Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft
File: jmOEMlhq5gL_Datn0JsZUVJOggU.mft (raw, json)
Hash identifier: 1dILD/C227E3I9KzJyR8YmopubYnU//shFef2jHep9Q=
Subject key identifier: 3B:4C:AE:96:3E:E9:91:21:27:D1:D6:A8:87:E9:E3:E4:70:6A:F8:17
Authority key identifier: 8E:63:84:32:58:6A:E6:02:FF:0D:AB:67:D0:9B:19:51:52:4E:82:05
Certificate issuer: /CN=8e638432586ae602ff0dab67d09b1951524e8205
Certificate serial: 019D284D88A1BAA8ED3AA49D101446F4A24F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft
Manifest number: 02AA
Signing time: Thu 26 Mar 2026 04:01:03 +0000
Manifest this update: Thu 26 Mar 2026 04:01:03 +0000
Manifest next update: Fri 27 Mar 2026 04:01:03 +0000
Files and hashes: 1: U6fyPIg5ovdf3i2qfPC2WuuXRmU.roa (hash: 51JfirD5ph0Mlaqz0ZFat9LDvr0NCB5fGDpKtCYppz0=)
2: jmOEMlhq5gL_Datn0JsZUVJOggU.crl (hash: UnXjKt7wK4BlqArafzcs9Q7Stqk2HvQ6F+265CQ1unQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft
rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:88:a1:ba:a8:ed:3a:a4:9d:10:14:46:f4:a2:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e638432586ae602ff0dab67d09b1951524e8205
Validity
Not Before: Mar 26 04:01:03 2026 GMT
Not After : Mar 27 04:01:03 2026 GMT
Subject: CN=3b4cae963ee9912127d1d6a887e9e3e4706af817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1a:8f:5d:a1:78:a3:cb:1d:54:bc:4d:31:a0:
6b:52:43:5b:8e:38:b0:f9:c9:a0:ab:b1:f5:e9:a4:
6a:81:b0:28:09:aa:03:d1:be:57:27:bb:94:db:ce:
41:bc:c5:3f:1d:4e:ac:ce:da:e1:2e:cd:e4:25:4d:
f9:a2:94:e6:6e:86:4c:80:05:42:b6:15:a6:85:c5:
4a:e6:75:ac:b1:ff:7a:a0:85:5c:8d:0a:2c:cd:dc:
27:a3:f1:46:cc:fd:4d:53:4c:cc:2c:e9:54:86:e3:
b9:78:9c:06:e3:a0:45:3b:93:b3:67:a0:ca:cf:c6:
04:3b:77:20:4e:37:34:27:6f:e4:8c:84:af:ca:41:
01:ac:78:3c:74:e7:de:3b:44:8e:d1:81:95:04:a8:
67:d3:d2:af:d2:ce:0c:ff:96:79:5a:cc:0f:fc:36:
2d:d0:27:a9:8a:98:34:a8:23:2e:3f:8c:73:4a:86:
c8:bb:7a:af:d8:b2:6e:d7:b1:1f:b9:c1:d4:fc:ed:
9a:5c:4c:94:cf:86:21:57:d8:08:83:28:f8:b5:90:
ab:6d:ea:47:85:7f:61:31:b0:a2:4b:99:f1:d5:f3:
76:21:57:ab:d9:c2:97:55:30:e6:c1:2c:f8:42:c2:
3b:a2:44:58:97:3b:88:f6:b4:65:3b:16:57:ae:4e:
40:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:4C:AE:96:3E:E9:91:21:27:D1:D6:A8:87:E9:E3:E4:70:6A:F8:17
X509v3 Authority Key Identifier:
keyid:8E:63:84:32:58:6A:E6:02:FF:0D:AB:67:D0:9B:19:51:52:4E:82:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:e3:ab:64:c6:0f:a7:57:89:3b:44:57:0d:cd:67:56:43:9c:
0f:22:0f:4c:32:57:fe:bc:f8:d3:69:5d:66:24:5f:09:2c:70:
d4:72:8b:53:67:fc:33:d3:fe:64:c1:12:9a:37:b8:fc:20:31:
82:79:49:8c:a9:b8:94:93:83:b7:94:e4:ee:ee:51:cd:f7:08:
c6:b0:2e:f0:07:7f:79:68:e4:9a:8b:95:a1:73:88:c0:38:77:
b1:ad:05:19:c1:c4:6a:0e:92:03:95:d4:c0:e3:6a:24:1f:ae:
f3:ab:e0:1d:8c:6f:ae:e8:99:b3:c9:c9:f8:34:a2:d4:7f:2d:
ce:7e:2b:01:08:f5:6d:eb:cb:a5:63:8f:c2:1f:0f:f0:38:87:
bf:cb:ce:18:f6:16:ec:fb:0b:20:b1:24:89:ff:5b:4a:9c:de:
35:45:dd:65:0f:20:88:8c:5d:07:95:42:ab:c1:4f:fe:ad:38:
b8:ca:2b:77:58:17:de:ab:83:7a:35:04:a0:af:c4:59:cc:1b:
8d:00:e9:c9:ab:ea:8f:e2:2a:29:35:14:e6:ef:ef:4c:d9:6e:
9c:13:b4:38:dc:a4:a0:9e:3b:30:b2:28:dd:00:25:9f:86:61:
07:e6:a6:84:78:65:fe:36:a3:30:e9:da:02:f6:bd:f2:30:63:
d8:eb:50:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:25:28 2026 by rpki-client