Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
File: JchJyqV3LJi4E8E7TzD85PSNLa4.mft (raw, json)
Hash identifier: NyYwuaJ5JkKtU1HFfxdRgsHxRad3C2UkOmqOrX9IXqw=
Subject key identifier: 76:31:D9:64:F2:BC:6D:04:F5:C5:34:A1:FC:8B:01:62:5D:86:59:E9
Authority key identifier: 25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE
Certificate issuer: /CN=25c849caa5772c98b813c13b4f30fce4f48d2dae
Certificate serial: 019D29975A6E55D38C76C55BAD911ED0E709
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
Manifest number: 0C5C
Signing time: Thu 26 Mar 2026 10:01:18 +0000
Manifest this update: Thu 26 Mar 2026 10:01:18 +0000
Manifest next update: Fri 27 Mar 2026 10:01:18 +0000
Files and hashes: 1: JchJyqV3LJi4E8E7TzD85PSNLa4.crl (hash: Zcf8ufW7zLo77k2A0THhzzvNipm/xU+hVsBYw329XOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:5a:6e:55:d3:8c:76:c5:5b:ad:91:1e:d0:e7:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c849caa5772c98b813c13b4f30fce4f48d2dae
Validity
Not Before: Mar 26 10:01:18 2026 GMT
Not After : Mar 27 10:01:18 2026 GMT
Subject: CN=7631d964f2bc6d04f5c534a1fc8b01625d8659e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:99:5b:b9:af:4c:5a:a2:8d:a0:00:52:2f:5c:
2e:f1:83:16:95:fd:dc:79:f9:07:68:53:c7:82:db:
ec:54:01:79:49:d8:a8:9b:2d:eb:ef:6e:bf:6b:d8:
fe:81:eb:82:16:cf:9f:db:0a:95:66:21:c7:c1:c3:
1b:60:45:48:6f:96:e8:01:d6:2b:88:b9:39:8b:ee:
50:4f:09:6f:ae:ad:d2:6e:46:27:55:da:ab:aa:e6:
cd:23:61:0d:ca:ef:e2:35:8f:cb:ef:a1:c8:09:59:
65:3e:30:43:49:16:df:5b:f6:7c:bb:0c:66:0f:3e:
91:35:91:b3:93:d5:d0:8b:fe:a6:01:d6:35:ec:97:
da:1e:a0:4f:36:ea:b2:b0:0e:7b:80:ba:b1:08:96:
01:eb:8d:af:aa:f2:24:5c:7d:26:54:f1:e6:98:13:
c4:c7:95:39:d4:90:f0:0c:d0:14:cd:7e:6e:cc:2f:
62:62:5d:cc:93:a7:a1:47:1f:14:3b:e1:a5:cd:ab:
0d:bd:d8:92:a8:4f:16:c7:fe:b2:51:78:13:14:84:
69:1c:a5:0d:e2:2f:6b:69:ac:a6:a1:db:6a:5a:39:
6a:7b:90:e7:cb:6f:fb:5c:be:8a:79:0b:a5:3b:c6:
8b:dc:8c:ae:65:a4:cf:dc:73:c2:3f:1d:cc:c2:f1:
ab:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:31:D9:64:F2:BC:6D:04:F5:C5:34:A1:FC:8B:01:62:5D:86:59:E9
X509v3 Authority Key Identifier:
keyid:25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:41:a7:a0:57:0d:cf:ad:dd:8e:46:73:f5:38:d1:18:58:e8:
29:d7:c9:7b:ad:ee:71:2f:2e:52:c1:c5:7c:8e:d7:33:d4:32:
b6:c3:f6:9e:45:a7:1a:1f:2b:02:3a:cc:45:19:68:7a:e6:b1:
8a:a2:f1:93:52:56:af:c4:6a:ac:d8:f4:dd:a5:82:8d:0d:bb:
70:4e:63:58:74:7a:73:af:4b:11:91:a4:83:c1:46:ee:5d:81:
1c:c5:55:11:50:4c:35:9e:a9:31:ef:e3:75:fa:31:b0:72:dd:
98:9a:3e:4f:66:df:4d:fe:49:82:4b:93:69:8a:02:da:34:e4:
1a:76:94:ee:d7:37:d2:1d:6b:5d:6b:7f:79:4e:bd:d8:32:e0:
31:a8:b4:a3:ae:e7:0e:ab:26:63:a7:38:0b:c9:40:0d:e2:af:
ad:64:be:b1:ac:cd:c8:6e:d7:4d:ce:be:b5:fc:3f:5c:ab:9f:
df:da:7c:c7:4a:4a:6a:21:c0:cc:8a:fe:d8:18:e2:30:bb:7d:
17:a0:09:3a:e6:6f:7b:89:75:ed:14:db:9b:d7:83:d9:5c:c9:
ae:b2:ac:30:ff:a2:1e:f2:f3:33:27:79:46:ea:cf:ee:7d:bb:
76:3e:3f:04:fe:cd:00:ab:f1:7d:79:5f:5c:1d:70:f1:32:6e:
24:53:d6:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:08:10 2026 by rpki-client