Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
File: JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft (raw, json)
Hash identifier: Qm9VMLFFu56m3O+TB562pjq+YnkhtWKMX3eIMiW0zv8=
Subject key identifier: E0:0E:78:AA:21:03:68:DF:C3:1B:12:92:9B:D4:3C:E2:49:D4:75:A3
Authority key identifier: 24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92
Certificate issuer: /CN=24bc98ddeefdb561aa69eca7349060d84059e192
Certificate serial: 019D27A937080A5766E34A5CF04A799D724A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
Manifest number: 0715
Signing time: Thu 26 Mar 2026 01:01:34 +0000
Manifest this update: Thu 26 Mar 2026 01:01:34 +0000
Manifest next update: Fri 27 Mar 2026 01:01:34 +0000
Files and hashes: 1: JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl (hash: Z76Ld0ODU6J+O/Jmv2PsMSUKWS0cPNPtUdW/09xyg/Y=)
2: pCSMBqmn-2xkRzGOrRbDhgjt1ZQ.roa (hash: qEIf3vrVO3maTFTQZWMGFxBk+5hFDaz1/E5BMr9cl+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:37:08:0a:57:66:e3:4a:5c:f0:4a:79:9d:72:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24bc98ddeefdb561aa69eca7349060d84059e192
Validity
Not Before: Mar 26 01:01:34 2026 GMT
Not After : Mar 27 01:01:34 2026 GMT
Subject: CN=e00e78aa210368dfc31b12929bd43ce249d475a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:21:18:f5:a6:c2:ea:e5:00:af:e6:14:41:41:
f5:34:99:6d:a3:5f:52:a2:84:b6:95:58:64:3d:ca:
34:60:c9:4d:e9:58:6a:a1:2b:8f:d9:d3:b3:21:02:
30:e4:dc:35:80:9a:dc:bb:15:00:01:cd:cc:43:df:
57:87:f3:38:3f:66:09:b8:8d:38:9e:70:ce:73:81:
92:6f:16:05:29:c6:16:01:20:26:69:1d:1c:72:c0:
a9:f9:f1:59:8c:39:c9:df:6c:e4:ae:04:e9:eb:35:
cd:88:ba:58:3c:7d:fa:b6:c0:0e:10:5e:25:4d:fa:
62:20:d2:b3:79:22:d9:5a:c6:52:ef:b4:1f:16:bc:
e8:22:33:0e:92:23:72:15:37:70:42:e1:da:cc:d8:
00:8c:a3:89:a0:c3:d9:20:22:da:79:6d:48:91:6b:
be:2b:71:19:32:e3:00:8f:27:12:10:e6:29:66:cc:
dd:69:21:09:96:8e:a3:bf:b2:c5:a5:7c:a6:03:ec:
11:50:54:61:32:8c:7f:15:04:1e:bd:85:6b:cf:f6:
c4:50:34:a8:ba:9d:ec:f9:43:27:95:b2:5e:3e:a8:
91:9e:48:e2:b6:9c:36:4f:a9:e3:f0:47:c4:f1:2a:
a9:c0:d3:d9:72:17:db:5f:b8:6e:f9:59:b2:95:14:
a3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0E:78:AA:21:03:68:DF:C3:1B:12:92:9B:D4:3C:E2:49:D4:75:A3
X509v3 Authority Key Identifier:
keyid:24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:4e:40:5e:de:72:f3:01:97:06:d6:b5:37:53:2f:50:14:a3:
ea:f7:2d:f4:00:05:a4:9f:1c:62:6a:e9:0f:77:58:80:08:12:
88:e6:25:81:7a:21:94:e5:1b:cd:99:ad:11:af:a5:1e:78:de:
c7:3c:88:40:cf:5d:bc:94:54:6d:82:2c:4b:b0:1a:20:31:e5:
81:78:72:ae:26:46:13:c4:7e:70:b0:47:b9:4f:40:27:99:f0:
fd:89:df:6f:36:9b:ea:36:a6:02:e2:91:f4:e8:05:09:38:04:
f8:27:c4:c5:5f:83:9e:85:53:1f:b3:f9:c6:fe:b0:86:7a:42:
53:5d:8c:f0:ea:b8:78:34:17:c0:0f:bc:8f:c9:de:65:fd:e2:
02:5d:b3:26:93:0a:dc:c8:bd:a1:ad:6d:d0:9d:1f:29:ed:1a:
7a:48:ac:fc:14:37:24:08:b6:11:48:40:21:f1:47:14:0a:db:
74:3c:7b:4e:ba:53:27:67:01:d8:96:f3:04:6f:cb:4f:12:2c:
47:54:1f:c0:c6:ec:43:8d:2c:86:b3:b5:f5:ef:86:dc:d0:6b:
25:d2:ad:9b:d8:00:a8:b5:a3:86:d4:8c:c9:e2:2f:77:0f:3f:
7e:13:e7:e7:84:21:f2:e7:e5:dc:98:ff:49:1e:1a:d7:85:71:
b8:a6:74:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:03:12 2026 by rpki-client