Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
File: nvnDHh7MuhkCs_YiWT3pcspxi1w.mft (raw, json)
Hash identifier: k8k+A84/y5QWon9kQac0WZ02kPeMmt+oYA32hYdHUMc=
Subject key identifier: 5A:A4:C7:37:EE:1B:8D:2D:1C:C3:0E:03:47:9C:86:33:6A:54:7A:B7
Authority key identifier: 9E:F9:C3:1E:1E:CC:BA:19:02:B3:F6:22:59:3D:E9:72:CA:71:8B:5C
Certificate issuer: /CN=9ef9c31e1eccba1902b3f622593de972ca718b5c
Certificate serial: 019D25F1FB8C4BF8F19F6043F26BBA41A061
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
Manifest number: 0FDD
Signing time: Wed 25 Mar 2026 17:01:48 +0000
Manifest this update: Wed 25 Mar 2026 17:01:48 +0000
Manifest next update: Thu 26 Mar 2026 17:01:48 +0000
Files and hashes: 1: nvnDHh7MuhkCs_YiWT3pcspxi1w.crl (hash: FTznhQ9W8JMp3pPOsNywuhvhLIi0DFsDOGlFYRpZs9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:fb:8c:4b:f8:f1:9f:60:43:f2:6b:ba:41:a0:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ef9c31e1eccba1902b3f622593de972ca718b5c
Validity
Not Before: Mar 25 17:01:48 2026 GMT
Not After : Mar 26 17:01:48 2026 GMT
Subject: CN=5aa4c737ee1b8d2d1cc30e03479c86336a547ab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cd:9d:1c:c3:6c:09:81:fe:75:d9:57:7d:e6:
1b:dd:8d:e5:96:a6:c1:79:57:11:78:1f:7b:58:9f:
c1:ce:2a:c2:fc:09:39:74:bc:ba:b8:31:a1:aa:83:
f5:6b:2f:92:e1:67:2f:ad:d3:9d:3a:e6:ae:8b:f2:
9e:95:ac:02:e6:d0:8f:7d:62:69:b4:4e:b8:28:c0:
99:27:84:4a:89:f3:5a:a6:3d:6f:4c:4e:6d:6c:80:
49:d6:a7:44:fe:78:f2:28:df:d5:ce:97:ba:af:0b:
5b:26:84:8d:ff:f0:84:3b:b4:2f:b0:c7:a9:61:9a:
dc:1d:5d:71:60:3a:90:f1:17:9f:e4:f5:21:8e:73:
6c:47:a3:a1:78:13:22:50:59:d8:74:d2:5a:e7:81:
f0:64:14:e6:9e:3c:84:68:99:39:1c:26:5b:e9:b1:
de:1b:c9:44:94:99:43:46:51:43:ab:a5:a1:53:1e:
da:84:7e:65:da:0e:c1:3b:51:4e:5a:8c:31:67:ca:
28:14:d6:90:a3:e4:6f:5b:35:2e:b6:8b:4e:b4:df:
00:63:7b:c8:6d:21:f2:20:b5:9e:a1:0d:bb:51:ec:
5d:d1:b6:a6:5a:19:61:6b:0a:df:b6:2d:ab:14:71:
38:74:e8:d0:e4:58:fb:09:48:cf:64:91:8c:19:40:
27:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A4:C7:37:EE:1B:8D:2D:1C:C3:0E:03:47:9C:86:33:6A:54:7A:B7
X509v3 Authority Key Identifier:
keyid:9E:F9:C3:1E:1E:CC:BA:19:02:B3:F6:22:59:3D:E9:72:CA:71:8B:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ab:ba:fa:d0:0d:12:93:f4:7f:b9:cb:d4:ca:ce:3c:f9:9d:
4f:4f:74:4f:c1:8b:3d:4b:af:73:69:fb:ee:4c:fe:a4:be:bb:
44:97:33:cd:2d:0c:3d:56:08:57:84:e5:1c:32:18:4c:33:98:
d7:f7:10:62:df:48:b5:c4:3f:52:1d:82:59:98:cd:69:d4:a0:
1c:3f:f8:4c:b3:29:c0:77:7d:64:21:db:17:97:c2:d0:42:9d:
7b:1e:07:4f:62:f3:a8:da:5a:57:65:3b:34:23:84:4d:76:eb:
a3:32:83:f3:89:a8:68:64:48:19:22:15:a3:49:4e:25:66:ab:
db:20:ad:f2:4a:ff:d8:8d:5d:03:9c:94:c2:ee:88:57:8f:ca:
b8:4a:ac:58:8e:7a:93:a9:97:cc:75:83:22:0c:3c:81:a8:9d:
e1:98:f9:b5:e0:8b:6a:a7:00:f5:70:a8:ec:2b:5a:7c:66:e7:
9c:de:ea:cb:91:67:dd:ab:a6:41:9c:fb:a5:1e:93:2e:89:b8:
b9:21:74:65:6a:75:dd:4e:15:0c:31:4c:70:ce:3a:fa:e2:d4:
b6:00:ff:b5:f6:80:07:52:92:12:74:d7:5b:57:7d:de:71:fe:
29:13:b1:47:9b:e8:e9:38:b6:42:f8:c1:7e:c5:78:fe:1f:22:
06:d0:e8:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8fuMS/jxn2BD8mu6QaBhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllZjljMzFlMWVjY2JhMTkwMmIzZjYyMjU5M2RlOTcyY2E3
MThiNWMwHhcNMjYwMzI1MTcwMTQ4WhcNMjYwMzI2MTcwMTQ4WjAzMTEwLwYDVQQD
Eyg1YWE0YzczN2VlMWI4ZDJkMWNjMzBlMDM0NzljODYzMzZhNTQ3YWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3s2dHMNsCYH+ddlXfeYb3Y3llqbB
eVcReB97WJ/BzirC/Ak5dLy6uDGhqoP1ay+S4WcvrdOdOuaui/KelawC5tCPfWJp
tE64KMCZJ4RKifNapj1vTE5tbIBJ1qdE/njyKN/Vzpe6rwtbJoSN//CEO7QvsMep
YZrcHV1xYDqQ8Ref5PUhjnNsR6OheBMiUFnYdNJa54HwZBTmnjyEaJk5HCZb6bHe
G8lElJlDRlFDq6WhUx7ahH5l2g7BO1FOWowxZ8ooFNaQo+RvWzUutotOtN8AY3vI
bSHyILWeoQ27Uexd0bamWhlhawrfti2rFHE4dOjQ5Fj7CUjPZJGMGUAnjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFqkxzfuG40tHMMOA0echjNqVHq3MB8GA1UdIwQY
MBaAFJ75wx4ezLoZArP2Ilk96XLKcYtcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnZuREhoN011aGtDc19ZaVdUM3Bjc3B4aTF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yZmE3YjgtYTQ4NC00N2RmLWIxYzIt
OTcyYzBmYWU2N2I4LzEvbnZuREhoN011aGtDc19ZaVdUM3Bjc3B4aTF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi8yZmE3YjgtYTQ4NC00N2RmLWIxYzItOTcyYzBmYWU2N2I4
LzEvbnZuREhoN011aGtDc19ZaVdUM3Bjc3B4aTF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT6u6+tAN
EpP0f7nL1MrOPPmdT090T8GLPUuvc2n77kz+pL67RJczzS0MPVYIV4TlHDIYTDOY
1/cQYt9ItcQ/Uh2CWZjNadSgHD/4TLMpwHd9ZCHbF5fC0EKdex4HT2LzqNpaV2U7
NCOETXbrozKD84moaGRIGSIVo0lOJWar2yCt8kr/2I1dA5yUwu6IV4/KuEqsWI56
k6mXzHWDIgw8gaid4Zj5teCLaqcA9XCo7CtafGbnnN7qy5Fn3aumQZz7pR6TLom4
uSF0ZWp13U4VDDFMcM46+uLUtgD/tfaAB1KSEnTXW1d93nH+KROxR5vo6Ti2QvjB
fsV4/h8iBtDooA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 04:57:09 2026 by rpki-client