Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier: 6HKOB0ttqmizJ0lBd0kCI26BCDdQlBe0FeAyMsE20EI=
Subject key identifier: CE:ED:38:79:B4:11:55:25:10:E3:B3:03:0B:5F:16:F3:BA:BA:43:01
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer: /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial: 019D2A04E16BADBC47A963A12601AF610278
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number: 0687
Signing time: Thu 26 Mar 2026 12:00:56 +0000
Manifest this update: Thu 26 Mar 2026 12:00:56 +0000
Manifest next update: Fri 27 Mar 2026 12:00:56 +0000
Files and hashes: 1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: 8QbEcbCgKKJzlvLjb9osH1c+EemU4nPC6g8RM0vN8HQ=)
2: of5fvbBOl_2ZOya6SQ0xsXlOVng.roa (hash: FlPfu4dwMoPwrHiBDoZEfb7scYNLSD/+Wl4U6dL0V+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:e1:6b:ad:bc:47:a9:63:a1:26:01:af:61:02:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Validity
Not Before: Mar 26 12:00:56 2026 GMT
Not After : Mar 27 12:00:56 2026 GMT
Subject: CN=ceed3879b411552510e3b3030b5f16f3baba4301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ea:4c:d6:ea:0a:6a:42:30:95:2b:01:44:9b:
3e:27:b5:25:24:03:81:e3:59:fc:02:47:aa:1b:8d:
29:88:bf:4d:bd:6d:21:c0:a1:04:0e:73:7e:00:04:
34:2e:9d:e4:50:1e:88:33:c7:25:e7:19:42:25:b9:
15:06:eb:44:3a:f2:46:b4:fd:bc:d6:06:41:1e:b9:
56:80:e3:38:c0:e5:d3:99:ce:fa:86:70:95:70:c6:
01:5a:d5:f1:92:8b:a3:60:70:df:18:64:d7:33:4a:
3c:56:32:00:f4:0c:59:35:49:72:b2:9c:fd:e0:8f:
17:1d:83:88:8a:61:8b:00:fd:48:75:1a:36:6a:f4:
d1:6a:b9:0c:b0:07:23:65:2a:f5:b6:51:6d:c7:90:
16:e1:cb:2a:97:4d:a6:83:dd:cf:9b:70:af:f8:a7:
d8:92:68:3e:28:d2:39:77:18:71:bc:90:4c:a5:1e:
f9:fb:e5:40:0c:ac:fd:27:c9:7c:b4:8c:ee:5a:85:
a0:64:8c:54:bd:3a:73:d7:25:b9:55:8b:82:b7:80:
e9:c6:12:eb:72:34:9e:40:73:4d:7b:4d:b6:5f:4b:
64:74:7d:89:3a:04:aa:dc:8a:a0:b1:8f:02:8a:97:
c1:ad:d1:2d:4a:ac:73:2c:11:84:9c:30:69:b7:b1:
ef:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:ED:38:79:B4:11:55:25:10:E3:B3:03:0B:5F:16:F3:BA:BA:43:01
X509v3 Authority Key Identifier:
keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:23:5a:cf:ed:0d:6c:88:e8:c6:10:88:c3:46:63:74:5b:7c:
e7:31:fc:ea:c6:98:6a:1b:7a:87:16:b6:06:9a:a5:ab:0a:16:
37:f0:64:7f:57:8b:8d:9f:51:d6:f1:b7:93:b3:87:ad:a4:e2:
c0:46:55:41:63:9f:af:50:b0:fe:a1:8e:03:af:e9:44:b0:2e:
9f:2f:78:ff:ae:3d:c5:54:0a:53:12:b6:8c:99:e7:3b:71:1c:
36:fb:26:25:31:6a:b8:84:22:8c:ff:01:39:24:b6:e2:b6:7e:
ef:b5:c0:51:a9:84:fd:f8:09:23:38:ee:86:20:5e:dc:3f:cc:
c4:1d:5c:2c:6c:fd:53:b1:b7:2f:95:a0:3b:08:62:47:3f:ce:
38:3f:c5:c8:e5:c8:bc:4e:30:ab:5f:e5:e3:f5:7c:40:c1:a5:
2e:10:98:f1:34:55:36:3a:ac:e9:fc:5b:1b:5d:ba:5e:02:b8:
9f:c1:88:77:77:da:3f:6e:83:57:2b:11:5a:00:50:c6:ce:dd:
6f:09:6c:13:62:0d:a7:24:2c:a1:f3:b9:64:61:5e:c7:f7:03:
20:08:59:04:f8:78:04:7b:3d:d7:a9:bb:f3:e9:ff:cf:14:ff:
49:cb:0f:26:6e:c1:30:11:3e:a4:50:47:71:62:fc:d9:8f:c2:
98:8d:1f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:29:46 2026 by rpki-client