Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
File: N8ZRc24kPV6mzsymOv20oDEtdzA.mft (raw, json)
Hash identifier: 0Z6xNkXX686M6Igp8QDKYvM2xMpENfC0rnB8GAGF/q0=
Subject key identifier: DF:B5:10:D3:43:E4:61:D2:DC:F9:78:0E:3B:ED:21:2D:A8:2A:AC:9A
Authority key identifier: 37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
Certificate issuer: /CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Certificate serial: 019D37C113E4E8DE637BCD1A09DBD73F275A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 04:01:33 +0000
Manifest this update: Sun 29 Mar 2026 04:01:33 +0000
Manifest next update: Mon 30 Mar 2026 04:01:33 +0000
Files and hashes: 1: N8ZRc24kPV6mzsymOv20oDEtdzA.crl (hash: 2z862QpCOTUvUblFbmkHSpCf2EGSGAGMQ0Vvw5dmYew=)
2: nTe4XS35nHxQSCG2D80P-vLwCdc.roa (hash: VFddyo3u6Vm8UnAzJlN5YGNR/ZyZRBkt6xiG3mZLyRs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:13:e4:e8:de:63:7b:cd:1a:09:db:d7:3f:27:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Validity
Not Before: Mar 29 04:01:33 2026 GMT
Not After : Mar 30 04:01:33 2026 GMT
Subject: CN=dfb510d343e461d2dcf9780e3bed212da82aac9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:47:04:1d:ce:98:2b:6d:47:20:e5:87:21:b8:
6a:86:02:b3:35:12:d3:03:cc:e4:7f:b3:35:17:a4:
94:32:38:8f:3f:0d:2c:f3:ea:3a:24:6d:11:ee:15:
26:27:bc:32:fb:42:aa:e4:e1:75:64:8a:2b:85:1d:
ea:a7:5d:79:d4:d6:4d:2d:9d:ce:9e:12:32:1e:b9:
94:e1:ca:93:0e:ad:a5:86:9b:a3:74:c1:d4:60:eb:
6a:37:92:1f:c2:6d:22:3c:24:9b:63:c2:a9:e6:04:
e9:b1:d5:e8:f0:74:17:fe:39:d5:24:59:0e:c3:3b:
44:85:17:6c:04:8c:38:7b:4e:75:d4:26:6a:32:93:
d9:be:7b:cf:3d:f6:47:f6:5c:79:d9:d5:18:ec:a1:
75:26:58:76:95:f4:d0:2f:65:0d:54:44:4a:ce:b7:
0d:1a:b6:1f:6c:b3:5a:a9:1e:b6:59:27:28:5f:2c:
33:00:ca:e1:7a:01:9d:29:f2:99:51:44:da:69:26:
8f:a6:cf:2d:79:c4:f8:5a:eb:6d:d2:e5:3d:19:e4:
53:37:88:51:3f:f4:ed:fb:7b:bc:e7:c7:3c:20:d5:
21:6e:f2:bd:b1:1a:fc:de:4a:d0:a9:e0:29:dd:e4:
92:14:20:83:21:dd:9d:82:27:b0:f1:aa:f4:ea:e1:
d8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B5:10:D3:43:E4:61:D2:DC:F9:78:0E:3B:ED:21:2D:A8:2A:AC:9A
X509v3 Authority Key Identifier:
keyid:37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:ce:88:e7:c2:1e:e7:4f:2b:45:c0:4a:32:46:aa:43:6c:cf:
a1:46:ab:e3:dd:9e:a8:de:38:d4:89:81:51:ce:82:b5:4a:ee:
64:53:8c:d5:10:f0:f9:fe:bd:5c:a3:f9:9b:5d:dc:58:f4:f5:
a4:bf:16:27:c3:7e:37:ab:85:23:6e:25:2e:72:bc:fa:f8:12:
aa:f5:39:1b:2a:21:03:dd:5d:40:c4:ec:9f:fe:b0:ad:d0:a6:
9b:26:87:56:de:f6:14:f1:1e:4d:26:b1:fe:af:3b:b6:fb:ba:
a6:87:21:7b:5b:53:5a:ad:76:ea:88:df:df:52:09:2a:88:69:
db:60:b2:dc:90:9d:9c:3d:ef:5a:35:bf:78:bd:cc:96:c9:fa:
74:f9:ca:79:2f:b5:81:94:66:45:52:39:82:33:b1:64:4d:d3:
c2:37:89:e9:11:8d:79:3d:eb:f5:6d:b6:22:26:3c:c7:e8:b9:
64:bd:a9:c2:27:95:77:93:ae:9d:ad:4a:5d:51:8b:c6:f1:56:
55:e0:38:44:b2:c6:41:a1:f1:90:0b:2c:96:a2:07:c4:a2:a3:
c0:b2:32:97:d6:f2:ed:b8:78:a3:17:f0:51:ad:6d:1d:e9:ed:
50:16:2c:b8:5f:2d:f9:ea:94:83:8f:be:10:d0:6c:8c:af:51:
22:b7:ef:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:05 2026 by rpki-client