Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: i0rmoX5FnDTLT1I+/wkZ9A4FphqqUZSSuloalUCfJMY=
Subject key identifier: 31:97:BB:2A:2C:2E:CD:F7:F7:2D:04:CF:08:F8:27:09:DA:A9:C2:0E
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 019D2A3BB70D19C5A6311EDBDF0D35477ACF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 0F68
Signing time: Thu 26 Mar 2026 13:00:49 +0000
Manifest this update: Thu 26 Mar 2026 13:00:49 +0000
Manifest next update: Fri 27 Mar 2026 13:00:49 +0000
Files and hashes: 1: 3kSbU0e5h99O_Tm79lGnT_Tp5Hc.roa (hash: RwQ/Qy1kKylc45gWPZOazTOGnIJ82QduJgu3sQQqwXY=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: QNphvar2dbn3lRsnbdXp0aYRfBgt9VUgkwM/FnhDF/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:b7:0d:19:c5:a6:31:1e:db:df:0d:35:47:7a:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Mar 26 13:00:49 2026 GMT
Not After : Mar 27 13:00:49 2026 GMT
Subject: CN=3197bb2a2c2ecdf7f72d04cf08f82709daa9c20e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:44:28:3c:41:fc:0b:48:d4:51:de:bc:ea:af:
cc:0b:0e:f5:0f:54:7f:8d:d1:81:e5:af:46:2e:ce:
c1:35:e2:01:8f:2c:7e:8b:cb:b7:ac:07:6f:03:96:
fe:a3:25:3a:e3:c5:20:12:4d:1d:a3:7e:38:59:76:
6a:68:2a:f0:f7:ca:f6:e3:af:d1:52:a5:ea:10:3a:
5d:ff:49:13:bf:4f:6b:a7:70:4f:6f:3a:2b:44:dd:
41:8e:84:e5:2d:56:fb:de:ca:8d:47:03:1d:43:a5:
13:75:8c:0e:6f:c1:d4:94:51:40:49:f5:5e:6b:c0:
dd:ba:78:ab:c5:b1:09:00:6a:fd:fc:0c:c9:67:9a:
82:85:ea:95:66:2c:34:51:d1:74:8f:76:f3:b8:ed:
ff:d3:dc:67:d5:5e:cd:19:1d:4c:81:ea:1c:3c:a4:
e5:e8:17:b2:7b:ed:2a:36:12:9b:21:a2:48:80:62:
9b:0d:33:f4:23:9e:23:c2:eb:57:99:ab:30:4b:09:
9b:3d:23:89:a5:ee:1b:be:42:e9:13:e0:bc:60:c2:
ef:fb:7e:73:e7:e8:e4:5b:1e:2e:62:8a:39:86:8b:
2c:b2:07:d7:6f:cc:39:75:97:a5:1c:63:1c:91:cd:
40:80:e6:52:d5:bf:45:f8:b4:7e:b2:7f:75:71:cc:
f3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:97:BB:2A:2C:2E:CD:F7:F7:2D:04:CF:08:F8:27:09:DA:A9:C2:0E
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:1c:bc:0f:74:48:22:1a:ae:ff:80:17:fa:d0:2b:99:d8:ae:
d8:97:40:dc:d7:f3:03:07:47:0e:32:59:08:1e:7b:82:53:30:
28:d9:49:c4:24:77:0c:0f:db:d2:f3:4e:a8:67:61:6a:91:db:
ef:8d:fd:4b:2e:4c:48:f1:23:a5:13:8c:61:0c:d4:b3:cb:bf:
05:35:27:af:b2:1a:1f:25:96:74:5f:ac:8b:97:01:fb:7e:62:
26:d9:e0:03:99:63:8d:d4:ca:10:f4:d9:f9:d3:be:46:13:3c:
5e:11:b9:8a:e6:a8:08:fd:75:75:b9:d2:2d:36:d8:be:67:c7:
32:8f:d6:db:98:e4:b9:a7:2e:89:3b:4b:4f:9c:d4:71:cd:bf:
6f:59:82:83:ee:a6:69:93:41:88:4d:86:2c:08:23:e7:94:a0:
60:02:1d:61:12:b8:1e:ba:22:2a:14:c1:3c:29:93:97:41:4c:
35:e5:4b:9e:4b:b8:1e:b6:ac:b0:b5:cc:cc:3a:4d:fe:c6:3f:
67:4b:65:8d:6b:6e:eb:1b:0b:72:62:95:22:9a:0c:a8:e5:c2:
97:b0:2d:16:a0:d0:07:88:80:b4:e0:35:ca:f3:f4:f2:57:68:
d3:9a:11:75:9f:b6:fc:58:15:fe:64:f1:99:35:68:78:4f:ca:
d6:50:6a:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qO7cNGcWmMR7b3w01R3rPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMzFjMjMzY2JkMjY2ZGIwMjYyMGI5ZGViOTBkMDhlNDE2
OTJlNjcwHhcNMjYwMzI2MTMwMDQ5WhcNMjYwMzI3MTMwMDQ5WjAzMTEwLwYDVQQD
EygzMTk3YmIyYTJjMmVjZGY3ZjcyZDA0Y2YwOGY4MjcwOWRhYTljMjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0QoPEH8C0jUUd686q/MCw71D1R/
jdGB5a9GLs7BNeIBjyx+i8u3rAdvA5b+oyU648UgEk0do344WXZqaCrw98r246/R
UqXqEDpd/0kTv09rp3BPbzorRN1BjoTlLVb73sqNRwMdQ6UTdYwOb8HUlFFASfVe
a8DdunirxbEJAGr9/AzJZ5qCheqVZiw0UdF0j3bzuO3/09xn1V7NGR1MgeocPKTl
6Beye+0qNhKbIaJIgGKbDTP0I54jwutXmaswSwmbPSOJpe4bvkLpE+C8YMLv+35z
5+jkWx4uYoo5hosssgfXb8w5dZelHGMckc1AgOZS1b9F+LR+sn91cczzkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDGXuyosLs339y0Ezwj4JwnaqcIOMB8GA1UdIwQY
MBaAFJ0xwjPL0mbbAmILneuQ0I5BaS5nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblRIQ004dlNadHNDWWd1ZDY1RFFqa0ZwTG1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8zNDIyM2EtZTc3ZS00NTQ0LWEyMDct
ZmExNzI1MDM0NDkxLzEvblRIQ004dlNadHNDWWd1ZDY1RFFqa0ZwTG1jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy8zNDIyM2EtZTc3ZS00NTQ0LWEyMDctZmExNzI1MDM0NDkx
LzEvblRIQ004dlNadHNDWWd1ZDY1RFFqa0ZwTG1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYxy8D3RI
Ihqu/4AX+tArmdiu2JdA3NfzAwdHDjJZCB57glMwKNlJxCR3DA/b0vNOqGdhapHb
7439Sy5MSPEjpROMYQzUs8u/BTUnr7IaHyWWdF+si5cB+35iJtngA5ljjdTKEPTZ
+dO+RhM8XhG5iuaoCP11dbnSLTbYvmfHMo/W25jkuacuiTtLT5zUcc2/b1mCg+6m
aZNBiE2GLAgj55SgYAIdYRK4HroiKhTBPCmTl0FMNeVLnku4HrassLXMzDpN/sY/
Z0tljWtu6xsLcmKVIpoMqOXCl7AtFqDQB4iAtOA1yvP08ldo05oRdZ+2/FgV/mTx
mTVoeE/K1lBqQw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 19:24:16 2026 by rpki-client