Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
File: NYx3zUAYPEEVsr8NznFuC8XQv9U.mft (raw, json)
Hash identifier: 2UFnvbMaMlUE6faQOok/KuC1QmHpWOmb8AeYdtYm5rI=
Subject key identifier: 9E:09:5B:06:91:DA:41:C1:43:CC:19:B8:EF:B6:29:EA:57:D9:A1:34
Authority key identifier: 35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
Certificate issuer: /CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Certificate serial: 019D273B1770CDBF1BC9C1F78B8F4DF89C4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
Manifest number: 05F1
Signing time: Wed 25 Mar 2026 23:01:17 +0000
Manifest this update: Wed 25 Mar 2026 23:01:17 +0000
Manifest next update: Thu 26 Mar 2026 23:01:17 +0000
Files and hashes: 1: NYx3zUAYPEEVsr8NznFuC8XQv9U.crl (hash: A9DAxLFdWCppRYsqkOm0DZRuLMzAc0ZRSzDSUUmow8Q=)
2: UlEC3VpAKX5fgFyuoTuBA8htBuc.roa (hash: OCopTvk4i816iUhH+QXazE3VcJpYfdLODiRXhmC1WXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:17:70:cd:bf:1b:c9:c1:f7:8b:8f:4d:f8:9c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Validity
Not Before: Mar 25 23:01:17 2026 GMT
Not After : Mar 26 23:01:17 2026 GMT
Subject: CN=9e095b0691da41c143cc19b8efb629ea57d9a134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:cb:6b:11:a1:6a:bb:33:e5:cd:78:8d:70:1f:
aa:d4:6e:f5:d8:3f:ad:11:72:5b:c5:b0:e0:9c:fd:
eb:6a:2e:a0:9b:2a:74:ff:38:95:0f:5e:d7:45:d5:
52:dc:92:f1:10:2a:63:2a:5e:3a:bf:f1:f0:13:6a:
0d:c3:0f:ab:0a:67:c9:1f:46:4b:4a:5a:3e:a4:9c:
46:d3:84:ef:20:77:99:9b:ad:04:5d:18:cb:d6:6a:
33:1a:72:36:0f:c2:32:83:20:57:87:cc:24:d7:de:
61:45:5e:80:f4:6e:d4:32:af:32:24:5f:f8:7c:58:
58:52:41:e1:ee:1e:6d:57:fa:2d:0e:b5:7d:be:dc:
d8:48:ee:8a:e9:ef:50:b9:28:c5:7e:3a:bb:78:06:
33:0d:d3:33:0d:e9:12:c9:34:8b:13:52:bd:66:e4:
6c:a8:89:36:76:9c:87:0f:e1:b0:ab:e1:5b:4b:44:
57:13:6d:3c:fc:30:8d:9d:ad:65:3b:75:bc:28:33:
f7:cd:9c:a8:2a:66:52:96:b5:52:26:24:9f:cb:7a:
bc:73:d4:75:d8:af:49:3d:99:26:18:ce:01:0d:3f:
2a:72:5d:36:8f:e2:71:af:9e:02:e7:cf:8e:1d:88:
e7:6d:d6:34:c4:db:f4:cb:e9:9f:c7:7e:dd:6e:4f:
ec:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:09:5B:06:91:DA:41:C1:43:CC:19:B8:EF:B6:29:EA:57:D9:A1:34
X509v3 Authority Key Identifier:
keyid:35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:7a:82:57:8c:5f:d1:44:0c:d8:fc:fc:cb:51:ee:7d:a0:5f:
b2:33:e2:e1:dc:31:5c:fa:b3:9f:ad:5e:3d:90:0c:6b:ec:0a:
08:4e:a5:d0:a3:3c:b3:bd:0b:5a:e8:04:4e:cf:60:dc:08:78:
f0:59:b1:e0:ab:86:62:af:d1:f6:de:0d:8a:ca:55:da:ed:01:
12:31:25:f0:5b:40:09:80:2b:06:9e:8d:65:30:a2:25:04:54:
d5:9f:d4:1f:9c:92:a3:e4:00:56:35:16:d7:49:2b:ad:73:9e:
5d:72:5f:b0:f0:d5:7c:b3:65:f5:94:69:5c:95:c6:59:34:39:
1d:4e:c6:a3:14:97:4f:67:d6:53:6b:b9:67:d1:0a:d8:a6:7b:
3d:4b:73:15:7b:d4:8a:f5:a0:0f:79:5b:e5:90:90:2a:af:9e:
37:29:42:c2:a1:76:5e:1d:b4:66:73:e1:67:c9:bf:7a:97:1d:
85:8c:28:71:6b:a5:f0:97:94:cf:7e:99:6b:ef:f9:71:14:52:
36:4e:85:a7:67:c0:ce:93:ea:c0:3e:cc:e3:77:0f:42:e5:40:
d6:31:e5:db:a1:29:7a:f8:be:95:ce:a0:a9:b8:05:8a:74:41:
82:ca:85:83:82:27:2d:ec:96:a3:a1:89:52:d6:71:5c:65:30:
92:c2:b0:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:59:49 2026 by rpki-client