Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: qwSDNv5eEzuE2I6PLKcDBWZLI8oDVquJ672EuaI5uZ4=
Subject key identifier: 80:3B:C1:89:59:09:EA:E5:24:6E:BB:32:6F:E2:8F:B2:0F:49:06:BF
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 019E1D9027C8E4D5BE2AD62E9D90E7578029
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0FE6
Signing time: Tue 12 May 2026 19:00:47 +0000
Manifest this update: Tue 12 May 2026 19:00:47 +0000
Manifest next update: Wed 13 May 2026 19:00:47 +0000
Files and hashes: 1: 3kSbU0e5h99O_Tm79lGnT_Tp5Hc.roa (hash: RwQ/Qy1kKylc45gWPZOazTOGnIJ82QduJgu3sQQqwXY=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: 6NHS9fzcCC8N3U7CeLu7Z9wTbRuBuVJYolsT+QcuScU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:27:c8:e4:d5:be:2a:d6:2e:9d:90:e7:57:80:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: May 12 19:00:47 2026 GMT
Not After : May 13 19:00:47 2026 GMT
Subject: CN=803bc1895909eae5246ebb326fe28fb20f4906bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:eb:b4:f9:1e:0f:de:e9:00:d5:56:61:35:49:
b9:c8:51:af:2f:9d:b0:6c:39:ac:97:86:a1:0d:0a:
2d:d2:bc:8e:f5:c6:24:fc:e2:da:6b:2d:f8:72:1b:
05:f4:08:1f:72:b0:a5:57:0c:f4:d0:28:cf:56:15:
ce:98:64:b0:ea:c4:a3:45:05:72:a1:39:5d:1c:87:
ac:93:65:a7:69:7f:10:d1:63:98:8d:9b:f9:99:e4:
77:6a:d8:4a:26:39:0b:fb:dd:e7:72:36:a6:7b:3d:
23:98:69:2d:de:a2:f0:70:a7:fc:c3:56:59:f5:c3:
3a:61:fc:96:91:2f:8f:c9:79:89:03:59:e4:e2:6f:
03:b6:da:11:89:9e:3b:7a:cd:ea:b0:38:11:d4:cc:
3d:28:48:e4:cc:e4:59:2c:a3:c0:27:2e:da:7d:81:
c8:20:c3:bf:30:62:30:3d:77:7d:b1:aa:50:0d:2f:
80:1d:88:a3:c1:ad:c1:8e:77:e8:7f:54:6b:ab:f9:
b4:d4:f8:d2:8a:66:f6:1a:1a:d0:18:d2:0c:91:da:
a5:10:bd:e1:c3:05:ab:f8:fe:08:7c:8b:9f:bd:bb:
19:42:18:3f:27:8c:a1:d8:18:07:f2:01:e7:49:c5:
f7:78:22:33:b0:6b:8f:25:ee:c9:92:8f:1b:55:e7:
de:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:3B:C1:89:59:09:EA:E5:24:6E:BB:32:6F:E2:8F:B2:0F:49:06:BF
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:18:37:5a:1f:d9:09:33:38:2c:3e:27:ed:b6:51:90:0f:11:
e8:3a:12:ca:a5:f0:c2:88:49:b2:34:a6:96:33:d1:84:73:7f:
bc:70:05:e9:dd:14:16:4c:92:c9:fc:e7:67:06:42:d4:a7:1b:
f0:62:79:92:7a:ee:be:b4:04:e5:e2:24:03:b3:b5:01:87:8e:
bd:b3:07:91:0d:ba:fc:a8:ba:d7:17:f9:ea:a8:39:b9:df:65:
bf:3e:79:ae:6a:f1:36:bc:be:0f:b4:b3:9f:09:80:ac:86:5c:
23:55:84:ba:91:4b:01:87:ec:df:fd:95:0f:eb:fa:b0:38:bd:
a2:af:c4:cb:d4:ea:ee:ee:f7:b2:b9:8d:23:cd:ba:d4:91:76:
45:b6:c9:ab:44:2c:20:9f:2e:5a:4f:d4:1e:ee:63:73:f6:89:
a0:4a:b8:f6:20:11:7c:b2:b8:43:49:17:de:61:3c:59:92:a3:
cd:d6:fb:db:6a:55:07:23:13:e3:6b:e1:bf:ef:2b:e5:4c:d2:
ce:0f:ab:2d:37:ce:cf:fd:7f:9f:d0:47:a8:1b:3f:6d:d5:b2:
86:65:52:45:e8:c3:05:9f:14:89:4d:35:64:d3:7e:f8:bd:e5:
d0:47:30:3d:db:3b:f8:2b:51:2d:c6:10:92:45:84:18:8f:37:
6a:0b:3b:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:30:52 2026 by rpki-client