Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
File: jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft (raw, json)
Hash identifier: s0xs0LqK3KWYkElWVXeEFsmN2IIapIDGl4av9RdhAMg=
Subject key identifier: 02:9E:A3:C2:07:FC:0B:27:3B:86:58:CE:46:C9:F7:8C:D0:0C:BE:9A
Authority key identifier: 8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
Certificate issuer: /CN=8c54a846632e83340e114d0d35591b3d42188b76
Certificate serial: 019D25F16278A6123C56CF3879F6B4B5DCEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
Manifest number: 10A3
Signing time: Wed 25 Mar 2026 17:01:09 +0000
Manifest this update: Wed 25 Mar 2026 17:01:09 +0000
Manifest next update: Thu 26 Mar 2026 17:01:09 +0000
Files and hashes: 1: a8MwW9uA1QblypP4WtvHf2_buTE.roa (hash: KOPlkZDXHkxKuQQUEqNV5mrWVVkmRluPORCXFGTA7CA=)
2: jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl (hash: 5YbZrZf2pwCY5+0DTXfTU1NjTKvXW4OplySACCE24qQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:62:78:a6:12:3c:56:cf:38:79:f6:b4:b5:dc:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c54a846632e83340e114d0d35591b3d42188b76
Validity
Not Before: Mar 25 17:01:09 2026 GMT
Not After : Mar 26 17:01:09 2026 GMT
Subject: CN=029ea3c207fc0b273b8658ce46c9f78cd00cbe9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cd:1b:31:cd:75:84:6f:52:19:20:c7:6b:76:
7c:6b:52:59:45:e7:81:bd:75:71:35:a8:5d:43:2b:
69:03:29:b8:4a:00:23:14:8e:f5:74:36:db:c3:6f:
74:fc:9d:5a:5c:29:ec:08:50:d5:be:7b:c3:dd:8f:
a1:d4:dc:7c:af:b0:99:33:99:bb:de:32:86:c2:8b:
e9:1e:5d:df:df:03:52:1b:0f:83:df:b6:05:61:c2:
32:6f:b3:46:f2:01:15:01:2e:bd:01:34:a1:32:49:
f7:31:b3:c6:9e:e6:ac:6a:0a:cf:57:d5:9f:8f:12:
7d:55:89:19:dc:69:99:e0:87:fb:d2:7b:05:a1:7f:
c5:a8:8c:ce:0c:b8:83:9c:32:42:15:04:c3:fd:8d:
45:40:f7:3f:72:b2:67:67:c7:5c:9b:73:83:f6:82:
34:33:a2:3a:7f:82:ad:25:4c:1a:7c:6d:78:fb:6b:
f0:f2:d0:c3:59:7f:10:88:7d:17:bb:e4:91:e8:19:
26:f7:16:4b:4b:d2:9d:d2:ff:f3:76:c8:25:46:66:
39:fd:19:68:45:0c:fd:38:23:77:a7:41:e8:19:ef:
18:17:49:6b:82:6d:69:30:55:ae:33:52:91:f7:ff:
07:8b:1c:05:10:4a:fa:ea:56:e3:b0:b0:cf:11:53:
bb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:9E:A3:C2:07:FC:0B:27:3B:86:58:CE:46:C9:F7:8C:D0:0C:BE:9A
X509v3 Authority Key Identifier:
keyid:8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ec:0c:35:b6:07:74:2e:f1:e6:e8:ce:c6:42:0e:a8:d8:cb:
e3:f6:56:78:de:5e:93:15:0e:c1:e2:99:c0:6c:7c:98:48:2c:
d5:a5:df:e0:5b:2d:bf:d5:55:d2:e3:62:bd:39:26:c7:97:7c:
21:82:02:ba:ab:90:9e:c2:66:73:7a:9e:47:2f:db:0e:8d:cf:
4f:0b:83:17:e6:1e:e7:2e:09:2f:4d:26:02:9b:39:fc:20:8f:
2d:10:92:54:3f:97:fc:6d:50:82:1d:d3:83:92:ff:d3:64:43:
00:d0:fe:61:cc:fc:1c:f7:94:82:be:c8:db:2d:0e:f4:95:f6:
0f:c2:77:94:f8:fa:11:44:5b:a2:42:79:dc:ea:20:a3:e1:10:
e4:4e:06:58:9f:00:83:f8:0d:c7:f6:ac:a5:ba:ca:f6:d6:72:
86:d8:1b:a9:3d:ce:87:3a:44:01:c2:cb:53:25:de:43:8a:b1:
25:47:00:e3:0a:e0:a9:54:32:74:b2:a1:6b:65:a8:40:53:48:
f4:05:3c:65:33:96:76:96:15:86:dc:7b:02:f2:da:3b:9c:87:
65:0d:b5:81:d0:58:bc:5c:6c:7a:e9:19:03:d0:d1:22:d9:36:
0e:bd:0a:86:60:10:8a:c7:41:b9:f5:3a:c1:68:f4:b9:77:48:
35:95:c7:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:15 2026 by rpki-client