Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
File: jTUmuzG54wxJBF9DaMYC7pi-wBo.mft (raw, json)
Hash identifier: KxHtIit890rcFHaStfm+1a4vLbs3M7y3MDtm+V40Bfo=
Subject key identifier: E5:48:81:A1:1C:20:F6:01:6C:F8:0B:43:50:A4:D6:95:37:BC:77:53
Authority key identifier: 8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
Certificate issuer: /CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Certificate serial: 019D2771B95D30112652AC2DEDE189981058
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
Manifest number: 05D5
Signing time: Thu 26 Mar 2026 00:00:57 +0000
Manifest this update: Thu 26 Mar 2026 00:00:57 +0000
Manifest next update: Fri 27 Mar 2026 00:00:57 +0000
Files and hashes: 1: gxyLL0IGyiMhhjpj3sLlr_mH5w4.roa (hash: SKKXshDDRLboHf4aa83YEQ13wtjAdxCRnTQaiwngbtU=)
2: jTUmuzG54wxJBF9DaMYC7pi-wBo.crl (hash: opmdwlR9mqJ0I1C520690yhJVbCtSWr1LSBUmskTLMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:b9:5d:30:11:26:52:ac:2d:ed:e1:89:98:10:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Validity
Not Before: Mar 26 00:00:57 2026 GMT
Not After : Mar 27 00:00:57 2026 GMT
Subject: CN=e54881a11c20f6016cf80b4350a4d69537bc7753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5f:ed:cd:33:9a:78:58:eb:61:c0:76:b6:2e:
b0:e1:d2:93:62:6f:9b:8e:73:d2:ff:52:a4:82:a8:
68:47:1f:af:a7:52:a4:5a:ac:99:89:94:3d:49:bd:
75:d8:d6:34:30:e6:c8:3f:d6:7b:3e:df:a7:f9:11:
dc:62:53:9b:b5:6e:a0:bb:91:5c:19:52:3b:a9:a2:
7e:49:fa:3f:09:5a:a8:f7:3b:55:ca:5f:8c:87:1f:
d5:9d:61:07:3b:4e:be:fe:d7:40:34:4d:4f:40:b9:
81:9f:80:d1:58:10:7f:45:b6:b3:70:de:f4:74:a0:
11:59:aa:cc:03:a7:40:5f:57:51:2d:7a:43:26:c2:
c2:67:8f:16:bd:3a:56:57:3f:46:51:ab:04:ef:06:
e0:10:01:0e:cd:e8:55:88:90:a2:ec:f5:0a:1b:53:
45:d1:99:7d:f4:00:72:5e:f2:aa:69:c9:04:35:7e:
f6:54:10:8f:3a:ee:51:66:b8:1e:94:e0:db:05:57:
1d:78:41:b8:31:91:1f:44:2f:77:fc:37:2a:65:ac:
c0:fb:32:fe:20:bc:e1:f5:fd:46:17:cd:71:d0:c0:
b4:f5:c1:12:14:e9:fb:23:b6:3a:48:28:de:34:02:
0f:8d:59:a2:0b:cc:23:dd:da:05:a5:1b:65:ff:2e:
6a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:48:81:A1:1C:20:F6:01:6C:F8:0B:43:50:A4:D6:95:37:BC:77:53
X509v3 Authority Key Identifier:
keyid:8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:11:4f:92:00:54:c4:ca:d3:6c:ba:b8:fc:f2:0e:2e:d3:54:
b8:dc:57:fd:fa:c5:e2:9a:2a:bb:3b:37:04:db:af:46:89:f6:
a1:86:7d:2b:18:f1:63:d2:5b:13:8d:aa:37:23:34:5f:bc:d8:
f4:5b:65:31:6b:b0:d1:75:d7:50:21:1d:75:47:6e:1e:5f:83:
18:50:c9:68:cb:42:23:4a:4c:4e:13:51:26:2e:42:69:bf:34:
57:1b:8c:6b:aa:00:05:f6:fb:07:0d:b4:8b:99:8b:19:5d:8e:
a8:d1:ce:5e:6d:09:f2:1b:be:bd:58:ca:53:9a:ab:45:ef:bc:
51:29:dd:7f:73:d7:e6:ac:4d:c3:d5:4e:b8:03:cb:31:a7:27:
25:7f:38:24:7a:1c:e9:9e:ee:a6:f3:76:b0:52:f5:49:a1:0c:
22:21:a8:9e:23:56:52:8a:ae:05:a7:57:a7:a1:d2:d9:be:a8:
de:c1:42:97:ed:6d:f5:6c:4a:d7:2d:58:82:7f:b1:77:1d:e2:
41:54:b9:a4:ff:1c:86:89:a7:27:87:ea:a2:a4:b9:24:54:56:
2a:89:bd:1b:19:99:79:74:22:5c:00:a4:61:41:08:7f:94:89:
bc:55:d9:db:60:26:18:36:e1:77:59:5e:c4:08:ae:0e:f9:71:
c6:a6:e9:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:19:15 2026 by rpki-client