Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
File: JwBs1Oq8VbNskwifFND6bg-gzG0.mft (raw, json)
Hash identifier: Pn+RQDzDA+VpPRiXYU1/o9t6M6mHRMAXqOcXZy2jmqs=
Subject key identifier: 10:17:5E:F2:31:10:1E:15:ED:88:08:3F:D3:0B:B9:4B:41:FF:02:A9
Authority key identifier: 27:00:6C:D4:EA:BC:55:B3:6C:93:08:9F:14:D0:FA:6E:0F:A0:CC:6D
Certificate issuer: /CN=27006cd4eabc55b36c93089f14d0fa6e0fa0cc6d
Certificate serial: 019D29CE52E6703920123C91E77570025472
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
Manifest number: 1388
Signing time: Thu 26 Mar 2026 11:01:20 +0000
Manifest this update: Thu 26 Mar 2026 11:01:20 +0000
Manifest next update: Fri 27 Mar 2026 11:01:20 +0000
Files and hashes: 1: JwBs1Oq8VbNskwifFND6bg-gzG0.crl (hash: rmkUwyBsnTVJixFDsXwd9X6N40qSBak7mVynyR4l+ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:52:e6:70:39:20:12:3c:91:e7:75:70:02:54:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27006cd4eabc55b36c93089f14d0fa6e0fa0cc6d
Validity
Not Before: Mar 26 11:01:20 2026 GMT
Not After : Mar 27 11:01:20 2026 GMT
Subject: CN=10175ef231101e15ed88083fd30bb94b41ff02a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:87:11:dc:bb:38:00:29:6f:24:de:a0:b3:b9:
73:71:09:f7:bd:fa:ae:b1:5d:55:9f:3f:c8:23:0b:
45:09:9b:8c:9e:0a:f8:fa:3f:9b:6c:83:94:e0:aa:
44:b0:64:5e:14:3c:95:d2:8b:af:62:23:48:b1:24:
2f:4c:44:ef:b7:c6:be:a5:c7:4d:02:f4:fc:58:d2:
c0:1d:10:5f:97:8b:85:57:a1:78:bc:ae:01:25:ef:
b4:19:09:74:4b:11:2a:75:04:69:92:af:4e:9a:2b:
3c:91:dd:50:19:18:56:15:39:84:0a:13:b6:27:5c:
78:d0:47:54:77:58:4b:25:9b:24:11:56:a6:c0:d7:
87:e1:8d:4d:57:5b:89:9d:47:9a:7d:5f:d4:e2:f2:
ce:30:45:c7:e4:6b:5a:2d:72:22:14:ac:0f:23:bb:
3d:58:f0:34:7d:59:0c:6d:44:a8:ac:a2:21:3a:79:
b7:8d:4c:ae:b9:b8:63:13:9b:48:46:11:11:d5:12:
7b:83:61:a6:bc:0a:5c:28:b0:42:ef:87:d4:c7:54:
7f:b3:a2:a7:6f:6e:a4:c1:08:de:40:3a:12:ab:09:
78:67:29:a1:d1:20:4c:4f:4e:32:16:2b:22:a2:ed:
5f:90:6b:95:56:e6:65:86:07:1a:96:6a:ad:49:ba:
f1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:17:5E:F2:31:10:1E:15:ED:88:08:3F:D3:0B:B9:4B:41:FF:02:A9
X509v3 Authority Key Identifier:
keyid:27:00:6C:D4:EA:BC:55:B3:6C:93:08:9F:14:D0:FA:6E:0F:A0:CC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:f7:f4:5f:f3:7d:4c:8a:77:4c:e0:41:2b:d1:61:30:c8:c1:
c2:e2:30:03:d4:a7:11:62:af:8b:29:62:6c:7a:2d:6e:4a:74:
e9:14:58:98:34:e6:56:a2:18:ad:91:94:34:bb:eb:32:1f:2e:
23:50:5f:e7:3a:b3:64:1c:65:69:81:68:9e:c2:d9:88:1f:98:
d8:a4:9f:d6:bf:5a:9a:a7:88:9d:12:27:54:b1:9e:08:d7:dd:
87:c0:a1:c3:1d:ba:7e:c7:03:9d:7d:cb:89:fd:89:16:fb:02:
96:e0:c2:b5:fb:f6:06:0f:7b:9c:78:ab:07:74:f5:9d:3e:73:
11:fd:31:2d:f5:5c:ac:70:e6:35:da:14:61:88:17:4e:ff:4e:
43:86:c2:d8:ec:ef:4b:cb:20:56:34:87:09:af:9d:50:fd:52:
2c:3d:56:11:60:8c:87:55:3f:ad:20:a0:9d:f5:ae:79:6b:72:
1c:5c:02:e0:e3:e5:9b:28:02:ff:d5:01:2b:8c:a9:17:4b:d2:
3b:ba:15:b8:d4:e1:87:f5:85:3c:2c:65:80:0d:40:29:2d:f4:
75:d9:af:7d:6f:6c:27:2e:ef:1c:06:2c:c1:a2:8b:e1:0c:77:
e7:ee:f8:bc:7a:70:a4:5e:6e:45:4f:15:1a:4a:b2:66:ae:8c:
60:46:df:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:26:05 2026 by rpki-client