Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
File: jbNHdLAZeShP2edU_qaPo8YXg9A.mft (raw, json)
Hash identifier: RfQcTvl0pFT2fw8KifH0JnmhCwiXO80LXUtkTwK8JyQ=
Subject key identifier: EB:9A:96:DA:1B:2D:8F:F9:C9:3C:C5:58:89:A8:97:64:64:E8:A0:CA
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 019E1D901C00688D1EA53A735937D98F826B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
Manifest number: 1951
Signing time: Tue 12 May 2026 19:00:43 +0000
Manifest this update: Tue 12 May 2026 19:00:43 +0000
Manifest next update: Wed 13 May 2026 19:00:43 +0000
Files and hashes: 1: 7M11WAr8ASMmTsOpEXXftqbLZKI.roa (hash: Hy7iKCS/PTOuaQ4Hy/XwhYj+Mf9Lpbiz3nTqAU+v+KA=)
2: IPD7v-J9c376oyXeNIKc_aWnNmQ.roa (hash: EEItVG+CeXn/JupxjY6OK4AdQvnwdrYLgxk2U0ldhpY=)
3: _gRsaSao0vaUMwc0x3LyFobrYg8.roa (hash: NuZeEvpoAsVGvJOhf6lMpbCZ6vhyLjtVLY0IuaaWnsk=)
4: gpd1mhOHXiMRj4sBD1YUlIe0OKY.roa (hash: Mp1A6bnLjG6e+iNvqlRY2Pi1q3kKD3uoZO/De04Jgqw=)
5: jbNHdLAZeShP2edU_qaPo8YXg9A.crl (hash: FQuPx8aN1XDcqAVSBDcw5AsJ8Jo2IBBGk8V6MzmI8DQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:1c:00:68:8d:1e:a5:3a:73:59:37:d9:8f:82:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: May 12 19:00:43 2026 GMT
Not After : May 13 19:00:43 2026 GMT
Subject: CN=eb9a96da1b2d8ff9c93cc55889a8976464e8a0ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:86:94:81:5a:c1:97:29:a3:80:a8:38:c4:29:
6b:fc:7f:0e:d8:c0:7a:72:f5:39:8c:28:04:4a:c0:
69:d4:db:20:66:a2:f7:54:ac:3c:d9:73:56:53:05:
87:90:5a:ed:5a:21:16:d1:3d:82:a0:09:2c:99:e9:
3f:e6:2e:d8:63:5e:8b:70:ac:a7:cc:e9:cb:6d:3a:
7c:9f:e8:8a:97:02:8b:49:ce:8b:24:96:cb:f0:f6:
78:2c:02:7a:ce:c9:c2:ec:f9:80:14:a2:0f:6b:b0:
e0:5c:f1:69:c7:a1:cb:61:f3:f3:30:1c:1e:46:41:
90:40:f2:ab:c1:63:cb:3c:da:40:e5:2a:87:ab:2b:
18:55:68:17:c5:88:81:7d:b7:3c:fc:7e:b6:a9:8e:
a7:99:20:92:2a:90:8c:f5:a7:03:be:d9:a5:21:68:
a4:ce:33:41:d3:04:34:3d:f6:1d:67:32:f2:e6:54:
56:69:6f:f7:d0:bb:98:a2:d9:15:cf:c4:88:67:3b:
c0:e2:0b:56:2a:0e:c8:7d:10:a7:9b:b6:f3:23:f3:
d6:04:d2:e6:a9:ac:e0:68:c4:0a:6a:01:c6:f8:d2:
6a:47:07:77:b6:4a:73:15:fb:ee:32:f0:03:4c:5a:
ab:1c:72:f5:a5:10:17:58:63:54:62:c8:dd:85:e8:
98:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:9A:96:DA:1B:2D:8F:F9:C9:3C:C5:58:89:A8:97:64:64:E8:A0:CA
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:45:3e:a4:8c:45:0b:ad:db:ed:53:bb:22:12:59:73:04:4e:
ec:20:fe:47:74:c9:11:f0:80:38:30:59:b4:10:15:bc:fb:fa:
da:6f:20:ca:63:92:32:e1:19:72:26:00:f6:ca:6b:4d:23:e2:
cb:d4:69:1d:f8:96:c7:e4:c8:5d:e9:21:53:cd:87:51:21:09:
93:46:95:29:08:85:17:8a:e8:b3:f4:4a:2d:40:d0:17:b6:97:
88:b1:e1:16:46:71:ae:7d:2c:7b:50:da:55:65:a7:b8:4f:36:
e6:34:a0:8b:e9:81:ae:66:fb:09:e2:e7:57:63:af:bf:c0:81:
2e:b8:25:59:40:cd:15:36:37:21:bb:d0:78:0b:19:9f:e7:3c:
45:5a:c0:8a:00:b2:b3:07:a8:e7:2d:15:6b:a6:f7:c6:d2:35:
f7:ce:82:b1:aa:b2:0a:00:43:3d:ed:50:92:cd:98:ee:b3:6a:
7d:ed:95:d8:8f:93:ac:b2:fa:07:d3:78:52:1c:8e:e2:87:b8:
21:66:7d:eb:3d:ee:83:9c:b5:ca:d1:75:19:3b:88:1e:52:e3:
1a:76:9d:f2:9b:4b:d4:fa:1c:8a:e9:df:bc:3c:74:99:08:9f:
38:0f:f2:80:09:0c:93:8d:70:2f:05:e8:63:e4:b1:b6:e1:e7:
bc:7d:4b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:36:44 2026 by rpki-client