Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
File: NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft (raw, json)
Hash identifier: EwTh0JkVHTyccIlb0h/lg3mf7CI2eBjV+CH9jzyNq5Q=
Subject key identifier: FA:8A:D5:04:74:50:27:FB:43:76:AA:CC:5A:A6:CB:EF:6B:C5:2C:79
Authority key identifier: 37:25:8E:BE:E6:74:5F:06:D7:33:E4:B6:DD:0D:27:A7:3B:FD:FB:65
Certificate issuer: /CN=37258ebee6745f06d733e4b6dd0d27a73bfdfb65
Certificate serial: 019D28F216D6552DE7685A63BF4163F47C53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
Manifest number: 15A7
Signing time: Thu 26 Mar 2026 07:00:47 +0000
Manifest this update: Thu 26 Mar 2026 07:00:47 +0000
Manifest next update: Fri 27 Mar 2026 07:00:47 +0000
Files and hashes: 1: NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl (hash: zlQjV09gehsBR33yhf5gQpfSZrMSYFopd+3mC0AJFv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:16:d6:55:2d:e7:68:5a:63:bf:41:63:f4:7c:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37258ebee6745f06d733e4b6dd0d27a73bfdfb65
Validity
Not Before: Mar 26 07:00:47 2026 GMT
Not After : Mar 27 07:00:47 2026 GMT
Subject: CN=fa8ad504745027fb4376aacc5aa6cbef6bc52c79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4d:1d:5a:b7:45:8f:c2:1e:21:16:d7:14:e4:
1a:f1:8d:9e:91:88:ba:52:b7:8f:d5:90:50:7e:ea:
c4:38:0f:d2:7f:82:c7:f4:8d:15:a7:c2:21:05:a9:
3e:db:e8:a3:3a:a8:a0:1f:be:f0:11:ee:d3:06:31:
7b:53:85:1d:34:0f:71:1e:e8:d3:61:cb:58:06:ed:
42:5e:c1:dc:1e:09:c5:91:68:98:3d:4d:6e:b1:1b:
e5:0f:b0:b8:c7:9a:b0:bc:54:40:70:bb:8d:33:ed:
11:da:e6:31:16:b1:a4:e6:c2:a2:96:df:cd:42:29:
f1:2b:28:4a:3d:ef:a4:07:e4:d3:d2:a7:f3:1d:7a:
91:57:7e:88:3e:07:cf:42:0b:00:a9:09:01:de:5d:
9b:54:4c:74:f6:82:c9:42:97:5b:22:0f:a5:22:f6:
d7:80:7c:1e:ce:de:fb:f6:42:12:b5:d0:c2:55:9a:
fa:55:47:01:a5:70:5c:a4:52:23:a3:16:98:7b:9a:
86:35:42:1f:6f:62:de:5a:54:cc:78:cb:e9:b0:f2:
cf:57:e9:51:c7:ab:18:4d:fc:44:da:f5:31:f5:15:
76:c8:2d:4a:45:29:ce:13:5f:cb:92:7c:da:77:66:
7c:d9:fa:53:96:c4:e9:dc:a1:de:bf:6d:74:ba:3d:
c7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:8A:D5:04:74:50:27:FB:43:76:AA:CC:5A:A6:CB:EF:6B:C5:2C:79
X509v3 Authority Key Identifier:
keyid:37:25:8E:BE:E6:74:5F:06:D7:33:E4:B6:DD:0D:27:A7:3B:FD:FB:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:1c:df:24:7c:ce:96:b6:bc:14:ab:ba:65:9e:f9:53:d5:4b:
59:76:60:14:06:3a:e9:d4:18:5b:59:87:cf:1f:84:58:d9:07:
1a:b7:dd:14:b9:13:a1:2b:04:27:03:2a:cf:0d:d0:ba:29:ac:
f6:f5:16:14:28:27:9b:2b:84:6c:fd:6e:cc:33:c2:46:e2:f8:
b2:53:0a:8a:b8:ce:2e:06:55:d4:43:58:88:12:7b:0d:48:b0:
0c:18:20:26:38:11:e3:a0:7a:27:ef:0e:e2:9c:80:81:7a:be:
57:34:0f:94:bf:e6:d6:31:6b:32:93:01:8e:ed:cc:e4:17:4e:
57:86:e9:74:66:2b:b6:84:04:7d:33:46:55:37:26:28:5d:4c:
fb:55:33:70:63:83:9b:09:fc:46:fe:7b:18:3a:87:83:78:0d:
21:f9:7f:f5:7f:1d:c6:d5:c5:73:76:cf:5b:b7:b0:ca:fb:42:
c9:02:38:b2:c3:f6:57:29:19:9e:c6:3a:d2:f9:1b:38:a9:36:
13:4a:55:d1:3b:a2:4c:ae:3b:5e:7c:e4:bf:41:27:b6:50:21:
06:e6:3f:c5:ff:aa:63:58:fe:ba:b2:85:7e:0e:cf:52:59:c8:
ef:a4:81:13:7e:fb:aa:f4:25:ea:be:71:12:c6:10:b4:fd:69:
2e:c2:2e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:37:19 2026 by rpki-client