Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
File: ny8WbQXql29prtWORqQfflBSRHU.mft (raw, json)
Hash identifier: QdPGMLI+hdtDa2TFz1iLXeyFHSllAlwan/6LftFQlhs=
Subject key identifier: F7:0B:DB:D0:9E:90:83:56:DC:4D:D2:C5:69:7A:80:6D:19:35:DA:0F
Authority key identifier: 9F:2F:16:6D:05:EA:97:6F:69:AE:D5:8E:46:A4:1F:7E:50:52:44:75
Certificate issuer: /CN=9f2f166d05ea976f69aed58e46a41f7e50524475
Certificate serial: 019D27DFC2AA7C1FB9C3D74A286704926A88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
Manifest number: 15FD
Signing time: Thu 26 Mar 2026 02:01:08 +0000
Manifest this update: Thu 26 Mar 2026 02:01:08 +0000
Manifest next update: Fri 27 Mar 2026 02:01:08 +0000
Files and hashes: 1: ny8WbQXql29prtWORqQfflBSRHU.crl (hash: 7dz4Zk7Re2GrnhgRIeOn2K2uqrBVId334KMia79/V6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:c2:aa:7c:1f:b9:c3:d7:4a:28:67:04:92:6a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2f166d05ea976f69aed58e46a41f7e50524475
Validity
Not Before: Mar 26 02:01:08 2026 GMT
Not After : Mar 27 02:01:08 2026 GMT
Subject: CN=f70bdbd09e908356dc4dd2c5697a806d1935da0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:da:58:e0:f3:7d:7e:4e:65:42:09:ac:09:b3:
d1:20:c8:d2:00:44:04:a8:f9:b1:52:4b:c6:95:e4:
73:d1:b3:c9:84:cf:7b:3f:80:bf:05:74:28:ab:2c:
2f:43:d9:39:bb:4f:00:69:b4:9c:3d:4f:10:64:02:
97:90:00:a2:63:c8:77:fa:ca:e9:a7:81:1a:51:ca:
09:37:f4:ea:fb:ba:73:c9:fe:be:3e:8e:05:c4:be:
44:21:63:69:96:67:cd:da:f4:92:96:2e:3c:93:1c:
0b:aa:ae:52:0a:b5:e8:3a:67:0f:ec:e1:c2:0f:90:
3f:f0:e9:56:57:df:96:5e:11:73:34:ba:d1:37:a8:
e4:16:5d:8a:b2:c8:68:b7:e3:1e:9f:1f:d6:f7:52:
b6:f3:86:8c:86:6d:52:0d:c6:bd:8a:57:60:c2:7d:
71:36:ac:8a:c2:9c:e7:0b:e0:8e:54:b8:cc:b2:13:
1b:62:1a:65:e7:5f:66:34:6d:cc:da:60:03:f0:94:
c2:2f:92:33:2b:47:28:8b:1d:54:9e:b2:da:e9:5e:
8b:9b:3e:4c:9a:92:df:c0:a8:a8:75:fb:8f:4b:14:
8f:af:29:3f:d5:4b:02:ef:19:52:76:0c:89:db:df:
95:7d:3d:ed:85:84:38:5c:bb:5a:c4:d7:e2:02:ab:
4f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0B:DB:D0:9E:90:83:56:DC:4D:D2:C5:69:7A:80:6D:19:35:DA:0F
X509v3 Authority Key Identifier:
keyid:9F:2F:16:6D:05:EA:97:6F:69:AE:D5:8E:46:A4:1F:7E:50:52:44:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:60:b0:f3:ed:8f:9e:53:ff:a9:1c:35:f4:d8:7f:eb:35:d2:
02:d5:2f:81:99:38:52:3d:3c:84:b1:dd:92:af:9a:bd:c7:dc:
5e:d8:55:0e:fb:5b:8a:d6:70:5d:e6:c3:6e:7d:70:c4:8a:8b:
da:af:19:41:dd:0f:90:69:25:e3:cb:51:40:dd:b4:a9:62:e7:
d1:9f:3b:a6:a3:42:de:3b:b0:6a:1d:e1:d0:ea:59:ae:d1:b1:
7a:24:b2:98:28:a6:a0:c3:c8:b7:a6:ac:7b:32:e0:5d:50:0f:
cf:53:9d:44:19:04:a5:6f:50:64:2a:33:3e:b6:64:58:fb:5b:
a3:4d:c1:1c:ca:9c:ba:f5:c0:df:13:d1:4d:3f:41:bc:f6:b8:
10:dc:6a:e0:da:b3:5e:79:d7:2e:b1:2c:ed:39:9d:ab:eb:17:
02:0e:7d:d1:c6:8e:00:3e:09:86:10:bc:7a:a4:93:5b:ca:2d:
03:6c:21:49:a1:cd:49:dc:0d:93:70:27:db:96:17:ab:bc:a4:
da:6e:e7:66:67:e5:ca:c3:0a:f6:52:63:50:1e:45:63:9f:9c:
f1:96:92:c2:da:01:dc:75:34:23:9a:1b:2b:45:a1:b2:9d:3d:
50:e7:0a:ec:ca:8f:71:c7:d1:f3:4b:58:79:42:8f:f4:01:c0:
3b:75:3c:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n38KqfB+5w9dKKGcEkmqIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMmYxNjZkMDVlYTk3NmY2OWFlZDU4ZTQ2YTQxZjdlNTA1
MjQ0NzUwHhcNMjYwMzI2MDIwMTA4WhcNMjYwMzI3MDIwMTA4WjAzMTEwLwYDVQQD
EyhmNzBiZGJkMDllOTA4MzU2ZGM0ZGQyYzU2OTdhODA2ZDE5MzVkYTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsdpY4PN9fk5lQgmsCbPRIMjSAEQE
qPmxUkvGleRz0bPJhM97P4C/BXQoqywvQ9k5u08AabScPU8QZAKXkACiY8h3+srp
p4EaUcoJN/Tq+7pzyf6+Po4FxL5EIWNplmfN2vSSli48kxwLqq5SCrXoOmcP7OHC
D5A/8OlWV9+WXhFzNLrRN6jkFl2Ksshot+Menx/W91K284aMhm1SDca9ildgwn1x
NqyKwpznC+COVLjMshMbYhpl519mNG3M2mAD8JTCL5IzK0coix1UnrLa6V6Lmz5M
mpLfwKiodfuPSxSPryk/1UsC7xlSdgyJ29+VfT3thYQ4XLtaxNfiAqtPRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPcL29CekINW3E3SxWl6gG0ZNdoPMB8GA1UdIwQY
MBaAFJ8vFm0F6pdvaa7VjkakH35QUkR1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnk4V2JRWHFsMjlwcnRXT1JxUWZmbEJTUkhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8yMmVmYmItMzY1OS00YTNkLWJlYTQt
OTYyZDRmMGMyOWIwLzEvbnk4V2JRWHFsMjlwcnRXT1JxUWZmbEJTUkhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC8yMmVmYmItMzY1OS00YTNkLWJlYTQtOTYyZDRmMGMyOWIw
LzEvbnk4V2JRWHFsMjlwcnRXT1JxUWZmbEJTUkhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArmCw8+2P
nlP/qRw19Nh/6zXSAtUvgZk4Uj08hLHdkq+avcfcXthVDvtbitZwXebDbn1wxIqL
2q8ZQd0PkGkl48tRQN20qWLn0Z87pqNC3juwah3h0OpZrtGxeiSymCimoMPIt6as
ezLgXVAPz1OdRBkEpW9QZCozPrZkWPtbo03BHMqcuvXA3xPRTT9BvPa4ENxq4Nqz
XnnXLrEs7Tmdq+sXAg590caOAD4JhhC8eqSTW8otA2whSaHNSdwNk3An25YXq7yk
2m7nZmflysMK9lJjUB5FY5+c8ZaSwtoB3HU0I5obK0Whsp09UOcK7MqPccfR80tY
eUKP9AHAO3U8fw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 08:28:10 2026 by rpki-client