Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
File: jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft (raw, json)
Hash identifier: mRtPQQXsy8vULVoaRizV3ZfrXtyqmOOdcVtTGqmEpeY=
Subject key identifier: 41:46:13:22:6B:41:89:88:D8:CC:56:7A:D6:5B:D5:D7:70:03:AC:80
Authority key identifier: 8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
Certificate issuer: /CN=8c54a846632e83340e114d0d35591b3d42188b76
Certificate serial: 019E20FF560951DF8FD52E0C9AC6E160225D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
Manifest number: 1125
Signing time: Wed 13 May 2026 11:01:05 +0000
Manifest this update: Wed 13 May 2026 11:01:05 +0000
Manifest next update: Thu 14 May 2026 11:01:05 +0000
Files and hashes: 1: a8MwW9uA1QblypP4WtvHf2_buTE.roa (hash: KOPlkZDXHkxKuQQUEqNV5mrWVVkmRluPORCXFGTA7CA=)
2: jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl (hash: DrHjC1MzznnitVOX5PAHR4XC7cWAvLttDhPu6MNW/Qg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:56:09:51:df:8f:d5:2e:0c:9a:c6:e1:60:22:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c54a846632e83340e114d0d35591b3d42188b76
Validity
Not Before: May 13 11:01:05 2026 GMT
Not After : May 14 11:01:05 2026 GMT
Subject: CN=414613226b418988d8cc567ad65bd5d77003ac80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:36:e2:ba:5e:7b:ea:42:c7:93:df:5b:b3:58:
cc:ce:fa:b2:df:a8:1e:51:17:db:31:e7:70:ac:a7:
68:e4:06:9c:54:0b:a5:33:63:70:c5:ae:8b:12:c9:
ab:0c:cd:4c:c9:f4:b1:85:bc:04:d5:3b:9f:52:be:
3a:97:54:79:2c:fc:83:9f:3d:50:46:14:f2:8f:94:
9c:bd:8b:8a:ad:0d:b4:46:f0:ea:9f:cc:ab:9e:d3:
d7:bb:90:22:23:a0:52:49:5b:9d:2e:e8:8e:56:69:
07:34:04:85:83:ae:82:f9:a3:a8:4d:21:6d:d7:d1:
43:94:a5:c0:d8:e5:ab:b4:7c:21:3b:c2:b3:72:4d:
d7:1f:5f:bb:10:6f:8a:36:8d:0b:ea:c0:9d:0f:e2:
12:df:22:75:3e:d1:3c:06:56:70:c3:7c:65:65:ed:
4e:cb:39:36:76:5f:59:9f:ff:1f:c3:eb:26:ae:35:
18:17:57:02:ba:5d:35:a0:9c:a2:26:5b:ab:63:87:
bf:97:d7:c5:65:65:05:56:30:6c:97:6c:bb:83:f2:
0e:e6:d6:bf:1d:0e:f4:96:3a:b9:3a:f8:77:ea:4a:
62:22:b3:4c:9a:75:95:a9:e2:c2:70:c8:4b:cc:c3:
74:8c:eb:38:56:1f:c9:d3:4e:7a:9e:d6:b1:e2:7f:
0c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:46:13:22:6B:41:89:88:D8:CC:56:7A:D6:5B:D5:D7:70:03:AC:80
X509v3 Authority Key Identifier:
keyid:8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:fb:77:9a:61:13:1e:42:5b:d3:36:50:8b:6f:86:10:a5:0b:
c7:a2:56:ef:33:41:cb:c9:10:83:26:53:b5:6d:e5:03:c1:f8:
71:5e:2c:2e:75:cc:e6:5c:73:4d:79:f1:0b:14:8f:a8:97:4e:
8d:3b:73:34:87:40:bf:6a:83:0d:b2:ec:1b:ab:b7:2f:84:f8:
8e:2f:cf:97:9c:e0:9c:51:5e:5b:ec:94:84:90:a9:59:0a:85:
ce:34:96:eb:52:9d:86:16:03:ce:29:22:35:4f:f3:c6:62:a6:
a4:6d:06:4e:79:e6:f3:d2:8d:f7:22:29:3b:79:ed:6d:21:51:
26:b9:5c:59:3c:5c:0a:e7:73:97:b6:67:d5:f5:9d:ba:30:df:
06:ad:81:4b:56:19:10:04:9d:31:cc:06:b3:9d:29:8b:d4:68:
b9:0c:7c:1e:0c:b8:59:3e:3d:e2:8a:9d:55:00:dc:cc:f9:2d:
22:c4:7e:c1:02:1f:84:08:b7:f7:7e:87:c1:92:e6:bb:94:61:
f2:66:12:03:09:ff:a5:3e:25:63:f7:11:78:df:ef:52:b7:95:
27:29:f5:c9:a3:9a:ed:ef:d3:95:29:1c:4b:55:b5:26:70:75:
fa:44:54:3e:91:77:6f:32:ce:c9:37:15:df:28:cd:e3:da:b6:
3d:89:4c:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:00:45 2026 by rpki-client