Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
File: nUkl6XatC_tz4JfaaRfoD1vObIw.mft (raw, json)
Hash identifier: 8s8/PUzrBXJ13/j9zq0iyD/1O29rZRaeKuduDAYpvUY=
Subject key identifier: 35:AF:F0:E4:FB:0C:3E:9D:74:7B:19:03:07:A7:82:2C:07:B2:7E:6D
Authority key identifier: 9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
Certificate issuer: /CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Certificate serial: 019D2704D157D474B7DA3EE0483AECFB16BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
Manifest number: 12E5
Signing time: Wed 25 Mar 2026 22:02:00 +0000
Manifest this update: Wed 25 Mar 2026 22:02:00 +0000
Manifest next update: Thu 26 Mar 2026 22:02:00 +0000
Files and hashes: 1: nUkl6XatC_tz4JfaaRfoD1vObIw.crl (hash: enuVQBIOZAMrv0n11Rxr05foUVA/9JQuvFVEagF3Usg=)
2: oXaYTtMVNJP1Fl7ZKs5QpgsqsMk.roa (hash: +RNVphol1dxO7daQTUBiRS/Hm7azf02WGvxKISPu3wM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:d1:57:d4:74:b7:da:3e:e0:48:3a:ec:fb:16:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Validity
Not Before: Mar 25 22:02:00 2026 GMT
Not After : Mar 26 22:02:00 2026 GMT
Subject: CN=35aff0e4fb0c3e9d747b190307a7822c07b27e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:45:14:6b:b9:ea:a3:bb:ed:7e:f0:38:a7:6c:
f6:9d:33:b9:21:5b:f9:34:e7:48:8f:30:1d:65:0f:
0c:ee:cf:e2:e0:47:3b:53:89:d4:6d:f4:23:94:12:
3d:3b:1a:08:e6:a3:55:a7:f4:56:4d:62:5a:27:08:
b9:cd:e0:cc:63:4b:72:98:27:ac:fc:8a:fc:ab:99:
51:e8:0b:8e:b2:d5:4a:56:88:37:01:c2:6c:15:92:
95:09:db:08:e4:10:ad:1a:89:58:f5:56:46:12:96:
18:57:87:66:b4:9a:e2:bb:41:35:a5:e9:d1:a1:f1:
bc:97:45:1f:7e:6c:4d:17:52:89:e4:bc:ad:f8:9b:
8a:b6:af:84:fe:cf:68:62:24:54:9f:f3:cb:43:15:
ef:31:46:8b:d1:21:3e:c6:6a:65:f9:f5:66:a9:30:
15:7a:bd:fb:3e:96:48:a1:58:7a:48:5a:bc:50:67:
76:6a:1d:a2:48:aa:ce:08:4f:22:44:38:48:3a:3e:
36:15:d1:f5:ca:12:61:d0:8e:a8:84:a4:77:41:7c:
db:36:60:20:ea:6c:46:bd:cf:22:91:d3:76:29:8b:
47:74:c4:93:64:cd:01:9f:ea:3f:f6:bb:d7:9f:11:
db:e3:7f:2f:6b:02:90:03:3c:fc:c4:ae:18:af:2d:
69:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AF:F0:E4:FB:0C:3E:9D:74:7B:19:03:07:A7:82:2C:07:B2:7E:6D
X509v3 Authority Key Identifier:
keyid:9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d7:04:4a:15:37:99:77:3b:45:c9:fc:85:8b:30:34:cd:1f:e5:
30:d2:c4:51:b8:7e:52:75:49:66:9d:5c:9f:20:5a:ca:5f:70:
66:6c:d7:7c:e2:5e:f1:a4:65:b2:66:ec:df:79:96:bf:2b:14:
8b:7c:e6:f1:e3:99:07:80:52:35:55:a9:4d:07:f9:f4:f9:75:
c7:41:9b:70:d1:34:f2:76:c4:13:42:eb:3f:a7:ee:ed:72:a2:
86:6f:fb:16:70:d1:4c:37:e9:4b:86:28:b1:38:01:78:99:56:
ab:4c:87:85:35:ad:ca:98:d2:88:c3:0c:c3:27:6b:5b:a8:7a:
f5:6c:b0:07:9e:18:99:72:55:a5:25:51:02:7f:4b:e9:81:f4:
00:b0:9e:38:e9:bb:2b:0a:9c:00:a0:94:cb:c4:e0:d8:72:53:
22:71:47:15:9b:5c:5b:48:4e:2a:46:85:17:96:74:6f:04:4b:
2f:00:8b:c0:d1:41:a5:7f:66:73:49:30:53:3d:27:52:f6:47:
fd:7a:03:25:5f:ad:c9:22:43:ee:38:77:51:78:35:4e:57:7a:
d1:9c:9d:9f:bf:cc:e7:c0:a1:ca:69:82:45:ab:d8:b8:a2:a1:
a0:49:b2:d7:db:ec:70:f9:a3:e3:a2:3f:88:d8:5b:8c:b8:5e:
4c:b9:7a:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:15:42 2026 by rpki-client