Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json)
Hash identifier: CzrvEN+D6szYWTLkQ6mlk/6QT7VMr4+b3nk36PW6hAQ=
Subject key identifier: 49:3E:40:9C:90:B9:89:98:31:B2:80:2F:77:43:29:E6:F7:2B:F8:7B
Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Certificate serial: 019D292997A1CB0036A73A1018E89FFE2A2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
Manifest number: 0C39
Signing time: Thu 26 Mar 2026 08:01:24 +0000
Manifest this update: Thu 26 Mar 2026 08:01:24 +0000
Manifest next update: Fri 27 Mar 2026 08:01:24 +0000
Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: FlYO4Ton6t/4+C4yQq0duKD4rDaydkbhTUXO4Sjncw0=)
2: mcYH2WbtharfS1cKE4nDVc9cSUQ.roa (hash: 6NNnIl4fnOkglhpxTOXbgmIwZY5zvuF1yTHWpVT47EM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:97:a1:cb:00:36:a7:3a:10:18:e8:9f:fe:2a:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Validity
Not Before: Mar 26 08:01:24 2026 GMT
Not After : Mar 27 08:01:24 2026 GMT
Subject: CN=493e409c90b9899831b2802f774329e6f72bf87b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e5:90:0c:59:e2:0b:6b:ad:2b:16:47:bc:13:
f8:46:3d:74:19:3b:75:bf:eb:d1:3f:fe:d2:54:87:
6f:0e:84:30:0a:d1:40:50:a6:d1:0b:f8:df:6d:e8:
fa:30:85:f3:aa:be:b9:f9:a3:5c:ac:1c:a2:83:68:
82:cb:83:c5:45:6d:c4:d8:f7:7c:ba:72:26:52:c8:
04:69:c9:2a:56:7d:04:80:63:bd:4e:a0:50:d1:0b:
fe:0b:93:40:47:b3:00:56:6d:d8:57:ea:99:f6:af:
da:a6:08:6c:33:a1:7d:03:9f:a9:b4:0d:b3:e4:91:
47:31:6f:0b:fd:bb:25:3f:f7:2d:07:90:e8:35:46:
32:c5:86:62:0c:dd:20:e0:54:12:50:05:89:a1:4a:
71:f3:3a:2b:43:52:f5:56:33:e4:c3:67:ca:fb:35:
5d:59:92:9a:c0:99:c1:5f:e0:cc:40:e8:8e:26:6d:
25:95:63:a2:88:20:83:95:43:37:6d:f2:d1:95:8e:
b6:36:b5:09:7f:d2:d2:1b:15:bb:65:30:32:24:f3:
d9:63:04:b2:1a:25:6e:f6:f2:ec:f9:48:c6:62:2c:
61:b0:9f:31:60:f9:29:e2:c7:ad:5c:42:77:4f:d8:
f4:71:13:b4:ec:15:ae:bf:f9:9c:05:ef:3f:64:3c:
d0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3E:40:9C:90:B9:89:98:31:B2:80:2F:77:43:29:E6:F7:2B:F8:7B
X509v3 Authority Key Identifier:
keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:c3:5c:55:f5:48:9d:52:da:7f:5a:c9:0a:9b:e5:35:6d:c9:
7a:d6:0b:ae:94:7e:c6:82:9c:fe:d6:43:90:a4:65:ce:f4:81:
54:6c:7d:f8:6e:42:40:04:19:1c:da:7a:e3:bf:b4:db:97:3c:
24:f8:0d:4c:61:7f:3a:df:43:cf:8f:1f:1c:59:c4:0b:ec:0a:
09:b7:b8:2b:ee:f7:3b:4a:52:b3:1c:61:a0:fc:42:19:e1:c4:
8b:98:70:c8:72:b1:45:33:79:f9:62:ad:1e:4d:78:e6:88:1c:
15:d4:ab:c6:8b:54:91:b3:48:c9:0c:61:0c:f3:e4:c3:84:08:
21:3b:4b:86:41:d0:73:9b:e9:79:35:7d:84:0e:23:56:95:57:
02:74:9f:5b:ea:0e:aa:c5:41:98:6f:00:d9:d4:80:ab:f5:8b:
44:cd:c9:1f:f4:76:bd:f9:5e:38:af:72:b3:16:fc:dc:fd:24:
07:09:f3:b5:83:d9:29:55:ea:a0:51:fb:9b:e3:03:e5:ec:01:
46:88:7e:ce:d6:85:64:4d:c0:80:f6:3b:84:82:9b:03:42:66:
47:9d:50:3c:32:30:51:fb:ac:46:4e:1d:42:3b:c5:aa:a2:79:
b0:12:30:1c:8d:88:20:f4:1a:14:a5:ed:a6:10:c8:db:7c:e1:
fc:5c:d7:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pKZehywA2pzoQGOif/ioqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0YTlkODRjNmQxNmMwODMwOTNjMzM3MWI0NTc1ZDM2ZWY0
NDhmZTQwHhcNMjYwMzI2MDgwMTI0WhcNMjYwMzI3MDgwMTI0WjAzMTEwLwYDVQQD
Eyg0OTNlNDA5YzkwYjk4OTk4MzFiMjgwMmY3NzQzMjllNmY3MmJmODdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3OWQDFniC2utKxZHvBP4Rj10GTt1
v+vRP/7SVIdvDoQwCtFAUKbRC/jfbej6MIXzqr65+aNcrByig2iCy4PFRW3E2Pd8
unImUsgEackqVn0EgGO9TqBQ0Qv+C5NAR7MAVm3YV+qZ9q/apghsM6F9A5+ptA2z
5JFHMW8L/bslP/ctB5DoNUYyxYZiDN0g4FQSUAWJoUpx8zorQ1L1VjPkw2fK+zVd
WZKawJnBX+DMQOiOJm0llWOiiCCDlUM3bfLRlY62NrUJf9LSGxW7ZTAyJPPZYwSy
GiVu9vLs+UjGYixhsJ8xYPkp4setXEJ3T9j0cRO07BWuv/mcBe8/ZDzQdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEk+QJyQuYmYMbKAL3dDKeb3K/h7MB8GA1UdIwQY
MBaAFCSp2ExtFsCDCTwzcbRXXTbvRI/kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSktuWVRHMFd3SU1KUEROeHRGZGROdTlFai1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8wNWNhMWQtYzM1Ny00OGJjLTk2MDkt
NDVhNTM0ZjIyMmY0LzEvSktuWVRHMFd3SU1KUEROeHRGZGROdTlFai1RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS8wNWNhMWQtYzM1Ny00OGJjLTk2MDktNDVhNTM0ZjIyMmY0
LzEvSktuWVRHMFd3SU1KUEROeHRGZGROdTlFai1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJMNcVfVI
nVLaf1rJCpvlNW3JetYLrpR+xoKc/tZDkKRlzvSBVGx9+G5CQAQZHNp647+025c8
JPgNTGF/Ot9Dz48fHFnEC+wKCbe4K+73O0pSsxxhoPxCGeHEi5hwyHKxRTN5+WKt
Hk145ogcFdSrxotUkbNIyQxhDPPkw4QIITtLhkHQc5vpeTV9hA4jVpVXAnSfW+oO
qsVBmG8A2dSAq/WLRM3JH/R2vfleOK9ysxb83P0kBwnztYPZKVXqoFH7m+MD5ewB
Roh+ztaFZE3AgPY7hIKbA0JmR51QPDIwUfusRk4dQjvFqqJ5sBIwHI2IIPQaFKXt
phDI23zh/FzXlQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:17:12 2026 by rpki-client