Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft
File: jmcNnjgoGVjuocw46s67vcM4HTY.mft (raw, json)
Hash identifier: 3RY4rn95RYlnkzm4SjF2WXxuZ90IqD1ZsFFSduLmqa8=
Subject key identifier: E3:30:41:49:7A:21:82:5F:77:80:CD:79:05:2C:95:0A:3F:AC:A2:85
Authority key identifier: 8E:67:0D:9E:38:28:19:58:EE:A1:CC:38:EA:CE:BB:BD:C3:38:1D:36
Certificate issuer: /CN=8e670d9e38281958eea1cc38eacebbbdc3381d36
Certificate serial: 019D2703F9748B224B179D7E14308634C2F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmcNnjgoGVjuocw46s67vcM4HTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft
Manifest number: 0D60
Signing time: Wed 25 Mar 2026 22:01:04 +0000
Manifest this update: Wed 25 Mar 2026 22:01:04 +0000
Manifest next update: Thu 26 Mar 2026 22:01:04 +0000
Files and hashes: 1: jmcNnjgoGVjuocw46s67vcM4HTY.crl (hash: SWLFYTZ3Y/5MM+ubzoNDhdetEP5O2mchikADR4Wgafw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/jmcNnjgoGVjuocw46s67vcM4HTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:f9:74:8b:22:4b:17:9d:7e:14:30:86:34:c2:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e670d9e38281958eea1cc38eacebbbdc3381d36
Validity
Not Before: Mar 25 22:01:04 2026 GMT
Not After : Mar 26 22:01:04 2026 GMT
Subject: CN=e33041497a21825f7780cd79052c950a3faca285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:78:f5:1a:cf:6f:52:93:6e:e6:61:d2:20:57:
c3:92:ab:07:11:8e:28:a9:49:31:c9:81:16:32:3c:
7f:53:cb:6d:92:db:54:07:90:bf:02:3a:3e:26:f4:
22:f4:05:b9:71:1c:9e:dd:2c:f5:21:6c:c6:aa:b2:
8f:8e:f1:53:35:40:59:98:44:d3:10:e6:ba:8e:9b:
94:54:c2:e4:c5:3d:c0:dd:53:20:c4:51:3b:70:c7:
75:f6:59:ac:82:87:ca:13:e1:d8:04:ca:c0:be:9f:
c3:99:38:6a:14:c2:3d:04:9f:60:4c:d4:9e:2b:63:
7b:ce:29:fb:23:75:52:c7:09:57:52:1b:9f:c9:d7:
65:24:55:e6:49:a5:a6:87:20:c3:2b:86:ef:b2:fa:
c4:07:8b:38:e0:f0:b2:13:09:0f:53:0a:c4:5a:08:
63:90:ad:58:9a:26:cf:c8:b4:e2:4b:5c:b9:39:08:
58:75:3e:f6:3b:63:2d:a0:95:fc:2c:f0:8e:fa:43:
bc:b8:ee:df:38:b8:b1:7b:58:09:38:ee:63:e4:bf:
4f:9e:bc:ec:c0:16:1b:29:cb:7b:7b:ea:10:0a:2d:
1e:3f:f7:28:f7:7d:6f:7b:c3:1e:13:2b:2a:f0:31:
87:64:42:41:4c:64:f1:7f:d1:fa:47:2c:43:95:7b:
71:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:30:41:49:7A:21:82:5F:77:80:CD:79:05:2C:95:0A:3F:AC:A2:85
X509v3 Authority Key Identifier:
keyid:8E:67:0D:9E:38:28:19:58:EE:A1:CC:38:EA:CE:BB:BD:C3:38:1D:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmcNnjgoGVjuocw46s67vcM4HTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:e5:1b:96:c0:b6:ca:b6:66:6b:7d:35:6a:a9:d3:0a:55:3c:
17:59:50:e8:93:09:ad:c3:11:6d:5f:b2:1c:46:64:77:46:86:
22:a9:52:f6:a0:fa:22:f2:4c:cd:fc:44:35:2d:00:d9:f2:4d:
2c:61:f6:d2:ae:84:c1:58:f2:dc:c7:9d:36:c6:93:b7:a8:99:
a8:fc:7e:ee:5b:90:e0:53:81:4e:b0:c1:06:4f:fa:87:9b:e4:
50:07:a3:a6:d7:bd:7a:b4:ea:5f:0c:4f:96:9b:52:09:80:e9:
bc:d1:c6:6c:0d:99:90:2a:95:9b:40:35:f8:3d:30:41:7a:6e:
fe:3a:af:b5:f5:a8:fd:07:b2:93:32:35:48:48:56:4e:5e:aa:
dd:42:b2:da:b1:32:fe:d2:df:c3:cf:57:e1:22:f6:62:09:42:
1b:53:f9:9a:d2:09:b8:1d:78:f5:57:c9:34:9d:ca:5b:ae:83:
e7:30:48:fe:07:ba:a7:78:a6:da:4c:4f:62:65:1e:04:2b:ee:
0a:e7:67:3e:63:a0:e3:ba:7a:34:6a:5b:43:07:01:69:16:bc:
0c:da:36:1d:46:97:46:5d:38:38:53:48:91:51:01:3b:c2:14:
47:95:22:9f:c1:13:c6:e3:76:a7:9c:e8:43:d5:f4:9b:52:84:
3e:65:34:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:31:31 2026 by rpki-client