Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.mft
File: jZwH5-jehYsuaBPQD5s5kt9Tgn8.mft (raw, json)
Hash identifier: FFtcZX0Pb/3xEeB28Qt7fzXF9isIeQdJA/qU6B4YIQ0=
Subject key identifier: 9A:1B:9A:E1:BB:5E:69:CB:66:4B:BB:98:5A:BA:02:DF:DD:D1:1E:BB
Authority key identifier: 8D:9C:07:E7:E8:DE:85:8B:2E:68:13:D0:0F:9B:39:92:DF:53:82:7F
Certificate issuer: /CN=8d9c07e7e8de858b2e6813d00f9b3992df53827f
Certificate serial: 019D27A93BA4FF6312921A82CBD0DD9B3864
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jZwH5-jehYsuaBPQD5s5kt9Tgn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.mft
Manifest number: 06BD
Signing time: Thu 26 Mar 2026 01:01:35 +0000
Manifest this update: Thu 26 Mar 2026 01:01:35 +0000
Manifest next update: Fri 27 Mar 2026 01:01:35 +0000
Files and hashes: 1: jZwH5-jehYsuaBPQD5s5kt9Tgn8.crl (hash: 4+NOSvUqM1un5u8BhLDfGfuhmqyCoQx2PL1spYIitgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.mft
rsync://rpki.ripe.net/repository/DEFAULT/jZwH5-jehYsuaBPQD5s5kt9Tgn8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:3b:a4:ff:63:12:92:1a:82:cb:d0:dd:9b:38:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d9c07e7e8de858b2e6813d00f9b3992df53827f
Validity
Not Before: Mar 26 01:01:35 2026 GMT
Not After : Mar 27 01:01:35 2026 GMT
Subject: CN=9a1b9ae1bb5e69cb664bbb985aba02dfddd11ebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ed:a0:b4:7f:0e:fd:dc:fa:d0:23:1a:6a:f3:
e9:70:cd:bb:0b:c1:a5:63:4c:c3:8a:fe:9c:1a:6c:
6d:08:03:e9:7f:64:ec:d6:7c:e8:dc:dd:73:6a:9e:
c3:d2:17:5e:c2:71:5d:03:72:c7:1f:34:c4:44:25:
12:a3:ed:b3:0a:3f:39:74:86:3f:0c:d6:7f:02:79:
c6:64:47:22:a6:0d:4d:01:23:32:20:1f:9f:c8:45:
e8:1d:1f:52:ae:34:e3:dc:ca:c8:27:fd:47:8b:87:
78:55:97:ee:a3:e0:ac:65:ef:ac:c7:58:97:53:d6:
60:11:30:1c:d8:e5:eb:c8:f4:cc:f7:4a:e0:d2:1c:
c2:c7:88:a5:60:42:4a:28:b5:da:68:0a:1f:25:14:
6b:c9:a4:2a:10:af:5a:b6:dc:a4:c3:45:71:1d:29:
1c:9a:64:c0:90:fa:f0:46:32:05:82:83:7e:f0:39:
00:32:17:46:4e:bd:1f:ea:0e:ce:53:83:cc:6a:93:
2a:26:f6:69:7c:9c:24:05:69:36:40:d6:17:69:81:
ee:25:75:f4:35:c4:66:80:30:87:1e:90:90:e3:bd:
77:d1:ae:03:5f:aa:51:1f:52:d2:34:24:79:c3:ee:
2a:e0:a8:c5:77:05:ff:51:df:86:bb:7a:1a:fb:ab:
74:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:1B:9A:E1:BB:5E:69:CB:66:4B:BB:98:5A:BA:02:DF:DD:D1:1E:BB
X509v3 Authority Key Identifier:
keyid:8D:9C:07:E7:E8:DE:85:8B:2E:68:13:D0:0F:9B:39:92:DF:53:82:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jZwH5-jehYsuaBPQD5s5kt9Tgn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:53:91:36:61:1a:df:39:c4:f2:cd:27:ea:5f:f8:2e:f4:1d:
48:d5:a9:09:d7:44:6a:95:95:43:ef:3a:f2:db:17:07:95:a9:
18:00:e0:d0:ab:e4:98:69:ed:6e:72:13:f5:c5:66:ac:c1:ef:
69:b2:30:8e:66:ec:9c:8c:f1:44:5e:a4:93:b0:de:8e:6f:ed:
74:97:a9:0f:46:c4:75:5f:1b:c5:20:17:7a:fc:76:f5:aa:3a:
1d:4d:99:54:76:6a:98:aa:21:ac:10:ec:43:f2:a6:e2:0b:9f:
30:7f:3f:d0:73:9d:b6:d9:03:71:c6:5f:d8:ef:d3:10:85:b2:
24:31:08:ae:3a:2c:0c:e2:49:cc:43:34:d6:fd:69:33:78:7d:
b9:15:67:76:bc:9e:c3:74:b5:3f:2b:df:4e:6a:1d:32:40:f0:
f1:b9:27:7c:26:2a:83:f4:55:2c:41:51:d8:11:b9:67:d6:88:
5e:2c:af:4d:4b:f4:36:01:50:5c:50:a7:ea:b9:b3:52:40:16:
62:75:b1:24:c1:b7:14:fd:9f:02:25:80:db:87:5c:75:34:cb:
3d:ae:a9:32:2a:26:44:14:94:ae:5f:d7:79:fc:85:0e:be:61:
39:4b:ba:d4:d5:95:55:98:00:96:aa:1c:b6:2e:85:fb:0a:10:
88:36:7a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:30:21 2026 by rpki-client