Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
File: jwrbomBJNHOMfJaSoLOrezCoK7I.mft (raw, json)
Hash identifier: ZhqCl4TeJHfYyIIbBtLhs0q2ISLrQE3d3lpWS2f+noc=
Subject key identifier: C6:1B:AA:53:E1:0F:09:17:55:A7:5D:95:E7:A1:D2:AF:BE:0D:E2:7A
Authority key identifier: 8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2
Certificate issuer: /CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2
Certificate serial: 019D2B17425E5CF90B54BD387903B4B3497E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
Manifest number: 08FB
Signing time: Thu 26 Mar 2026 17:00:37 +0000
Manifest this update: Thu 26 Mar 2026 17:00:37 +0000
Manifest next update: Fri 27 Mar 2026 17:00:37 +0000
Files and hashes: 1: X_oexMAynHCssJWS1xXVUpjLPDU.roa (hash: u2YqA2ZR5BhcCK1zVpI632Qbwf1IqH25NXhdjexdM9w=)
2: jwrbomBJNHOMfJaSoLOrezCoK7I.crl (hash: nSnepwkII9OotXhtLSan8ZEDLNJ1HFROIZjfFBviz3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:17:42:5e:5c:f9:0b:54:bd:38:79:03:b4:b3:49:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2
Validity
Not Before: Mar 26 17:00:37 2026 GMT
Not After : Mar 27 17:00:37 2026 GMT
Subject: CN=c61baa53e10f091755a75d95e7a1d2afbe0de27a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:35:09:71:7c:97:37:92:0b:19:01:b7:27:9f:
a5:a2:00:d8:9e:18:20:8c:70:3e:bc:65:7f:f9:6b:
f4:4b:c7:cc:e1:5a:af:14:93:2e:d1:97:58:c6:8a:
dd:4d:83:f9:0c:82:ad:f7:ab:8c:01:ec:37:ed:40:
31:60:b9:79:fe:93:86:05:1c:66:fc:b7:00:43:04:
a1:4f:56:b8:cf:d7:88:e3:d4:6f:de:14:d1:1d:5b:
e1:a8:94:93:7c:a4:82:7e:9d:bb:87:b8:dc:cb:5b:
8d:09:69:36:1f:34:93:f5:3a:22:49:61:5c:a8:00:
26:c1:c8:11:f8:f1:4c:72:c6:1c:d4:95:1a:79:a7:
52:b6:67:0b:03:1d:47:90:49:8b:6e:1f:b6:4f:d1:
13:1a:0f:23:34:64:b2:d4:cc:1a:65:c4:63:cd:41:
df:0d:6f:e1:9b:c7:28:a6:bd:6b:60:d1:43:2c:88:
27:a5:6a:57:64:5f:e2:2f:65:f1:d4:ca:95:2f:1b:
50:dd:37:8d:bf:cd:24:f5:19:bf:2f:17:25:70:de:
4f:e3:13:fc:74:9c:1a:3a:57:ac:38:d6:72:63:32:
a9:62:6f:49:fe:ef:88:87:fe:a8:46:9c:f5:06:1e:
17:c1:72:54:16:98:f8:86:98:3e:6d:cb:1d:59:77:
a4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:1B:AA:53:E1:0F:09:17:55:A7:5D:95:E7:A1:D2:AF:BE:0D:E2:7A
X509v3 Authority Key Identifier:
keyid:8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:ff:69:68:17:3a:c3:b4:79:1b:0f:0c:fa:ba:0a:5f:ea:b4:
54:2a:41:42:ac:42:3c:96:bc:82:98:bc:de:55:f5:cb:a9:08:
56:d1:b0:e1:72:a2:60:83:f5:31:5b:bc:83:19:42:a5:3d:da:
1c:05:d7:7e:49:9a:f5:96:23:88:82:d5:95:73:56:3b:9c:91:
1d:f8:47:a7:5d:d5:e5:21:31:1b:f4:61:e8:3b:db:0f:37:a4:
22:3f:14:84:14:cf:10:29:87:fe:82:a2:56:29:2a:91:93:b6:
2c:d2:d8:74:d3:e6:55:e0:60:9c:d3:85:45:a3:3f:ae:3a:cf:
a6:02:4b:a3:6a:7d:e2:60:95:fe:c4:2a:0b:4c:13:4c:d5:fe:
a3:af:dc:03:7c:dd:c6:86:e6:c2:bd:ed:c9:aa:98:89:bf:b6:
be:1c:59:7e:cb:79:66:de:1c:e9:e0:b2:9f:00:09:8c:da:12:
96:b9:29:91:05:dc:e8:23:59:a2:e8:e2:b7:70:c1:cc:7c:c2:
dd:42:a6:d6:d1:8d:b5:4d:fa:6a:1f:23:09:42:b8:83:19:e4:
4a:78:05:09:5a:e7:c1:54:07:74:a7:9a:9c:11:38:bf:56:e9:
30:9a:5d:bd:de:c9:91:8e:4b:45:2d:4b:af:14:9c:35:ee:d9:
af:cc:0f:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:34:56 2026 by rpki-client