Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
File: j_QxWS3s8oXDMtMGJTHA589hAsA.mft (raw, json)
Hash identifier: 7zPjiUyNREgrmCsM9JoUoacPplIvDVVltJGYKERoC+o=
Subject key identifier: C2:D6:DC:FA:46:37:03:7F:DD:4E:33:6B:0A:70:0F:E4:F3:40:02:93
Authority key identifier: 8F:F4:31:59:2D:EC:F2:85:C3:32:D3:06:25:31:C0:E7:CF:61:02:C0
Certificate issuer: /CN=8ff431592decf285c332d3062531c0e7cf6102c0
Certificate serial: 019D2816AD9D96E4C16A182A54CDE83C4EBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
Manifest number: 1885
Signing time: Thu 26 Mar 2026 03:01:07 +0000
Manifest this update: Thu 26 Mar 2026 03:01:07 +0000
Manifest next update: Fri 27 Mar 2026 03:01:07 +0000
Files and hashes: 1: j_QxWS3s8oXDMtMGJTHA589hAsA.crl (hash: h8e0OggxYHlFweSBfkbQs72/epbGJSUYbl6GAIhvfiw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 03:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:ad:9d:96:e4:c1:6a:18:2a:54:cd:e8:3c:4e:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ff431592decf285c332d3062531c0e7cf6102c0
Validity
Not Before: Mar 26 03:01:07 2026 GMT
Not After : Mar 27 03:01:07 2026 GMT
Subject: CN=c2d6dcfa4637037fdd4e336b0a700fe4f3400293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e8:fc:da:a7:2e:8e:79:ad:30:e7:15:ed:40:
3b:94:e5:9a:f2:f5:b8:b4:9f:a6:9c:52:9c:32:38:
a4:91:8d:de:56:eb:b2:b9:35:b3:35:d3:56:64:5a:
7a:4e:e2:20:da:34:94:8c:4c:c0:a9:cc:d4:4f:5f:
cb:ff:41:29:eb:10:d6:0d:74:bf:d1:a2:7f:53:d3:
f2:93:46:e3:5c:c7:72:e1:43:61:82:9c:67:dd:81:
9e:51:40:78:87:12:0e:f3:23:ec:dc:a3:2a:e5:7d:
9d:76:3e:a3:ba:c2:dc:7e:de:66:f7:8e:4d:18:14:
5f:ce:46:20:34:f5:6f:67:0b:ca:30:29:c1:b9:94:
da:06:62:d2:dc:74:3a:89:d8:cd:1f:cc:84:60:cd:
ac:a7:5f:02:28:6c:eb:a1:44:b5:32:9d:aa:1c:cd:
56:35:43:25:af:f6:a2:4f:c8:ef:80:05:0c:d7:80:
77:fc:6e:f4:91:f7:3d:3d:25:7e:e5:46:1a:8e:82:
53:9d:fd:b0:91:7c:4f:ca:ce:fa:14:cc:ba:ac:3e:
31:da:ff:72:c6:de:2b:01:18:05:f2:20:6b:d7:31:
56:85:02:dd:c8:d5:76:ce:83:70:7a:ee:64:19:73:
43:81:bb:6a:63:4a:8a:f4:32:7a:50:d8:51:a2:a6:
7b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:D6:DC:FA:46:37:03:7F:DD:4E:33:6B:0A:70:0F:E4:F3:40:02:93
X509v3 Authority Key Identifier:
keyid:8F:F4:31:59:2D:EC:F2:85:C3:32:D3:06:25:31:C0:E7:CF:61:02:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:74:85:61:8e:a2:1a:39:7c:aa:ba:6b:9f:c3:07:5d:05:e1:
62:66:9b:df:6f:b1:50:40:65:4b:98:f2:4d:7e:81:75:33:64:
36:60:ec:b0:e4:37:67:d0:4e:19:2f:31:fc:e3:a9:9e:41:22:
02:6b:71:55:e9:b3:9a:05:e3:8c:e4:07:56:75:05:19:4c:1f:
ab:de:fa:e3:4f:e6:68:50:b8:20:0d:28:53:e6:6b:e3:b9:77:
ae:e2:8a:fa:4d:d1:55:d7:5c:0c:ff:ab:36:a8:cb:66:43:ce:
3d:28:29:6c:64:14:d7:71:c8:df:62:95:1a:23:d0:17:51:ea:
4e:80:6a:6c:d4:9c:1e:89:dd:14:9a:9a:1e:a4:8c:71:93:da:
a5:61:1b:2b:c3:28:4e:3e:64:84:1c:c3:36:3e:e2:fc:af:82:
ad:83:1b:c2:ef:f3:b7:65:be:4c:c9:b8:45:fb:8b:cf:b7:a5:
13:fc:bf:9e:6b:0e:44:3e:6d:84:27:ce:75:f7:2d:70:1f:8f:
0c:6d:d0:1f:38:00:49:a8:74:63:c0:67:b8:ce:c5:e0:af:e4:
6b:3b:10:ae:b1:a1:53:18:e9:05:1b:27:cf:98:12:71:09:8c:
26:e1:fd:9d:af:fa:83:59:24:e6:6b:dd:e4:d3:8a:ac:1c:04:
4c:e1:23:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:11:31 2026 by rpki-client