Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
File: NawwjJT1exHO4bqE7xJ4RHxnhes.mft (raw, json)
Hash identifier: YwqFA2pTyAd4EBaFYEeleksmRUOB25OlXPspBmQqKzM=
Subject key identifier: E3:9B:A2:35:36:56:1B:81:5F:6A:94:19:57:8E:E7:F6:6C:6C:F9:C9
Authority key identifier: 35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB
Certificate issuer: /CN=35ac308c94f57b11cee1ba84ef1278447c6785eb
Certificate serial: 019E1F47AC2D2B5377AB89CCE73FBDDE159E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 03:00:51 +0000
Manifest this update: Wed 13 May 2026 03:00:51 +0000
Manifest next update: Thu 14 May 2026 03:00:51 +0000
Files and hashes: 1: EaZSZwZGmcsZnUkQYcJgmv5A-IQ.roa (hash: +ZyiIncgTcIegMEpnSnkV8RC0hP2tnJjSSGms0iMy6Y=)
2: NawwjJT1exHO4bqE7xJ4RHxnhes.crl (hash: VXiCngfHlPEkrPvWprWUE7offzoHAZX9aE7LtJRhpUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:ac:2d:2b:53:77:ab:89:cc:e7:3f:bd:de:15:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35ac308c94f57b11cee1ba84ef1278447c6785eb
Validity
Not Before: May 13 03:00:51 2026 GMT
Not After : May 14 03:00:51 2026 GMT
Subject: CN=e39ba23536561b815f6a9419578ee7f66c6cf9c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:68:da:c4:17:4e:5b:6a:04:ad:15:be:d4:3c:
fa:6d:b0:7c:19:cb:7b:13:d6:7d:4b:09:05:d7:99:
66:0e:0f:df:e6:15:37:f4:f1:3a:39:d6:11:90:8f:
e5:18:d5:49:4f:e4:aa:c2:7e:31:60:39:82:d7:bc:
6d:23:1f:a3:ae:10:45:b7:0d:b6:9f:57:c9:82:47:
51:22:8c:45:3a:22:d0:a3:63:4a:47:43:35:0e:f4:
5f:b2:cd:f5:c7:4b:3d:2d:66:45:90:14:e7:00:f8:
93:81:98:3f:1b:e6:e0:de:c6:7a:f8:36:bf:c1:b5:
48:da:c2:69:dc:f8:c8:9c:cd:df:10:3f:f3:7c:b9:
98:55:ac:f3:ed:bd:60:b7:af:c7:6e:43:01:ea:8f:
7c:e1:53:18:92:29:1b:ee:0b:30:65:e5:88:e6:cd:
ff:04:e7:bc:58:e2:84:db:5a:83:b8:c7:1b:ff:e3:
e4:41:a2:95:cd:f3:cf:56:64:cf:5f:0d:05:5a:8d:
61:ef:a6:bc:3d:50:f8:e5:ad:15:2d:99:9b:4c:ac:
74:2e:ce:af:50:fe:20:53:6f:74:ec:98:27:a9:d3:
f0:76:ab:db:6c:60:1a:b7:b3:0e:2a:17:e0:71:77:
c2:28:26:ae:3d:17:53:e2:06:ec:2e:f4:5c:4c:84:
20:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:9B:A2:35:36:56:1B:81:5F:6A:94:19:57:8E:E7:F6:6C:6C:F9:C9
X509v3 Authority Key Identifier:
keyid:35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:70:cc:3d:ea:3d:56:d5:2a:41:0d:58:13:df:06:50:c2:ee:
5d:78:38:e4:a8:22:16:a2:91:a1:56:1e:08:3e:a9:7c:ad:0f:
1c:d8:94:e7:1d:43:51:78:ad:7d:10:22:39:db:3f:24:e3:01:
12:b9:3f:b5:38:5b:2f:29:00:88:18:48:15:81:0b:c0:70:4f:
e8:c3:1d:07:bb:59:41:1d:39:ca:6a:0c:3d:9a:7f:7b:f0:3f:
ef:1e:27:ba:14:38:37:5c:bd:04:66:e1:de:f0:82:de:d2:d5:
bf:ac:b4:ed:5f:72:c2:da:13:bf:7d:fe:60:2e:9f:1a:d0:e5:
72:11:1e:fa:14:61:47:eb:c6:d4:16:92:cc:d5:53:3b:7d:92:
57:b1:b7:95:89:e3:9d:6b:2a:17:55:de:49:f8:16:ac:17:92:
cc:48:05:a7:76:11:82:2c:23:49:e4:c9:04:ad:25:d8:a6:9e:
31:5d:c4:60:51:c8:71:6b:9b:82:c9:50:09:c4:71:7e:36:74:
fa:d0:06:31:8c:9a:4d:0a:f3:41:e4:ef:d8:9e:86:b9:ed:43:
25:7c:69:8f:40:6b:7f:e9:a1:1a:78:b9:bb:fd:a0:04:f6:c5:
a4:c0:76:9b:db:0d:93:ca:be:66:ed:3c:42:96:22:df:39:9d:
89:d6:f6:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:30:03 2026 by rpki-client