Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
File: nAMai2oolAx5NrpueCuUoJYr-yc.mft (raw, json)
Hash identifier: 7CFg/+t0uj8Vpbd8gGdU/eWz4WaLH4Hu7bP8I2JI0/A=
Subject key identifier: 52:5B:C9:E7:9C:AA:3C:58:CF:AF:30:1D:C8:BF:3A:8F:79:6D:EC:05
Authority key identifier: 9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
Certificate issuer: /CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Certificate serial: 019E20915881D38109425AD5C155DADD6DDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
Manifest number: 0697
Signing time: Wed 13 May 2026 09:00:56 +0000
Manifest this update: Wed 13 May 2026 09:00:56 +0000
Manifest next update: Thu 14 May 2026 09:00:56 +0000
Files and hashes: 1: 6DYQyU1SL1LMvaa65DMCw3z4hO8.roa (hash: JrefBnA8RHFlhcRliMFJw03ONHlUFhDp419thhgo8CE=)
2: nAMai2oolAx5NrpueCuUoJYr-yc.crl (hash: SttmDwl6ZQBiHYU2fyXcVQB0D5WkXkyQK5MbS80BLRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:58:81:d3:81:09:42:5a:d5:c1:55:da:dd:6d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Validity
Not Before: May 13 09:00:56 2026 GMT
Not After : May 14 09:00:56 2026 GMT
Subject: CN=525bc9e79caa3c58cfaf301dc8bf3a8f796dec05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e5:29:5e:9e:f7:e1:75:26:60:ba:4c:94:1b:
49:96:c5:87:26:ed:62:ad:d8:4e:78:9d:f9:ba:ea:
1f:5a:8a:e4:6e:75:69:1b:4b:8b:1e:c7:02:7e:4c:
7a:6e:67:06:b7:af:83:ec:c9:56:9c:c1:30:22:6d:
52:0a:69:f0:46:4b:fa:ba:35:21:8a:08:8a:55:f7:
ab:4e:86:24:3d:4e:a4:53:af:63:1d:04:4b:43:5a:
55:85:a2:64:64:08:6c:88:ff:fd:29:29:0f:1d:1a:
1e:ac:7c:67:8a:1f:ce:7b:2c:f5:35:26:46:10:08:
9a:b5:6b:01:3b:28:b0:6c:da:81:f3:79:a7:c4:73:
95:73:c1:d3:03:d4:8b:a3:7b:fa:69:b5:5a:83:eb:
1a:7f:28:25:f5:ec:b9:67:05:02:70:c7:cd:4d:32:
70:41:46:5e:37:be:86:69:d9:f6:21:5a:65:f5:e1:
3d:75:1f:fd:c1:76:f1:ba:f4:2c:fd:42:2d:9a:9c:
4e:f7:ce:6a:a7:d3:48:62:80:61:1f:c1:8a:c6:f0:
85:0a:7a:c9:e0:6e:62:51:2a:54:2d:95:80:79:9f:
aa:05:f1:e4:31:7b:a5:c5:e5:38:5e:c1:43:9e:ee:
d3:19:d6:23:f3:f9:c8:f7:f1:3f:9a:80:bb:6e:23:
b8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5B:C9:E7:9C:AA:3C:58:CF:AF:30:1D:C8:BF:3A:8F:79:6D:EC:05
X509v3 Authority Key Identifier:
keyid:9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:f6:bc:50:37:7b:32:9f:6e:fd:3f:88:1e:3c:ba:9e:53:e7:
89:36:12:1f:db:cc:55:a0:76:ec:d6:1a:32:be:67:82:a3:bc:
db:47:ff:78:3d:07:90:2a:67:f6:36:ff:1e:25:8f:57:da:60:
12:62:aa:f4:a2:25:2e:bf:b8:0b:e9:0d:f9:ff:7f:4a:72:2b:
d0:20:1a:1b:ca:f1:95:07:a1:03:e2:7d:f5:f6:d2:9a:c8:ce:
dd:1e:43:2c:ec:7a:1a:a8:1f:23:ed:a1:dc:27:7a:99:62:25:
30:37:08:74:f8:30:56:58:1d:f8:e6:4e:ef:16:c9:23:2a:9a:
fe:1b:fe:cb:0d:35:98:6b:b6:1b:08:88:52:a5:bd:39:ff:cd:
dd:5c:13:37:90:6b:90:aa:55:ae:98:2a:a8:0c:eb:fa:b7:b9:
ec:5a:35:0f:58:2e:3a:25:9e:16:be:15:ab:53:61:0b:2a:c4:
6a:8f:d5:09:2e:48:3e:81:85:49:a3:9f:5f:2e:ef:05:a0:25:
65:6a:4d:fe:e7:e3:26:03:8b:52:80:13:33:5d:13:2a:05:b6:
ea:44:ac:f9:55:0d:b1:04:fd:d6:04:32:e6:e8:7b:dd:9b:88:
eb:37:e0:ae:8e:41:a7:3a:59:06:cc:ba:87:75:32:a4:7d:65:
cd:5d:0f:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:39:12 2026 by rpki-client