Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: UqsI2iVaENs0UqVpSURqlL2JrQtVWfxmgxQKOqSIY8c=
Subject key identifier: 3A:AE:7B:82:29:25:2D:73:46:B5:01:A5:E0:1A:B1:A6:0D:61:86:5B
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 019E1F119B6EAB87DB38DDBF550A0CBD7832
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0C9B
Signing time: Wed 13 May 2026 02:01:48 +0000
Manifest this update: Wed 13 May 2026 02:01:48 +0000
Manifest next update: Thu 14 May 2026 02:01:48 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: EEVCJMcsLEIA/kqRB2yh3QLg+/CuelzBwIFInUMZWpE=)
2: rIbppOfNfFYdHELW2Brc9R0i8ZQ.roa (hash: 6K2aNO9ERJucL5JHeR5DeWEg9tZjVrX7Cr/llqySGJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:9b:6e:ab:87:db:38:dd:bf:55:0a:0c:bd:78:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: May 13 02:01:48 2026 GMT
Not After : May 14 02:01:48 2026 GMT
Subject: CN=3aae7b8229252d7346b501a5e01ab1a60d61865b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:13:3b:3e:d1:ad:bb:ab:6c:e8:18:ee:ae:dd:
36:62:c5:17:bd:ad:2c:9c:52:e9:38:58:ff:a6:67:
d7:43:95:87:75:10:a2:b1:cf:a5:4e:e8:cc:56:38:
d3:6d:59:b8:e4:9f:b2:cf:82:f2:e4:ef:a1:48:f6:
c6:69:98:52:79:39:c6:94:78:12:52:de:c9:ea:93:
f0:ef:15:65:d7:a3:1a:68:3e:f0:17:3c:a6:ab:e6:
1f:f2:50:70:98:02:fd:3a:d7:7e:a2:72:57:85:a1:
dc:db:bd:f4:77:7b:8f:76:08:70:99:be:a1:7d:94:
92:9a:0a:4f:55:f4:ec:d5:03:19:61:e8:a7:6c:3a:
74:3b:4f:ba:b9:52:c1:e5:35:fb:38:f4:a2:ca:16:
c8:73:29:6e:c6:a9:db:ef:f8:57:4e:f5:12:ec:b1:
7a:97:a7:e9:8d:fa:4b:58:6c:c6:29:40:2d:65:7f:
5a:ac:1d:7f:7c:67:b9:4f:cd:c9:d8:b9:4c:37:55:
6d:8f:69:c1:3a:23:95:7c:68:6f:ce:d1:a9:94:ac:
a3:8c:f4:67:3f:c6:fb:b2:91:24:4e:8e:e2:8d:13:
13:58:8c:47:3b:76:c4:4d:06:0f:fe:0f:36:82:7d:
c2:fa:25:1c:5d:aa:40:86:02:2c:7f:19:5e:67:e9:
4c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:AE:7B:82:29:25:2D:73:46:B5:01:A5:E0:1A:B1:A6:0D:61:86:5B
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:fb:bb:d5:ac:33:48:c1:19:a8:e7:96:8d:b3:c0:56:8a:f6:
d2:98:a0:a4:94:6d:a4:13:b4:43:d7:fb:c5:2b:aa:92:9b:5c:
81:14:1d:34:bc:03:34:cc:57:4b:e9:f4:bd:6f:89:96:63:5c:
81:fd:e9:e7:9d:65:94:01:e8:00:d0:60:1e:2f:40:25:b3:97:
fe:4f:af:d8:b5:73:db:1d:89:42:cb:23:ad:a7:19:69:b3:ca:
70:de:31:13:b8:07:17:36:31:37:a5:45:ee:64:42:86:d4:6b:
39:7b:d0:bc:cc:e8:36:c9:a7:31:e3:29:77:de:74:76:c6:10:
8c:3a:96:a0:ad:f2:e3:53:87:2f:aa:dd:1b:10:7f:ff:00:0b:
f3:12:c3:e4:a2:d7:a1:1c:51:2f:e1:c9:40:ce:ad:fd:58:ff:
07:7d:8b:cd:ab:c3:ab:69:7f:fa:c8:3a:81:79:fd:c9:03:51:
60:57:49:34:68:c2:6c:0c:d2:25:ba:28:21:d0:fe:79:46:3f:
6c:61:79:9a:85:69:ee:0b:95:ad:d9:05:c6:cf:1e:92:47:1a:
58:f0:3c:22:5c:9a:ec:e9:90:2c:f1:46:3f:63:4f:7c:c8:6c:
91:6f:74:fb:df:5a:77:72:6b:70:22:75:1c:fe:9d:e3:1c:b1:
1d:77:fd:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:15:42 2026 by rpki-client