Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
File: ny83TJpzj63o-FDKq11507kARYQ.mft (raw, json)
Hash identifier: gI70vgPpqaTapgjA+JjND+jj426Lly2yaPHbV8qIv18=
Subject key identifier: 41:3B:85:22:F9:2F:B5:D1:BB:32:CB:1B:90:C6:96:21:B1:36:9D:80
Authority key identifier: 9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
Certificate issuer: /CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Certificate serial: 019D27047DB5A43C546B2D821C9CF19204A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
Manifest number: 1882
Signing time: Wed 25 Mar 2026 22:01:38 +0000
Manifest this update: Wed 25 Mar 2026 22:01:38 +0000
Manifest next update: Thu 26 Mar 2026 22:01:38 +0000
Files and hashes: 1: ny83TJpzj63o-FDKq11507kARYQ.crl (hash: FD7vckwMSeOXGhB+OpG2ujQSkoM6vnX0+hJNoeuH80w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:7d:b5:a4:3c:54:6b:2d:82:1c:9c:f1:92:04:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Validity
Not Before: Mar 25 22:01:38 2026 GMT
Not After : Mar 26 22:01:38 2026 GMT
Subject: CN=413b8522f92fb5d1bb32cb1b90c69621b1369d80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:43:24:a3:08:15:3d:09:65:7b:cb:ae:a3:b8:
7d:d7:c5:04:c4:63:83:26:e2:f6:ff:b4:63:0b:79:
5e:3d:4c:49:d1:ef:cd:c2:31:eb:b1:fa:de:82:55:
02:fa:b7:77:bc:11:46:92:ec:f1:de:e6:1f:97:d7:
92:1c:70:66:36:77:aa:02:09:c9:90:99:67:0a:fd:
29:d2:45:b9:88:29:f0:5b:31:2a:0d:f1:93:13:1c:
09:05:32:47:79:00:36:c2:5e:9b:2e:81:78:a1:6c:
bf:8f:ff:d5:d4:95:80:f8:4f:4c:18:3b:c3:66:fe:
69:e7:4d:37:23:b4:b1:6a:cb:f8:db:bc:19:a6:be:
e1:f3:cc:2b:cb:53:ba:39:3c:1a:ef:84:eb:65:f9:
05:23:9e:6a:b1:4d:34:ff:3c:3d:33:c5:f9:b0:45:
7f:21:d4:cb:b1:bb:95:84:3d:52:32:1f:f1:cd:c3:
a5:f1:1a:56:51:e2:88:be:5f:91:2a:4e:0c:0e:18:
75:62:18:cd:1b:49:2e:94:ee:f3:3a:ec:dd:b9:df:
a1:ae:69:47:03:7d:73:41:6a:8d:a7:45:0d:c0:4b:
70:e5:c1:67:fd:8c:5e:60:6b:01:b2:a3:eb:69:be:
84:f3:4b:f1:1a:d1:55:56:5e:fe:6d:29:8e:11:fd:
5b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:3B:85:22:F9:2F:B5:D1:BB:32:CB:1B:90:C6:96:21:B1:36:9D:80
X509v3 Authority Key Identifier:
keyid:9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:2b:09:d9:53:5d:3d:ba:01:8e:db:7f:72:21:ec:5b:5a:0f:
a8:ee:32:57:03:ec:57:49:76:05:47:3e:f2:2d:f6:6c:07:e9:
93:64:f7:e9:90:ee:cc:ad:e8:05:2f:03:03:7c:e0:44:e1:7a:
a9:31:73:ae:52:16:24:2a:63:13:fa:5d:b3:40:74:18:87:79:
10:5d:53:29:b9:50:40:69:08:14:b7:2f:9f:39:f4:1a:01:2e:
06:36:90:b9:c0:27:21:8e:a8:7c:7f:3c:b7:2c:af:db:4d:81:
37:ad:ea:4b:c6:d9:0d:23:20:2f:db:0f:5f:89:95:c2:f5:7e:
2c:f0:e1:c3:09:4b:72:d5:0f:9c:8b:c2:ad:1f:ef:a8:2d:31:
40:62:53:41:8b:c9:67:4b:13:b1:20:a7:ed:b8:df:c1:f6:70:
5f:ee:ef:14:5d:9c:c3:48:78:34:28:e9:5d:52:6a:ba:3c:bd:
0b:f8:22:05:bb:96:09:08:20:49:66:ee:a6:15:7b:fa:2d:82:
9a:3f:7f:26:bb:91:72:9e:9a:92:45:14:01:85:ce:15:74:8f:
86:41:94:22:58:5d:d3:ba:e4:ed:80:ab:20:ec:bc:e2:bd:61:
07:4f:0e:6c:1c:cb:b1:50:6c:d1:82:3e:f8:26:b6:ae:86:ba:
c1:5c:07:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBH21pDxUay2CHJzxkgSjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMmYzNzRjOWE3MzhmYWRlOGY4NTBjYWFiNWQ3OWQzYjkw
MDQ1ODQwHhcNMjYwMzI1MjIwMTM4WhcNMjYwMzI2MjIwMTM4WjAzMTEwLwYDVQQD
Eyg0MTNiODUyMmY5MmZiNWQxYmIzMmNiMWI5MGM2OTYyMWIxMzY5ZDgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjkMkowgVPQlle8uuo7h918UExGOD
JuL2/7RjC3lePUxJ0e/NwjHrsfreglUC+rd3vBFGkuzx3uYfl9eSHHBmNneqAgnJ
kJlnCv0p0kW5iCnwWzEqDfGTExwJBTJHeQA2wl6bLoF4oWy/j//V1JWA+E9MGDvD
Zv5p5003I7Sxasv427wZpr7h88wry1O6OTwa74TrZfkFI55qsU00/zw9M8X5sEV/
IdTLsbuVhD1SMh/xzcOl8RpWUeKIvl+RKk4MDhh1YhjNG0kulO7zOuzdud+hrmlH
A31zQWqNp0UNwEtw5cFn/YxeYGsBsqPrab6E80vxGtFVVl7+bSmOEf1byQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEE7hSL5L7XRuzLLG5DGliGxNp2AMB8GA1UdIwQY
MBaAFJ8vN0yac4+t6PhQyqtdedO5AEWEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnk4M1RKcHpqNjNvLUZES3ExMTUwN2tBUllRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS82MzRlNzYtNWM1Zi00NGM0LWI4YTQt
NTI0ZTkzMGU1ZmQxLzEvbnk4M1RKcHpqNjNvLUZES3ExMTUwN2tBUllRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS82MzRlNzYtNWM1Zi00NGM0LWI4YTQtNTI0ZTkzMGU1ZmQx
LzEvbnk4M1RKcHpqNjNvLUZES3ExMTUwN2tBUllRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAESsJ2VNd
PboBjtt/ciHsW1oPqO4yVwPsV0l2BUc+8i32bAfpk2T36ZDuzK3oBS8DA3zgROF6
qTFzrlIWJCpjE/pds0B0GId5EF1TKblQQGkIFLcvnzn0GgEuBjaQucAnIY6ofH88
tyyv202BN63qS8bZDSMgL9sPX4mVwvV+LPDhwwlLctUPnIvCrR/vqC0xQGJTQYvJ
Z0sTsSCn7bjfwfZwX+7vFF2cw0h4NCjpXVJqujy9C/giBbuWCQggSWbuphV7+i2C
mj9/JruRcp6akkUUAYXOFXSPhkGUIlhd07rk7YCrIOy84r1hB08ObBzLsVBs0YI+
+Ca2roa6wVwHsw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:51:54 2026 by rpki-client