Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.mft
File: NYzSZ8VKP8IovKHe43LZbGA3PCc.mft (raw, json)
Hash identifier: S7I6S9REO1kiLqvCxh4++C4qfB6xsEnX7kXxW0+c618=
Subject key identifier: 2A:75:88:6C:11:E1:D1:80:90:79:EE:CF:30:B6:1E:7E:AC:84:DB:36
Authority key identifier: 35:8C:D2:67:C5:4A:3F:C2:28:BC:A1:DE:E3:72:D9:6C:60:37:3C:27
Certificate issuer: /CN=358cd267c54a3fc228bca1dee372d96c60373c27
Certificate serial: 019E1F481BB8CFEE5C88D52EB74792591D1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYzSZ8VKP8IovKHe43LZbGA3PCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.mft
Manifest number: 01E8
Signing time: Wed 13 May 2026 03:01:19 +0000
Manifest this update: Wed 13 May 2026 03:01:19 +0000
Manifest next update: Thu 14 May 2026 03:01:19 +0000
Files and hashes: 1: Jy76E1q7dDTCejXtPafJsRSES8Y.roa (hash: 1WiGvZJxKYYrQ+5QCN5Y0ow1dlNCCLa6+9MgNHjV0TQ=)
2: NYzSZ8VKP8IovKHe43LZbGA3PCc.crl (hash: /Cn4nrJIpgYiEL+WdPxDb8dsLJMeEWRhK5tmrY221wU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NYzSZ8VKP8IovKHe43LZbGA3PCc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:48:1b:b8:cf:ee:5c:88:d5:2e:b7:47:92:59:1d:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358cd267c54a3fc228bca1dee372d96c60373c27
Validity
Not Before: May 13 03:01:19 2026 GMT
Not After : May 14 03:01:19 2026 GMT
Subject: CN=2a75886c11e1d1809079eecf30b61e7eac84db36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:35:62:d4:fa:24:09:d0:83:9c:68:c9:f7:d4:
d5:6a:b4:e1:ef:2c:7d:b3:51:8c:50:95:ac:e8:e1:
6c:34:7e:10:3e:d3:80:5c:34:de:dd:a8:ee:1f:55:
28:29:d3:1d:8f:93:2c:ba:cd:9d:a6:45:62:90:fc:
7b:4d:cd:c9:49:ce:4f:1e:57:92:32:03:cb:bb:2d:
7e:a3:45:b3:06:35:62:ae:44:e9:0d:06:83:d5:4d:
5b:d5:17:d8:79:5e:69:e2:e2:99:59:f5:3e:00:b9:
f5:4b:ec:97:bc:ba:2d:58:71:63:c4:21:60:6e:99:
7c:ab:6b:25:5b:ac:85:3f:5c:e3:c3:2a:f8:af:c1:
37:57:9b:17:1f:e6:5d:13:4a:d2:3c:86:24:f0:a6:
bb:ff:9d:5e:c0:27:cd:f8:45:99:e5:47:b9:c2:af:
eb:ee:75:8f:cb:06:c0:ce:f4:25:5f:28:8a:5f:31:
c8:71:b5:ca:4e:34:47:0d:42:70:49:16:9f:69:26:
97:4a:0c:86:7f:05:95:2a:42:ae:dd:af:6c:42:5a:
87:90:b7:94:9b:9b:23:9d:0a:ff:05:6f:8c:44:bd:
7e:73:52:7a:61:af:00:62:13:ec:3c:99:f6:05:e6:
f2:7d:c8:96:35:6a:38:68:c9:23:40:c4:66:3d:84:
10:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:75:88:6C:11:E1:D1:80:90:79:EE:CF:30:B6:1E:7E:AC:84:DB:36
X509v3 Authority Key Identifier:
keyid:35:8C:D2:67:C5:4A:3F:C2:28:BC:A1:DE:E3:72:D9:6C:60:37:3C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYzSZ8VKP8IovKHe43LZbGA3PCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:0e:5d:5c:06:f6:96:f8:83:5d:5d:98:95:fb:d1:3a:d6:52:
bb:20:d2:94:f6:e5:c9:78:37:71:05:35:59:61:9f:2d:89:9f:
fc:72:b2:88:93:6e:e2:21:81:7d:68:19:a9:8a:e8:b5:49:39:
f4:f3:13:38:95:95:19:80:fb:61:34:ef:52:64:b3:99:ed:49:
c5:56:f8:db:ec:ff:81:33:bf:6c:57:e1:fd:3c:41:2d:78:32:
0d:fc:ce:04:e4:06:02:75:4b:8c:8f:00:6b:cc:36:9f:6e:69:
85:5e:9e:ad:02:86:ac:60:93:97:6b:8e:a4:4f:e9:cb:c8:03:
36:41:98:bf:cd:d9:9b:40:54:eb:a0:bb:c6:cb:c3:ef:14:e5:
a6:22:68:03:63:20:33:42:2a:64:59:d4:10:2a:cc:cc:59:9a:
03:af:c2:1d:5b:89:82:74:4a:41:0c:64:51:b7:2b:83:82:93:
1e:34:26:f9:19:8e:11:18:b7:4e:7c:04:c9:fb:1d:c4:cb:56:
b5:0d:08:79:8a:03:3e:a4:f2:94:d0:55:24:3d:c0:7b:32:84:
76:9d:f3:98:eb:5c:eb:69:71:83:b8:88:33:c7:ab:7c:13:6f:
43:4f:e6:e9:5e:c4:cb:07:fa:bd:ab:f9:22:31:f5:b0:21:c0:
c9:53:28:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:30:36 2026 by rpki-client