Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
File: jHFLbLK61OdjmoqicQKPWqG8asI.mft (raw, json)
Hash identifier: 63dGnPg5anME1Hu0q1M5C0S+VLAxWiUlgMmDNGXXGT4=
Subject key identifier: D0:A2:75:48:96:42:E8:24:11:89:CD:04:F2:5A:48:72:61:CF:87:7D
Authority key identifier: 8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
Certificate issuer: /CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Certificate serial: 019D2928E7DB91A817036443DCF7A7225689
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
Manifest number: 0839
Signing time: Thu 26 Mar 2026 08:00:39 +0000
Manifest this update: Thu 26 Mar 2026 08:00:39 +0000
Manifest next update: Fri 27 Mar 2026 08:00:39 +0000
Files and hashes: 1: 6OOD29aIeaHAx0qgJpTJ6KDT3u0.roa (hash: 8J2WJB/VLvKQOK6i31tcBc6LXb3vL5N57PAT8PQdxP8=)
2: jHFLbLK61OdjmoqicQKPWqG8asI.crl (hash: /RhpR4RE8HxDJyJYL6zIUiwFhhx29SGDGlv5U25v4OE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:28:e7:db:91:a8:17:03:64:43:dc:f7:a7:22:56:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Validity
Not Before: Mar 26 08:00:39 2026 GMT
Not After : Mar 27 08:00:39 2026 GMT
Subject: CN=d0a275489642e8241189cd04f25a487261cf877d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:bf:1d:c4:91:94:1d:25:5d:19:6a:88:23:42:
37:c1:b4:3c:f3:f7:35:59:d1:4a:d6:18:cd:24:e7:
d1:74:ce:1c:db:8b:cf:b2:8e:34:aa:60:5e:23:05:
43:e5:ed:8b:74:fc:a0:0e:c4:29:ed:4a:92:41:ff:
e2:db:07:ba:15:66:bf:f7:2c:70:c4:7c:59:99:02:
e1:23:21:fb:a6:fe:d0:e9:ae:1c:4b:e9:32:01:46:
41:dc:22:2b:f2:f5:2c:74:b4:62:c3:f5:36:59:f5:
73:1e:cf:89:36:2c:4d:1c:25:a4:60:9e:76:e3:08:
7f:30:0d:5a:ee:f2:c7:70:d9:b2:7d:d8:9a:f1:b0:
1d:20:ff:cf:d7:70:75:bb:49:7d:c5:ae:17:1b:b4:
5f:93:d2:19:bb:93:8e:dd:49:2d:e0:a2:54:a1:50:
9e:5b:4d:bc:44:bb:4a:fb:1e:b5:91:c2:dd:8a:2b:
2d:35:1f:ca:52:00:80:ff:d7:1b:1e:2b:41:18:7b:
28:3c:6a:7c:a7:12:58:c1:94:50:8f:4e:41:e3:45:
56:16:ee:9d:19:d8:80:41:d0:01:4e:6d:a4:e3:72:
64:f2:88:4a:9f:50:a6:92:0f:95:cf:90:f7:a2:af:
bc:50:7c:46:f3:79:73:5a:93:81:41:ca:47:e7:e1:
61:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A2:75:48:96:42:E8:24:11:89:CD:04:F2:5A:48:72:61:CF:87:7D
X509v3 Authority Key Identifier:
keyid:8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:6a:98:95:19:88:ad:8d:d3:5d:95:7a:48:16:99:7e:e8:2a:
03:8d:36:80:8d:73:b1:ba:db:1b:cc:71:ea:70:d8:9d:d9:13:
38:ba:0e:8b:93:ac:e0:fa:a5:e8:0a:fb:46:24:de:18:bb:6c:
9e:73:21:95:12:78:16:3f:09:20:46:74:2e:bf:ba:f1:65:89:
70:40:f6:c2:2e:79:83:f5:c9:d3:0e:2e:52:bc:83:cd:d9:1f:
4f:c1:f9:55:f7:d4:2f:f6:3a:27:cc:38:4a:9b:d1:1e:af:52:
33:e2:21:be:8c:6f:14:4c:5b:0a:f8:5e:3c:31:5a:fb:e9:e6:
79:13:ae:22:7f:4f:fd:66:26:22:cf:11:c9:7a:d3:13:27:bc:
7a:a8:cf:be:7a:f5:f3:00:ee:ea:8c:5e:1e:9a:e6:cb:02:54:
fb:83:7e:a7:f5:3d:60:51:15:6c:81:a2:3c:65:17:18:b1:4c:
fc:59:e7:bf:1c:96:fa:f0:b2:cf:9f:0d:14:4f:c8:6f:c2:40:
74:2f:1d:97:7b:b1:5b:97:e4:e8:d7:e5:19:77:07:d8:d3:bf:
c4:b3:ec:2a:93:a9:06:e9:8f:c2:dc:c2:9d:2f:da:ea:76:9f:
6a:cf:53:fe:7c:5f:ca:09:72:af:db:70:c2:b2:d5:fa:81:50:
0f:9b:8e:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pKOfbkagXA2RD3PenIlaJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjNzE0YjZjYjJiYWQ0ZTc2MzlhOGFhMjcxMDI4ZjVhYTFi
YzZhYzIwHhcNMjYwMzI2MDgwMDM5WhcNMjYwMzI3MDgwMDM5WjAzMTEwLwYDVQQD
EyhkMGEyNzU0ODk2NDJlODI0MTE4OWNkMDRmMjVhNDg3MjYxY2Y4NzdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7r8dxJGUHSVdGWqII0I3wbQ88/c1
WdFK1hjNJOfRdM4c24vPso40qmBeIwVD5e2LdPygDsQp7UqSQf/i2we6FWa/9yxw
xHxZmQLhIyH7pv7Q6a4cS+kyAUZB3CIr8vUsdLRiw/U2WfVzHs+JNixNHCWkYJ52
4wh/MA1a7vLHcNmyfdia8bAdIP/P13B1u0l9xa4XG7Rfk9IZu5OO3Ukt4KJUoVCe
W028RLtK+x61kcLdiistNR/KUgCA/9cbHitBGHsoPGp8pxJYwZRQj05B40VWFu6d
GdiAQdABTm2k43Jk8ohKn1Cmkg+Vz5D3oq+8UHxG83lzWpOBQcpH5+FhZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNCidUiWQugkEYnNBPJaSHJhz4d9MB8GA1UdIwQY
MBaAFIxxS2yyutTnY5qKonECj1qhvGrCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8wMmE4ZDYtOTE1OC00YWViLWE3NTAt
Nzg3NTNhMTA0MjI2LzEvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS8wMmE4ZDYtOTE1OC00YWViLWE3NTAtNzg3NTNhMTA0MjI2
LzEvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADGqYlRmI
rY3TXZV6SBaZfugqA402gI1zsbrbG8xx6nDYndkTOLoOi5Os4Pql6Ar7RiTeGLts
nnMhlRJ4Fj8JIEZ0Lr+68WWJcED2wi55g/XJ0w4uUryDzdkfT8H5VffUL/Y6J8w4
SpvRHq9SM+IhvoxvFExbCvhePDFa++nmeROuIn9P/WYmIs8RyXrTEye8eqjPvnr1
8wDu6oxeHprmywJU+4N+p/U9YFEVbIGiPGUXGLFM/FnnvxyW+vCyz58NFE/Ib8JA
dC8dl3uxW5fk6NflGXcH2NO/xLPsKpOpBumPwtzCnS/a6nafas9T/nxfyglyr9tw
wrLV+oFQD5uOXA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 17:37:52 2026 by rpki-client