Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
File: jzztMLKFLlUseDdGcAPxdepZ3nM.mft (raw, json)
Hash identifier: ykYgJxwzfNDLdJHLJPqKTdwo1kCMVL+gm3SnwH9f514=
Subject key identifier: 5D:A7:06:6A:86:FE:99:AA:A0:65:5E:87:4C:83:21:22:1D:B2:23:3C
Authority key identifier: 8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73
Certificate issuer: /CN=8f3ced30b2852e552c7837467003f175ea59de73
Certificate serial: 019D2A3C526E9DDD06585073C33B4D2023CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
Manifest number: 0D90
Signing time: Thu 26 Mar 2026 13:01:29 +0000
Manifest this update: Thu 26 Mar 2026 13:01:29 +0000
Manifest next update: Fri 27 Mar 2026 13:01:29 +0000
Files and hashes: 1: dYEcB0f0ECVLwob9ASY-Vl-cNiE.roa (hash: X1YBtggX7sXN/XI659Z7sShfySUKcJ9Z3YnMpVPGY7o=)
2: jzztMLKFLlUseDdGcAPxdepZ3nM.crl (hash: EscPx500Ap7cb15Xk3XJ+VaK2yIZXp98vUqOYuB0oww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3c:52:6e:9d:dd:06:58:50:73:c3:3b:4d:20:23:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3ced30b2852e552c7837467003f175ea59de73
Validity
Not Before: Mar 26 13:01:29 2026 GMT
Not After : Mar 27 13:01:29 2026 GMT
Subject: CN=5da7066a86fe99aaa0655e874c8321221db2233c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ef:dd:21:a3:ed:9f:aa:9b:ae:2b:1b:98:d0:
12:2d:5d:c6:1d:74:04:82:4a:4a:0d:97:ff:bd:18:
c1:b8:a6:17:ae:a1:4f:18:e0:4b:44:f3:67:3f:c1:
0c:ab:a4:5e:b4:08:e6:29:e6:5a:86:9e:09:62:2d:
ce:4d:b6:16:6f:a9:08:82:bd:90:a5:f1:80:73:18:
dc:75:75:fc:6b:58:69:ab:be:44:1e:50:33:b6:72:
9c:7d:ed:77:43:73:94:0f:11:2a:6e:82:6f:17:80:
f1:a4:80:bd:1e:1e:bb:14:d2:d1:ef:84:66:42:88:
23:2c:46:15:c6:7c:29:eb:b9:f8:15:13:83:a6:ea:
8d:fa:7a:d6:7d:9f:87:b6:80:66:1c:41:69:59:4d:
e9:af:53:8a:89:ab:13:22:b1:2b:87:14:7a:d3:a2:
e3:19:86:19:71:ae:41:7d:9b:d3:38:8f:e0:bf:c3:
ae:69:6a:97:f5:39:1e:c6:8f:35:cd:6b:ff:c0:d4:
2d:99:b0:43:75:91:92:cb:23:cc:28:55:51:a5:67:
1a:f6:f9:30:7a:bf:ba:95:f5:d9:9c:ae:d6:2c:39:
07:87:b3:a3:42:f4:9f:be:e3:18:ec:c5:99:db:c0:
78:9e:ce:eb:be:b3:2e:94:e1:85:81:c7:6f:ca:a7:
61:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:A7:06:6A:86:FE:99:AA:A0:65:5E:87:4C:83:21:22:1D:B2:23:3C
X509v3 Authority Key Identifier:
keyid:8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:b5:2d:9d:c6:68:b0:fb:00:78:5a:68:63:cf:47:67:87:c1:
6b:ea:d0:0b:c9:0d:b6:bb:3d:00:a2:9c:84:ce:93:6a:a9:11:
40:37:04:3d:ef:6c:b4:49:03:1f:bf:51:59:c2:b9:5a:ef:53:
68:8e:d5:3b:b0:ce:4b:40:bc:03:e4:cf:9f:24:9d:ab:96:cd:
e2:8c:6b:06:8f:bb:8d:7a:68:80:b7:9d:8d:c2:73:00:46:37:
bf:9f:b6:ff:29:8e:9b:45:64:5c:17:f0:a4:91:e5:72:3b:1a:
74:83:4b:e2:39:e3:2e:01:e1:e4:80:7d:a7:76:1a:26:49:dd:
dd:eb:19:16:77:57:c3:c4:31:27:b4:7d:72:d2:49:ed:f1:66:
af:2e:e2:84:19:a3:f9:cb:64:ef:28:c1:4c:46:a2:a1:6a:c1:
64:f2:c3:65:f2:4d:92:91:18:f3:e3:b3:b1:54:45:c1:08:03:
cb:08:9a:e8:5a:b5:63:12:5e:fd:62:7d:07:0d:8e:e3:4a:9d:
e6:b6:8a:44:2c:dc:4e:41:77:97:95:de:f6:0d:ac:a9:e9:e2:
df:2b:d4:66:9f:02:d2:6d:1d:25:1d:19:83:cb:c8:63:24:c0:
05:ec:dc:3a:90:1c:1d:e9:28:9d:ae:49:67:b4:17:32:82:ca:
c2:f9:77:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:50:33 2026 by rpki-client