Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
File: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft (raw, json)
Hash identifier: m+mg3zliC3H8D73onjNwNUDOWyBkfC5Te23RsbKLGpk=
Subject key identifier: 54:F9:7F:F1:B7:50:78:38:DB:3B:6F:5C:F1:3C:86:62:AE:A1:E5:E1
Authority key identifier: 36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
Certificate issuer: /CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Certificate serial: 019D2703A69EA5C382E165CDCB2351F10196
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
Manifest number: 0398
Signing time: Wed 25 Mar 2026 22:00:43 +0000
Manifest this update: Wed 25 Mar 2026 22:00:43 +0000
Manifest next update: Thu 26 Mar 2026 22:00:43 +0000
Files and hashes: 1: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl (hash: lAh7IN/S7fW5WcLjinqfLIlhOlt2w0h3ElKTFjqgnZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:a6:9e:a5:c3:82:e1:65:cd:cb:23:51:f1:01:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9
Validity
Not Before: Mar 25 22:00:43 2026 GMT
Not After : Mar 26 22:00:43 2026 GMT
Subject: CN=54f97ff1b7507838db3b6f5cf13c8662aea1e5e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:36:d9:fb:a0:db:db:0c:a6:d4:da:97:8d:0c:
38:6d:3f:62:e5:8c:1b:4d:c8:71:22:10:34:92:f5:
c0:19:64:64:5b:ba:a3:bc:fc:4c:f6:b7:4b:7e:fe:
2f:bd:66:87:b4:3c:9f:49:c0:fb:46:60:c6:e0:9b:
0b:b1:0e:79:7a:60:54:e1:1b:46:5f:b1:5f:8a:18:
67:8a:71:b8:0d:6f:d4:a6:c9:71:fb:21:43:7f:f1:
e6:fe:2d:6a:ba:66:27:dd:f6:1d:47:24:8b:d6:7c:
10:ca:98:ec:1a:b1:b7:02:7c:f0:70:b4:43:db:d6:
73:34:e0:05:db:db:f9:bb:14:86:e0:5d:3f:60:e5:
50:62:46:55:3a:56:7b:77:10:cd:ad:6e:90:1f:02:
4b:c6:5b:8b:b6:b9:f3:7c:04:b1:4f:59:84:a7:40:
2c:41:10:79:16:66:7e:5e:6c:10:0e:71:ff:84:51:
f2:b8:a6:32:bc:ca:80:70:ee:5d:06:da:93:a7:a6:
fc:d4:9a:4f:90:15:34:b8:9d:c9:f8:9c:b3:25:8d:
bd:ca:be:1a:64:11:27:7f:33:1e:2d:83:e2:d9:ab:
59:ee:94:4b:7b:74:a0:c1:0f:52:c8:a2:98:cf:05:
7d:2f:af:a5:8a:17:26:31:42:9d:a5:7b:88:0b:7d:
2c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:F9:7F:F1:B7:50:78:38:DB:3B:6F:5C:F1:3C:86:62:AE:A1:E5:E1
X509v3 Authority Key Identifier:
keyid:36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:85:9a:e1:1c:4e:79:cc:f4:7e:93:dd:8b:ad:fa:3d:43:c1:
59:0f:3e:ad:9a:c4:d3:c1:da:0e:b6:41:d3:31:6d:05:80:2b:
d1:3d:40:d8:93:b4:84:3e:af:b7:e4:40:82:a5:88:bf:7c:92:
d9:27:85:0b:46:88:d7:9e:a0:5a:fe:fc:50:c1:31:72:91:a6:
cb:b7:0b:3c:ec:d1:29:d9:2e:5a:02:9d:3f:22:0c:10:eb:2c:
6f:b0:6d:d4:76:3c:0a:08:fe:e7:7d:cb:19:7c:d6:8b:89:92:
f2:44:9d:0e:4c:c3:78:2f:24:41:72:a8:5a:74:32:6f:35:1b:
16:b8:58:b7:91:2e:7f:4c:65:0c:67:ac:04:58:a5:93:96:57:
4b:7a:84:e4:99:a4:05:a8:24:ed:2e:ef:ad:02:2c:59:06:84:
f4:ad:30:a7:27:30:dd:c1:61:62:73:a9:76:05:04:85:9a:be:
42:29:85:72:d4:d1:26:d7:f7:4b:0b:dc:ff:27:87:67:70:48:
21:92:4a:6b:dd:46:01:8a:e2:06:9d:3a:5e:4a:3e:be:ec:0c:
de:07:ea:74:e0:66:c1:5a:6f:41:03:32:e2:4f:bc:ec:15:3e:
c8:7c:52:64:f4:9b:95:b6:a9:57:2c:db:43:e6:3b:c5:97:26:
f5:3e:d3:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nA6aepcOC4WXNyyNR8QGWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2NGQ0ODhiOGM3MzFiOTFkNGE1YTJiOTBhNjY2Y2VlYmMw
ZTE4YzkwHhcNMjYwMzI1MjIwMDQzWhcNMjYwMzI2MjIwMDQzWjAzMTEwLwYDVQQD
Eyg1NGY5N2ZmMWI3NTA3ODM4ZGIzYjZmNWNmMTNjODY2MmFlYTFlNWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTbZ+6Db2wym1NqXjQw4bT9i5Ywb
TchxIhA0kvXAGWRkW7qjvPxM9rdLfv4vvWaHtDyfScD7RmDG4JsLsQ55emBU4RtG
X7FfihhninG4DW/Upslx+yFDf/Hm/i1qumYn3fYdRySL1nwQypjsGrG3AnzwcLRD
29ZzNOAF29v5uxSG4F0/YOVQYkZVOlZ7dxDNrW6QHwJLxluLtrnzfASxT1mEp0As
QRB5FmZ+XmwQDnH/hFHyuKYyvMqAcO5dBtqTp6b81JpPkBU0uJ3J+JyzJY29yr4a
ZBEnfzMeLYPi2atZ7pRLe3SgwQ9SyKKYzwV9L6+lihcmMUKdpXuIC30s2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFT5f/G3UHg42ztvXPE8hmKuoeXhMB8GA1UdIwQY
MBaAFDZNSIuMcxuR1KWiuQpmbO68DhjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS84N2YyYTAtZTA3Zi00ZDEwLWFhOWIt
MmQwNmViN2YyOTlmLzEvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS84N2YyYTAtZTA3Zi00ZDEwLWFhOWItMmQwNmViN2YyOTlm
LzEvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqIWa4RxO
ecz0fpPdi636PUPBWQ8+rZrE08HaDrZB0zFtBYAr0T1A2JO0hD6vt+RAgqWIv3yS
2SeFC0aI156gWv78UMExcpGmy7cLPOzRKdkuWgKdPyIMEOssb7Bt1HY8Cgj+533L
GXzWi4mS8kSdDkzDeC8kQXKoWnQybzUbFrhYt5Euf0xlDGesBFilk5ZXS3qE5Jmk
Bagk7S7vrQIsWQaE9K0wpycw3cFhYnOpdgUEhZq+QimFctTRJtf3Swvc/yeHZ3BI
IZJKa91GAYriBp06Xko+vuwM3gfqdOBmwVpvQQMy4k+87BU+yHxSZPSblbapVyzb
Q+Y7xZcm9T7T7w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:13:58 2026 by rpki-client