Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
File: nj3BkwnmeMFIJfxyCDyh3seEP00.mft (raw, json)
Hash identifier: tSQDboN+Av2GkqCq1PNRfG+nhQOBt1oxY1Dv+4GejWI=
Subject key identifier: 78:7F:ED:19:D7:FA:09:C6:99:BF:D3:FB:8A:4A:BB:9B:44:BE:82:3F
Authority key identifier: 9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D
Certificate issuer: /CN=9e3dc19309e678c14825fc72083ca1dec7843f4d
Certificate serial: 019D292960EC3904AC6B12BC0BA1884601E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
Manifest number: 16A4
Signing time: Thu 26 Mar 2026 08:01:10 +0000
Manifest this update: Thu 26 Mar 2026 08:01:10 +0000
Manifest next update: Fri 27 Mar 2026 08:01:10 +0000
Files and hashes: 1: RiT1T6npNSXEXd8fhbHiM4637q0.roa (hash: NHkdWxbHLzyfPJ1mnvKUICI3ejIRSL1dMC4QU4Yd+Ig=)
2: nj3BkwnmeMFIJfxyCDyh3seEP00.crl (hash: cIpGVmfgsqY8SOEmueer3A4JtoCB1x1kCETdQsXeWsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:60:ec:39:04:ac:6b:12:bc:0b:a1:88:46:01:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3dc19309e678c14825fc72083ca1dec7843f4d
Validity
Not Before: Mar 26 08:01:10 2026 GMT
Not After : Mar 27 08:01:10 2026 GMT
Subject: CN=787fed19d7fa09c699bfd3fb8a4abb9b44be823f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:04:f9:e2:2c:a1:a9:2b:45:f6:ce:02:c4:3b:
a4:e4:8c:54:34:c6:0a:55:97:2f:b3:ef:72:0d:6f:
55:27:84:31:17:a3:ea:1e:c4:85:92:b5:b1:9f:d4:
ae:94:b7:0d:a1:6b:7b:00:57:fd:4e:30:db:bb:09:
fd:86:ed:eb:c9:2f:65:64:5f:eb:8f:ad:b8:69:5c:
e6:46:3c:84:d1:5a:89:d2:0b:97:fb:4d:f8:71:ef:
1e:a4:c0:3b:eb:7e:d0:77:50:6d:e2:77:98:52:d0:
9a:4b:9c:76:7e:42:b3:41:54:f2:71:96:36:c3:c1:
ad:d8:5a:cf:9b:a3:db:aa:1b:72:d3:9d:6a:28:ce:
52:1d:d1:a3:f8:2d:bb:21:e2:72:6e:64:28:00:94:
02:f2:fd:03:2b:e6:32:e5:31:ba:63:55:eb:27:4b:
23:ea:e5:32:36:a2:2b:b3:51:c2:f2:bf:21:47:6c:
5b:7d:18:49:20:1b:8b:79:ac:b8:66:75:2b:aa:57:
e9:30:f9:90:28:eb:ce:35:3f:af:9e:c1:cd:ae:90:
70:bd:60:8e:c2:94:83:10:31:da:cb:65:f9:57:ce:
fa:f0:10:2e:11:5c:f8:ad:1a:a7:e5:a1:1d:8e:91:
ee:96:9f:1a:96:b8:80:55:c0:a8:6b:92:0d:35:86:
e3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:7F:ED:19:D7:FA:09:C6:99:BF:D3:FB:8A:4A:BB:9B:44:BE:82:3F
X509v3 Authority Key Identifier:
keyid:9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:bf:51:96:7b:36:c0:21:e1:97:4c:a6:53:7a:d6:9e:18:34:
03:fa:e6:a9:2d:67:ad:99:77:8f:f4:69:01:e0:1a:57:90:df:
63:90:4a:df:e2:37:7f:bd:fb:b8:1a:38:b6:23:7d:33:19:55:
b8:07:f8:d8:56:88:10:cb:b9:23:35:bd:38:2d:9a:5c:70:73:
ed:71:b4:62:87:20:b4:49:aa:e8:89:b2:9d:46:80:17:17:60:
62:bb:63:0a:03:24:20:d1:6d:8d:28:2f:b0:b5:4e:52:76:cd:
36:fe:b4:40:0b:76:e3:50:8f:f5:a5:78:f1:eb:7f:31:8b:27:
43:28:22:c1:a7:18:5c:45:af:d9:e4:17:83:f2:ef:09:4b:70:
82:95:6e:fd:cc:6d:26:c3:1c:c8:bf:de:04:2b:51:4f:14:8c:
f8:a3:13:3d:60:69:fa:ff:eb:42:98:17:6b:1a:4a:a9:60:12:
f4:50:5c:5e:22:c3:15:9b:ae:0e:bb:82:20:ac:30:c1:bc:ed:
79:db:3b:d0:58:2c:8f:a7:a5:bd:fb:71:f2:2c:d4:92:50:4d:
bc:3c:05:0a:09:16:31:db:ce:7f:f4:9b:ed:22:89:31:52:1a:
64:52:2e:b2:e6:2b:84:82:a9:1a:bc:f6:12:92:cf:32:46:99:
98:0e:4f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:22:50 2026 by rpki-client