Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: r+HTn+ZY9TUBztBl2P0HP7nmSwax6N97Y3XzLUa2FRI=
Subject key identifier: 8C:BD:80:77:21:AB:39:0E:62:F8:B4:90:12:C4:43:AB:85:F0:C3:70
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 019D27DF993C71F9F06FD76C76142144CC07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0C1B
Signing time: Thu 26 Mar 2026 02:00:58 +0000
Manifest this update: Thu 26 Mar 2026 02:00:58 +0000
Manifest next update: Fri 27 Mar 2026 02:00:58 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: S5fAiBBUN87OsoCqiFeGKb0xty0gxJ7kzJJeRucP2f4=)
2: rIbppOfNfFYdHELW2Brc9R0i8ZQ.roa (hash: 6K2aNO9ERJucL5JHeR5DeWEg9tZjVrX7Cr/llqySGJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:99:3c:71:f9:f0:6f:d7:6c:76:14:21:44:cc:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Mar 26 02:00:58 2026 GMT
Not After : Mar 27 02:00:58 2026 GMT
Subject: CN=8cbd807721ab390e62f8b49012c443ab85f0c370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:16:7f:f5:3c:6b:47:b9:ef:17:1e:b5:bc:f1:
b0:54:80:07:f5:5e:bd:47:3a:48:4c:cb:b9:42:74:
33:0f:23:36:62:44:6a:c3:e9:0b:cf:86:35:66:ba:
ed:e6:6a:ce:81:b5:91:2e:b8:f0:1c:35:30:db:a6:
90:e1:17:52:23:55:35:1f:7f:b1:e9:c0:af:ef:35:
c6:7d:05:f2:25:b3:1d:dc:23:1a:aa:53:6e:15:36:
01:a8:bf:c0:1b:7d:f7:3f:5a:27:d0:48:ab:3f:4b:
74:b4:8b:1d:db:4f:11:03:1d:ee:06:3a:33:c1:b5:
17:34:1a:97:db:d5:65:5a:09:37:89:57:d1:86:15:
93:8a:34:e9:23:19:50:28:ad:71:e0:9b:88:25:7d:
36:54:ed:09:e7:b5:ee:9a:17:ec:cb:47:2a:88:f3:
17:b4:76:37:73:34:34:ec:5d:e2:f4:36:db:e0:21:
72:4a:ad:7f:ba:9f:cc:bf:f6:a7:22:16:6d:03:c2:
95:28:48:9b:3c:17:c5:9c:aa:5c:61:b2:f0:97:36:
70:76:3a:35:86:17:70:47:bf:0e:3d:41:ad:06:92:
96:64:46:c7:79:b8:75:74:8d:1b:a6:35:93:91:ed:
d0:2c:c7:7c:8a:ae:d3:11:e5:c6:2b:49:c2:f0:8e:
ec:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:BD:80:77:21:AB:39:0E:62:F8:B4:90:12:C4:43:AB:85:F0:C3:70
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:aa:02:65:ff:7b:4f:2e:92:78:92:c3:60:4c:85:d2:c4:ed:
12:84:a3:02:4e:f2:a4:cc:9a:3d:4c:a6:66:4b:f2:cc:7c:33:
50:eb:84:1a:d2:2a:f7:94:90:4e:32:a6:75:ff:84:09:ce:11:
53:7d:ee:81:5d:7f:83:20:d0:cc:3f:62:c9:3e:9a:94:31:10:
1c:3a:c5:bf:4f:dd:ae:17:4f:6d:36:b2:2d:b1:52:aa:82:e2:
c9:49:dd:ec:5d:34:d0:6c:a1:cb:27:bd:3c:67:2b:3a:7a:1c:
11:95:33:64:30:ac:8b:fa:2f:4e:ba:b0:c6:f1:81:17:a3:20:
c6:4c:21:0f:88:3c:c7:ea:95:ee:75:17:9e:f3:b1:64:dc:8a:
4b:71:f7:38:64:64:a9:8e:bf:83:f9:79:8c:1e:30:c9:1a:ec:
02:d8:67:60:db:2c:6c:bc:2b:dd:a8:65:2a:12:9d:9d:6e:ff:
92:c8:93:65:6c:be:09:ec:8c:6d:bc:60:c5:15:d0:31:c3:5d:
ee:84:59:fd:e8:16:a1:14:fb:b4:15:41:ba:bc:a7:f0:44:37:
dc:4d:79:54:8f:42:2b:21:61:47:bf:d0:3b:59:48:56:0c:be:
88:f7:88:22:4a:3c:95:60:21:9f:a6:d1:6d:2e:3c:a9:4b:f6:
0d:5a:d6:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:40:39 2026 by rpki-client