Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
File: NmTkRiopAqUvgm2uOFZXMe_FvdM.mft (raw, json)
Hash identifier: oKsaclZ+KmO9RcLhED8r0QgQRMQPCQ5P9iwCpjMyseo=
Subject key identifier: 2F:98:3C:17:6E:4B:42:46:13:0E:03:4D:35:8A:E0:B8:A3:CB:65:25
Authority key identifier: 36:64:E4:46:2A:29:02:A5:2F:82:6D:AE:38:56:57:31:EF:C5:BD:D3
Certificate issuer: /CN=3664e4462a2902a52f826dae38565731efc5bdd3
Certificate serial: 019D29CDE7D5FC01443AFF66DA9152F1FB16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
Manifest number: 17D8
Signing time: Thu 26 Mar 2026 11:00:53 +0000
Manifest this update: Thu 26 Mar 2026 11:00:53 +0000
Manifest next update: Fri 27 Mar 2026 11:00:53 +0000
Files and hashes: 1: MYmRAFd2hTKulpERWcjfyqZP9kI.roa (hash: 9t4qZjTg0yDx0o1CgqGkaBklgr114UOMbCzHn3lQ74o=)
2: NmTkRiopAqUvgm2uOFZXMe_FvdM.crl (hash: I+DnFHgtgvLsUMn0npVZ/Bh3wy+YU04krvTsIgcp/mU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:cd:e7:d5:fc:01:44:3a:ff:66:da:91:52:f1:fb:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3664e4462a2902a52f826dae38565731efc5bdd3
Validity
Not Before: Mar 26 11:00:53 2026 GMT
Not After : Mar 27 11:00:53 2026 GMT
Subject: CN=2f983c176e4b4246130e034d358ae0b8a3cb6525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:22:55:22:f5:fd:39:3d:43:d3:24:87:1c:ef:
f2:94:98:d1:c4:f7:ce:f4:63:e5:79:13:55:77:87:
3f:7a:ac:6e:12:43:ca:f9:ae:56:4c:0e:a6:b1:6d:
54:06:ee:83:fd:33:45:01:be:66:b2:64:78:93:e6:
c3:2d:83:d7:63:29:54:99:1c:7c:8f:a3:1c:96:57:
bb:02:6e:39:d1:82:fb:5e:ee:59:b0:ad:71:46:40:
97:fe:b7:21:1d:6d:f5:fd:85:80:12:e2:be:b5:42:
1f:97:d7:b5:33:1b:92:6a:aa:e5:ac:07:04:fa:3b:
47:dc:e7:1b:b2:5b:21:1f:77:4b:89:67:a0:57:b3:
0b:d6:6e:ef:d9:a7:09:a6:95:47:e1:49:65:75:fb:
ab:18:e0:74:67:2a:2d:0c:68:9f:dc:94:78:ea:a7:
7b:e2:09:1f:5c:c5:19:cf:3e:93:86:35:0d:b2:c1:
a9:8b:0d:44:df:13:8b:c9:41:5a:f7:7c:d6:9e:33:
9f:70:f7:8f:ef:15:e6:ad:fa:b2:43:85:91:25:57:
27:e2:bf:68:83:55:01:2d:72:ad:c4:fb:53:ce:34:
3b:6b:33:09:bd:7d:c2:1c:ca:9b:91:ba:d4:d4:15:
a4:b0:d3:2e:f9:6f:75:f9:c5:62:54:b0:dd:6c:5d:
ad:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:98:3C:17:6E:4B:42:46:13:0E:03:4D:35:8A:E0:B8:A3:CB:65:25
X509v3 Authority Key Identifier:
keyid:36:64:E4:46:2A:29:02:A5:2F:82:6D:AE:38:56:57:31:EF:C5:BD:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:ea:e5:f0:72:5c:55:fd:8f:1e:e6:19:50:72:a2:e2:2d:17:
aa:73:6e:d7:47:64:7d:9f:d7:f1:fa:09:64:54:33:a3:44:9c:
5f:41:48:5e:1d:48:c7:21:2b:1e:df:a3:c2:b1:80:4e:04:5c:
a8:cd:63:59:ca:7f:11:33:58:e5:1d:13:b9:ac:22:2a:d5:94:
3f:79:33:f1:6f:42:bf:bb:58:75:84:67:94:c0:3b:aa:36:a8:
82:1b:ba:6d:57:89:5d:bd:0a:26:06:e3:11:78:70:e0:2b:f8:
bf:ec:32:22:74:7a:56:87:a9:2a:b2:46:88:64:ad:2d:25:ca:
95:07:e0:51:5d:75:61:cf:b7:7d:b4:eb:71:c1:a2:d6:97:56:
4b:40:47:af:e7:2c:08:07:db:4d:22:77:da:a1:5f:10:05:5b:
61:d1:b9:8f:c6:e2:35:92:b2:39:f2:ea:f1:95:1b:0f:e2:9d:
ed:1e:ed:56:27:04:b0:59:45:9c:d8:4b:31:78:4a:ce:f4:77:
9f:ae:59:8e:90:d2:33:c0:41:e1:e1:36:8d:20:d3:ac:86:ec:
d5:9d:b3:64:37:50:84:14:5a:00:2a:09:58:39:5b:88:33:7e:
7e:d6:c0:7e:cf:e3:97:82:cf:45:26:7d:dd:44:66:d9:08:81:
f8:67:c6:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:40:16 2026 by rpki-client