Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
File: nAMai2oolAx5NrpueCuUoJYr-yc.mft (raw, json)
Hash identifier: 1DohrdAwFKDK0UnLHmjGn2eoCwbKK9bbfu8k6QZBdiM=
Subject key identifier: CA:BE:03:5D:6C:87:FE:CF:56:7A:AB:1B:4E:B4:2E:65:C5:8A:A9:0F
Authority key identifier: 9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
Certificate issuer: /CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Certificate serial: 019D296139CFC8B5AB760DE6D5B1C53A41CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
Manifest number: 0617
Signing time: Thu 26 Mar 2026 09:02:10 +0000
Manifest this update: Thu 26 Mar 2026 09:02:10 +0000
Manifest next update: Fri 27 Mar 2026 09:02:10 +0000
Files and hashes: 1: 6DYQyU1SL1LMvaa65DMCw3z4hO8.roa (hash: JrefBnA8RHFlhcRliMFJw03ONHlUFhDp419thhgo8CE=)
2: nAMai2oolAx5NrpueCuUoJYr-yc.crl (hash: FGOD5EEgTQXKUl21OwC0G7U4dPPJ8TnG7D2W50A3TtA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:39:cf:c8:b5:ab:76:0d:e6:d5:b1:c5:3a:41:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27
Validity
Not Before: Mar 26 09:02:10 2026 GMT
Not After : Mar 27 09:02:10 2026 GMT
Subject: CN=cabe035d6c87fecf567aab1b4eb42e65c58aa90f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:32:16:a9:58:c8:c6:9d:0e:93:e4:6a:5b:57:
15:3a:de:5a:46:3f:ed:fe:89:93:cb:21:05:3b:3d:
5d:00:01:96:8d:d6:4e:7b:34:83:21:d6:c7:76:b5:
4b:ea:9e:a9:de:99:c0:82:66:02:1c:f4:52:6a:32:
6f:f7:9c:c9:75:dd:6c:32:73:53:93:cb:6c:25:e5:
2d:85:a0:7d:53:72:b4:78:b8:ba:ad:d8:be:04:1e:
dc:8f:88:87:80:a2:bd:3b:f1:a1:1c:a2:16:4e:a4:
57:62:56:32:95:1c:a4:53:7b:c5:26:85:81:e5:22:
08:04:60:48:75:0e:ee:c6:1d:c7:cc:0f:b2:ce:c7:
19:92:7b:ed:c1:c2:d8:ec:ff:f5:49:39:4b:df:67:
e7:3c:d3:e4:46:ed:28:6e:b9:c4:43:22:0d:50:8f:
69:b7:9a:1e:b2:e1:e4:62:b6:b7:75:b6:4a:0d:99:
a2:a0:99:4b:38:b5:5b:5e:36:35:d1:2c:42:3e:b6:
ab:e7:f3:f2:0e:5e:6e:3e:e7:4f:4d:b0:f5:28:55:
69:cf:9a:ad:85:75:3f:ff:0b:35:e0:d9:fb:8a:6a:
63:d5:3a:17:ab:98:55:bd:0f:f9:22:c5:8b:74:98:
3c:30:fe:f9:0f:3f:ab:5b:ca:a1:0b:d8:37:a8:ab:
0d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:BE:03:5D:6C:87:FE:CF:56:7A:AB:1B:4E:B4:2E:65:C5:8A:A9:0F
X509v3 Authority Key Identifier:
keyid:9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:20:34:40:a2:97:0e:e8:d6:06:4b:8b:5a:dd:be:f3:74:57:
28:a3:f8:10:a4:fd:2b:f1:da:63:8e:2b:5a:38:bd:9f:eb:ea:
11:9c:f6:8b:b9:e9:bd:af:74:cb:ab:5c:a5:94:5e:8a:ba:6b:
ad:13:0c:1c:04:72:b5:39:0b:52:d2:79:60:8f:20:0a:0f:a6:
e7:1d:de:09:ee:27:3b:38:04:60:ac:c3:85:3a:d0:a7:52:bc:
21:26:83:6d:85:c4:56:2b:f2:c5:ec:a6:f9:20:52:73:13:ad:
dd:67:16:d4:0e:ce:4c:f8:7c:96:89:51:39:1d:11:ee:84:a6:
c1:97:01:37:ef:6f:d2:5e:9d:0a:3b:75:29:38:d3:c0:5a:c6:
c1:ff:cd:00:da:6a:27:e9:68:d6:d3:a5:6c:21:91:95:ac:5f:
93:08:fb:ac:e1:a8:73:50:12:38:27:fd:a0:fc:a8:03:d2:c7:
e6:d0:d2:79:06:63:5d:34:3c:b2:73:ba:2b:45:f5:25:4b:1b:
ba:87:97:79:53:f0:e1:c8:13:df:10:86:91:2a:63:47:8b:c8:
c5:93:37:15:06:da:9f:d3:f6:fe:71:8a:c5:9c:e5:49:02:b9:
f9:c6:07:ed:0b:33:00:3e:ef:db:9a:a0:74:24:c0:ab:a2:3e:
b3:4d:35:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pYTnPyLWrdg3m1bHFOkHNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljMDMxYThiNmEyODk0MGM3OTM2YmE2ZTc4MmI5NGEwOTYy
YmZiMjcwHhcNMjYwMzI2MDkwMjEwWhcNMjYwMzI3MDkwMjEwWjAzMTEwLwYDVQQD
EyhjYWJlMDM1ZDZjODdmZWNmNTY3YWFiMWI0ZWI0MmU2NWM1OGFhOTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArDIWqVjIxp0Ok+RqW1cVOt5aRj/t
/omTyyEFOz1dAAGWjdZOezSDIdbHdrVL6p6p3pnAgmYCHPRSajJv95zJdd1sMnNT
k8tsJeUthaB9U3K0eLi6rdi+BB7cj4iHgKK9O/GhHKIWTqRXYlYylRykU3vFJoWB
5SIIBGBIdQ7uxh3HzA+yzscZknvtwcLY7P/1STlL32fnPNPkRu0obrnEQyINUI9p
t5oesuHkYra3dbZKDZmioJlLOLVbXjY10SxCPrar5/PyDl5uPudPTbD1KFVpz5qt
hXU//ws14Nn7impj1ToXq5hVvQ/5IsWLdJg8MP75Dz+rW8qhC9g3qKsN6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMq+A11sh/7PVnqrG060LmXFiqkPMB8GA1UdIwQY
MBaAFJwDGotqKJQMeTa6bngrlKCWK/snMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8zNDMzZmUtNjQwOC00NjhkLTgxZTQt
ZjAzZWI4NzQwYzNlLzEvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8zNDMzZmUtNjQwOC00NjhkLTgxZTQtZjAzZWI4NzQwYzNl
LzEvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaCA0QKKX
DujWBkuLWt2+83RXKKP4EKT9K/HaY44rWji9n+vqEZz2i7npva90y6tcpZReirpr
rRMMHARytTkLUtJ5YI8gCg+m5x3eCe4nOzgEYKzDhTrQp1K8ISaDbYXEVivyxeym
+SBScxOt3WcW1A7OTPh8lolROR0R7oSmwZcBN+9v0l6dCjt1KTjTwFrGwf/NANpq
J+lo1tOlbCGRlaxfkwj7rOGoc1ASOCf9oPyoA9LH5tDSeQZjXTQ8snO6K0X1JUsb
uoeXeVPw4cgT3xCGkSpjR4vIxZM3FQban9P2/nGKxZzlSQK5+cYH7QszAD7v25qg
dCTAq6I+s001gg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 15:18:40 2026 by rpki-client