Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
File: n34J7YuBilTMw-tCb2elWhOKuH0.mft (raw, json)
Hash identifier: njEEzPk183mxvAEc+cFR2ymjD1apC46B7PuCHZpc7Hk=
Subject key identifier: F1:28:E1:17:AE:3A:20:22:AE:32:17:51:EE:46:F0:12:1F:AA:83:E9
Authority key identifier: 9F:7E:09:ED:8B:81:8A:54:CC:C3:EB:42:6F:67:A5:5A:13:8A:B8:7D
Certificate issuer: /CN=9f7e09ed8b818a54ccc3eb426f67a55a138ab87d
Certificate serial: 019D28F2EDEA1EE1692F57BA206E5695453D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
Manifest number: 0C93
Signing time: Thu 26 Mar 2026 07:01:42 +0000
Manifest this update: Thu 26 Mar 2026 07:01:42 +0000
Manifest next update: Fri 27 Mar 2026 07:01:42 +0000
Files and hashes: 1: n34J7YuBilTMw-tCb2elWhOKuH0.crl (hash: d+naSs3f2SpdO4sgUUjOQeVsES/to8yaKfTTHPFC1mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:ed:ea:1e:e1:69:2f:57:ba:20:6e:56:95:45:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f7e09ed8b818a54ccc3eb426f67a55a138ab87d
Validity
Not Before: Mar 26 07:01:42 2026 GMT
Not After : Mar 27 07:01:42 2026 GMT
Subject: CN=f128e117ae3a2022ae321751ee46f0121faa83e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1c:1e:2e:b6:95:40:8b:54:96:f4:ed:ed:91:
9e:5c:a0:27:1f:b8:ae:5d:9a:f8:d3:6a:c5:4f:e9:
04:3a:92:75:cb:3b:5d:4c:52:a3:99:f4:35:8c:f3:
a6:e4:93:06:86:76:68:b8:b9:80:84:c4:5a:66:8d:
f1:d3:50:32:94:4d:8d:24:e8:d2:86:1c:16:a8:68:
53:a5:71:26:9c:7d:8b:14:5c:61:5f:3a:57:02:ce:
f1:9d:dd:d8:3f:0f:f6:8a:7a:00:b5:4a:cc:16:67:
1d:10:9b:77:f5:5a:c5:4d:2c:f0:16:60:90:a7:09:
69:0a:d2:dd:31:fa:24:3c:bb:d5:52:f1:d3:d5:ca:
58:19:e2:5e:72:ba:b7:40:67:2d:87:ac:94:51:fd:
ec:49:d8:5d:29:b9:fc:bb:f3:9d:d5:a7:61:1e:d6:
d8:75:38:27:9e:e3:50:d1:9b:d7:fd:60:d9:29:f7:
9a:c5:ae:cf:5a:be:ee:62:ca:23:3d:50:c4:9c:c0:
f1:9b:d9:21:25:28:d6:1f:b0:45:d7:31:38:9e:db:
a3:80:d0:45:b1:00:eb:7c:5e:a6:28:55:35:1f:85:
91:58:ac:31:62:97:ea:9f:8e:40:98:44:27:2a:9d:
39:36:20:97:27:54:c6:43:75:d6:c4:68:cf:f6:4a:
3e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:28:E1:17:AE:3A:20:22:AE:32:17:51:EE:46:F0:12:1F:AA:83:E9
X509v3 Authority Key Identifier:
keyid:9F:7E:09:ED:8B:81:8A:54:CC:C3:EB:42:6F:67:A5:5A:13:8A:B8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:ce:17:39:fa:4b:b8:17:de:4e:ad:08:0e:6b:74:64:c7:b2:
59:13:5d:76:22:6f:8a:c3:09:69:2f:b7:07:bc:ee:29:a0:a7:
c0:02:5c:b0:79:f9:0e:e4:c4:f5:ca:f1:fb:64:e0:7b:2a:ea:
94:fc:b4:6d:df:a5:4f:3e:3e:d3:f9:62:52:84:14:d2:5f:1b:
48:7a:19:94:49:52:dc:c6:4b:57:bb:44:49:2d:5e:5e:eb:22:
76:74:e4:e8:5e:02:07:10:59:f4:14:a5:7a:2e:76:72:78:8a:
49:94:99:e0:95:1a:8a:8b:ee:4e:cd:a6:a7:ac:23:73:5d:0a:
08:b1:84:60:51:38:10:fd:2d:7b:0e:9c:ab:08:49:b9:cd:ef:
2b:89:9e:ac:f6:51:1d:6a:af:f6:b1:4b:a6:b7:1c:16:8b:42:
f2:de:06:5f:af:17:f9:eb:a8:22:37:f6:41:38:6c:92:86:f5:
3b:96:f5:0c:66:50:c3:87:aa:28:fe:b9:08:e1:2c:89:1f:92:
78:5c:83:ee:88:2a:8b:90:1a:17:76:d4:e0:23:6a:53:d8:87:
12:79:bb:49:12:ca:f3:e8:2f:ff:dd:34:7c:ff:32:aa:71:1e:
22:b9:95:db:9d:8a:d7:96:3e:d9:2e:41:0a:1d:a3:06:cb:59:
ae:6c:46:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8u3qHuFpL1e6IG5WlUU9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmN2UwOWVkOGI4MThhNTRjY2MzZWI0MjZmNjdhNTVhMTM4
YWI4N2QwHhcNMjYwMzI2MDcwMTQyWhcNMjYwMzI3MDcwMTQyWjAzMTEwLwYDVQQD
EyhmMTI4ZTExN2FlM2EyMDIyYWUzMjE3NTFlZTQ2ZjAxMjFmYWE4M2U5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmBweLraVQItUlvTt7ZGeXKAnH7iu
XZr402rFT+kEOpJ1yztdTFKjmfQ1jPOm5JMGhnZouLmAhMRaZo3x01AylE2NJOjS
hhwWqGhTpXEmnH2LFFxhXzpXAs7xnd3YPw/2inoAtUrMFmcdEJt39VrFTSzwFmCQ
pwlpCtLdMfokPLvVUvHT1cpYGeJecrq3QGcth6yUUf3sSdhdKbn8u/Od1adhHtbY
dTgnnuNQ0ZvX/WDZKfeaxa7PWr7uYsojPVDEnMDxm9khJSjWH7BF1zE4ntujgNBF
sQDrfF6mKFU1H4WRWKwxYpfqn45AmEQnKp05NiCXJ1TGQ3XWxGjP9ko+HQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPEo4ReuOiAirjIXUe5G8BIfqoPpMB8GA1UdIwQY
MBaAFJ9+Ce2LgYpUzMPrQm9npVoTirh9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZjhjYzEtOTRjYy00ZjdlLTgxYTMt
ZjE5YWQyYmFkN2I5LzEvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS83ZjhjYzEtOTRjYy00ZjdlLTgxYTMtZjE5YWQyYmFkN2I5
LzEvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn84XOfpL
uBfeTq0IDmt0ZMeyWRNddiJvisMJaS+3B7zuKaCnwAJcsHn5DuTE9crx+2Tgeyrq
lPy0bd+lTz4+0/liUoQU0l8bSHoZlElS3MZLV7tESS1eXusidnTk6F4CBxBZ9BSl
ei52cniKSZSZ4JUaiovuTs2mp6wjc10KCLGEYFE4EP0tew6cqwhJuc3vK4merPZR
HWqv9rFLprccFotC8t4GX68X+euoIjf2QThskob1O5b1DGZQw4eqKP65COEsiR+S
eFyD7ogqi5AaF3bU4CNqU9iHEnm7SRLK8+gv/900fP8yqnEeIrmV252K15Y+2S5B
Ch2jBstZrmxGZA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:25:34 2026 by rpki-client