Mar 2026 06:01:07 +0000
Files and hashes: 1: JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl (hash: OyPoQsKf284kmpGzOYqVkE+re079VKHYvBi0HdMtpeg=)
2: hQYlFQzT91DNazRboAcnc_468LQ.roa (hash: xwDlJYdyb3iMPJXDHp4iQgWl+BTTgyNe5ipYkebXqwc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:78:a1:ba:ea:14:13:5d:ac:01:6d:58:c1:2d:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e940db190b692cd1b0d583edb6d8c361124569
Validity
Not Before: Mar 26 06:01:07 2026 GMT
Not After : Mar 27 06:01:07 2026 GMT
Subject: CN=32679bbd980835db22edf5572972d4b28503db82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9a:6b:14:44:17:bc:79:e7:20:3b:58:ae:70:
65:f7:8a:67:b8:00:98:f0:4f:76:b0:98:7a:52:f3:
2f:84:84:fd:0e:20:62:bc:73:7c:13:e2:9c:67:d4:
0e:e1:74:85:13:27:35:f8:55:b0:f8:44:fb:69:c5:
d4:e4:cd:83:62:23:9f:c0:97:60:e4:f0:ea:2a:51:
68:bf:6a:3a:1a:a0:94:7c:15:e5:21:ac:9c:6a:55:
76:e6:0d:03:1f:88:7b:91:9b:0d:a8:11:cd:bf:31:
ac:04:2e:05:8f:05:d1:32:69:9f:af:8b:3d:43:d3:
6a:9d:73:8f:75:4d:9d:e0:27:ff:17:64:5e:ea:27:
2e:eb:6f:47:bc:b5:8b:8b:9a:2d:2b:65:d2:eb:dc:
f5:bd:f7:73:f9:83:59:48:fc:f9:1d:60:a1:c6:87:
49:1b:47:12:e3:cb:4d:5b:28:03:8e:15:fb:8a:ac:
26:68:9f:f4:37:a7:53:a6:a8:da:4f:a6:4a:d4:a6:
27:1e:d6:7e:5a:c1:cc:e6:ba:0a:f8:a3:4f:31:5a:
52:37:4d:ce:5d:57:da:56:f2:cc:52:3c:4c:9c:39:
79:01:84:26:13:ad:f2:dd:f5:c4:ee:4e:14:32:5f:
70:d8:98:f9:ad:5d:15:17:a4:22:3a:5f:2a:b3:b1:
72:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:67:9B:BD:98:08:35:DB:22:ED:F5:57:29:72:D4:B2:85:03:DB:82
X509v3 Authority Key Identifier:
keyid:24:E9:40:DB:19:0B:69:2C:D1:B0:D5:83:ED:B6:D8:C3:61:12:45:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:07:ae:c5:be:9e:08:6b:f9:99:f4:34:86:fb:0d:16:ec:54:
00:2c:54:2f:7b:76:e8:52:80:40:ad:09:9c:4e:75:32:92:28:
2a:2a:96:49:5c:1e:a7:f3:c1:3f:3f:8d:44:4a:8d:8c:a1:cd:
18:fd:fd:34:61:b1:ff:85:5b:58:8c:70:6c:c6:99:3e:7f:c0:
f1:80:1d:7e:20:23:a8:2c:30:fe:5f:95:ea:25:3e:c6:c8:dd:
b6:e4:33:eb:a9:ac:58:b5:8d:fb:08:c0:77:9d:f5:bb:81:60:
a1:f0:bb:45:1b:d7:67:82:2f:5d:9c:ad:8c:cb:1a:ef:5b:43:
91:2f:ca:a9:c8:c8:c7:14:cb:72:c7:56:2f:ce:55:a2:cf:57:
f5:b5:3c:e4:ea:cc:ce:53:79:4a:c9:96:81:9f:39:4b:ce:3e:
fe:fd:f9:5e:09:15:c0:a9:f3:28:d2:3c:f5:ad:3f:dc:9c:3c:
bd:b4:42:41:55:cb:0b:26:e2:69:1b:c2:61:86:c3:da:86:0b:
5c:21:e6:02:ef:b6:41:5e:cf:67:26:ac:0b:ff:fa:30:5c:cd:
c0:be:89:8a:21:cd:75:c5:2f:3e:97:cd:72:6e:53:84:b8:b8:
1e:f5:2a:ef:42:47:83:d3:7d:9f:27:4c:e5:77:c3:66:57:6e:
53:68:e0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:53:28 2026 by rpki-client