Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
File: NufP3RKRk-IZw3ASHKFiUOQptYs.mft (raw, json)
Hash identifier: Y0tkRz7FmQAU5gmpMbHMiqYx1ktQDv/0VTCtz2Zcnl8=
Subject key identifier: D0:D8:64:9F:2A:E8:3F:DB:60:6A:0D:ED:47:99:74:21:46:00:B7:F5
Authority key identifier: 36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B
Certificate issuer: /CN=36e7cfdd129193e219c370121ca16250e429b58b
Certificate serial: 019D2627DB65A0D861B5903C9D2CB8B755E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
Manifest number: 1277
Signing time: Wed 25 Mar 2026 18:00:39 +0000
Manifest this update: Wed 25 Mar 2026 18:00:39 +0000
Manifest next update: Thu 26 Mar 2026 18:00:39 +0000
Files and hashes: 1: 43mZhZr44AIFJcFlEmjkEL_Qzjo.roa (hash: GwcZdDMV/aXs2RqaKWm3srdiDr2ZSWOLhYiN6xh8X/w=)
2: NufP3RKRk-IZw3ASHKFiUOQptYs.crl (hash: 2OS9X5vfFmA3Zozkmg729QbNtul10fuWdYek5HA35/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 18:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:27:db:65:a0:d8:61:b5:90:3c:9d:2c:b8:b7:55:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36e7cfdd129193e219c370121ca16250e429b58b
Validity
Not Before: Mar 25 18:00:39 2026 GMT
Not After : Mar 26 18:00:39 2026 GMT
Subject: CN=d0d8649f2ae83fdb606a0ded479974214600b7f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c5:1b:0e:70:48:55:77:18:32:cc:d4:f9:1f:
8d:87:35:4e:07:07:ee:1f:c4:f2:40:fd:49:68:1b:
66:62:61:38:f6:8f:1c:21:37:78:68:3f:95:6e:63:
db:1a:60:4a:6a:cf:6b:99:4e:2f:8f:1a:00:cf:63:
61:10:bc:e9:0a:b6:ef:06:ac:cc:ca:91:ac:58:90:
b0:5b:d7:5a:87:e3:94:d6:a8:4b:1e:f1:91:6a:90:
3e:5f:63:cf:ba:3e:b2:bb:6f:33:e0:e3:48:87:bb:
df:dc:0e:88:64:ed:52:47:ed:a9:32:71:17:9d:14:
b0:58:35:73:a8:21:b7:ad:76:94:9a:85:12:e2:58:
ec:ea:7c:e3:f6:c3:9e:4a:95:1b:14:8a:d1:71:30:
85:35:5c:2a:42:b3:7d:62:3e:34:75:62:62:a7:2e:
a1:94:aa:ef:99:6e:9d:ce:8a:3a:ca:55:26:4a:6e:
a6:d0:50:c6:dc:78:70:de:db:f2:4a:d9:4d:59:14:
d7:e2:bb:e1:1e:4b:97:89:c7:eb:a2:60:b0:16:0e:
59:46:47:de:07:69:d8:d9:a5:12:c1:8e:5e:d1:2d:
31:85:a2:ee:b6:1c:ef:be:92:ec:17:20:9a:12:53:
47:ce:26:07:2e:ff:0b:5b:93:ca:a0:69:db:f2:63:
c6:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D8:64:9F:2A:E8:3F:DB:60:6A:0D:ED:47:99:74:21:46:00:B7:F5
X509v3 Authority Key Identifier:
keyid:36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:3a:e0:44:16:c1:c5:10:13:f0:3a:67:b6:c1:52:b5:5b:94:
ac:55:99:88:ae:75:9a:c7:da:7c:62:57:77:72:69:e7:b8:9f:
97:6a:a1:c9:04:e2:71:d5:a6:ef:86:ba:40:3c:4d:d6:27:c5:
3c:30:78:7a:ac:7a:13:e8:ca:c6:51:af:d5:e0:a7:b8:54:69:
d6:b2:66:4d:c0:c3:21:35:ad:0e:9c:a9:08:9c:92:74:ac:44:
98:29:2c:9e:2a:41:63:9e:d7:55:0e:bc:db:79:d5:2d:e7:7f:
bc:1f:a1:f6:2f:74:e6:d3:bf:45:76:b2:eb:2e:81:ce:3b:ca:
34:41:8f:02:2c:23:15:7b:9f:5e:3b:8b:a0:30:77:bb:a4:f3:
2a:65:0f:96:af:11:ae:fd:3e:21:2e:12:be:31:c3:fc:25:56:
16:54:c7:d0:9b:76:36:d3:1a:1e:09:15:02:1a:71:f3:dc:fa:
6b:63:4d:cc:91:31:4a:51:28:54:1a:d7:3b:6b:08:63:75:63:
26:9d:7e:ae:9b:72:25:63:f7:bd:22:ce:89:52:20:f5:2c:6c:
f4:b3:48:b4:20:25:49:07:b0:98:39:50:ad:df:75:bb:ec:7e:
06:8e:a7:76:46:f0:6e:b8:ea:94:4a:e3:d6:97:32:d2:6a:45:
57:c0:32:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:10:27 2026 by rpki-client