Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
File: JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft (raw, json)
Hash identifier: jn9x44oQ7+mCREj3b05BNqEU1MWNxGaq4BsA8TXrTCc=
Subject key identifier: BF:08:11:A9:C0:BC:EC:AB:74:B6:92:32:54:23:7B:AA:2B:7D:F6:2F
Authority key identifier: 24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92
Certificate issuer: /CN=24bc98ddeefdb561aa69eca7349060d84059e192
Certificate serial: 019E1ED9C2BCCB3EAAED043A3D3A0F4D5F05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
Manifest number: 0795
Signing time: Wed 13 May 2026 01:00:48 +0000
Manifest this update: Wed 13 May 2026 01:00:48 +0000
Manifest next update: Thu 14 May 2026 01:00:48 +0000
Files and hashes: 1: JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl (hash: JVASkG5IQP0ogjNuJMpbdakCt0o2vLQrIGNKy/kIBH0=)
2: pCSMBqmn-2xkRzGOrRbDhgjt1ZQ.roa (hash: qEIf3vrVO3maTFTQZWMGFxBk+5hFDaz1/E5BMr9cl+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:c2:bc:cb:3e:aa:ed:04:3a:3d:3a:0f:4d:5f:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24bc98ddeefdb561aa69eca7349060d84059e192
Validity
Not Before: May 13 01:00:48 2026 GMT
Not After : May 14 01:00:48 2026 GMT
Subject: CN=bf0811a9c0bcecab74b6923254237baa2b7df62f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:51:f1:6d:3c:ee:60:35:a7:78:0b:46:55:42:
f3:f3:ee:55:d7:ec:33:c2:2f:09:55:81:e1:50:bb:
f9:35:ee:74:2b:7e:5d:2d:1e:a0:8a:8d:fc:1f:d5:
46:65:2e:cd:c4:2c:54:c1:44:f2:e8:b6:ee:e6:73:
9e:e7:e4:eb:1f:50:04:1d:58:ed:54:58:92:7f:f3:
51:90:8b:8f:01:4b:3b:fe:c3:b8:53:29:85:2b:93:
18:df:59:a0:96:ce:6d:a6:c4:28:47:7d:b4:57:2e:
52:26:b9:fd:cd:c3:29:3e:5e:74:99:63:9d:83:52:
4e:64:cd:c9:3d:aa:e4:1a:da:5b:ff:6c:1b:ac:36:
b4:a9:96:1b:54:9b:81:10:d0:4e:95:e5:93:10:fa:
a0:a1:67:c0:86:86:93:ed:d0:6d:6f:56:00:48:25:
0c:d1:4f:b0:60:2f:23:84:03:e7:3d:ea:dd:45:82:
36:8d:f8:8e:9b:8b:57:10:b7:9b:af:0d:2d:1a:33:
c8:77:63:d3:40:84:93:30:ff:2e:f1:56:43:3a:08:
e4:36:75:8b:ca:5f:2b:a3:28:f6:3b:b3:a2:12:a0:
92:ba:7a:9a:af:1e:04:37:93:24:21:95:b0:38:46:
75:95:5b:17:33:c4:2b:8b:f9:48:0f:e2:1f:dd:52:
24:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:08:11:A9:C0:BC:EC:AB:74:B6:92:32:54:23:7B:AA:2B:7D:F6:2F
X509v3 Authority Key Identifier:
keyid:24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:8f:1b:2f:7f:3a:df:0e:85:58:7f:68:4a:4f:e5:1d:f0:2b:
a1:00:10:29:20:a1:e6:ba:04:44:a6:e1:1c:12:82:bc:7b:e1:
eb:d2:89:39:e3:ff:a0:ab:fa:77:88:69:43:a1:fa:c7:5d:fd:
80:eb:57:9c:1b:0a:9e:73:10:7b:34:3f:7d:11:aa:f4:5a:d2:
df:08:75:a8:a8:50:12:67:2e:c1:c3:c5:db:fc:eb:21:fe:b7:
e1:ca:96:6d:40:14:af:a5:2c:92:b7:dc:32:7d:e0:07:6e:16:
d7:7f:07:ca:3d:73:76:8f:94:25:be:7c:0d:ff:8d:c1:f2:a5:
5e:7d:68:22:a0:16:d0:63:fb:ba:13:c0:a2:ce:16:d4:d3:62:
1d:7a:8f:53:1c:23:fc:e1:02:c8:49:8b:fb:75:7e:9a:9b:a0:
77:70:7b:0f:2e:24:81:1e:95:55:c0:47:af:cf:a4:b3:71:c7:
48:ba:f7:e9:3a:7d:8b:3b:94:78:0d:12:79:ff:70:ec:a2:46:
31:4c:72:6c:00:31:fd:64:7b:4e:d9:c3:e6:ed:22:0b:12:19:
23:9d:4e:41:23:ec:25:de:ee:6b:72:be:76:3b:a5:68:22:bb:
52:5e:ee:b0:26:47:a0:cc:5d:4f:42:ad:82:a3:2c:92:2f:8a:
a1:6a:f0:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:46:25 2026 by rpki-client