Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: iG3qTwm4Xj768FK9aMm9vr1SYZF4KtaC9EO0DcXHL7s=
Subject key identifier: 8D:F3:ED:80:D6:23:A5:C5:CC:F6:78:D2:2C:EE:E6:A3:5A:76:C6:D0
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 019D37F75223715DB657125DFEACC13708AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 0D51
Signing time: Sun 29 Mar 2026 05:00:48 +0000
Manifest this update: Sun 29 Mar 2026 05:00:48 +0000
Manifest next update: Mon 30 Mar 2026 05:00:48 +0000
Files and hashes: 1: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: lYsHuJoQQeKUP3OiiiZvSh9J3+yBGzU5StjtftJd1d8=)
2: uoPZT_uIWtt1y75pLuVRiaAOCA8.roa (hash: 9YrNpBfyPkS8WM22E6fKQ7KTx+jlfiKDKpzF0Ults2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:52:23:71:5d:b6:57:12:5d:fe:ac:c1:37:08:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Mar 29 05:00:48 2026 GMT
Not After : Mar 30 05:00:48 2026 GMT
Subject: CN=8df3ed80d623a5c5ccf678d22ceee6a35a76c6d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bd:f4:9f:b1:d8:e3:05:ac:ac:1c:03:ba:85:
7e:dc:d3:23:a7:1a:8f:33:78:8c:fd:71:7c:ff:62:
37:24:57:27:24:83:20:3e:48:2c:4c:17:ee:94:9e:
c5:b9:b4:24:be:d5:51:43:e7:16:92:21:d7:54:0a:
75:c4:e9:cc:7c:15:33:00:b5:5a:33:b2:cc:41:08:
2f:e9:08:11:59:97:30:cc:5d:eb:7d:1c:c1:64:09:
3c:cc:cf:14:37:34:16:53:a6:bd:af:26:76:c8:82:
62:fa:b3:63:f0:d2:15:a4:6b:cd:e7:f7:89:40:1c:
04:d1:84:0a:d7:4c:15:63:b1:da:ea:24:f2:1f:d9:
97:88:12:e0:73:62:27:d4:cd:50:8c:34:c4:37:f2:
21:be:ea:b7:6d:00:75:f5:4e:45:2f:75:33:b7:9f:
24:53:37:ef:41:57:c4:93:b1:58:b2:46:95:fe:5d:
59:99:0f:90:6a:08:95:de:39:df:bc:58:ab:22:18:
3c:32:4a:bd:3c:b9:52:b3:5c:c5:38:e5:9d:c7:81:
a8:56:55:dd:d3:f9:dc:dc:7d:b1:fb:1e:e8:03:64:
96:fc:43:91:1d:fb:3e:26:f1:eb:b3:a0:ad:cf:67:
9d:7f:18:98:36:80:80:a9:91:28:ae:0d:3e:ac:8f:
ff:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F3:ED:80:D6:23:A5:C5:CC:F6:78:D2:2C:EE:E6:A3:5A:76:C6:D0
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:a1:43:97:80:74:75:91:62:8c:5f:1c:6c:97:b9:2b:5f:7b:
0e:52:b9:bb:51:8c:4d:9e:2a:95:23:16:b7:8a:75:eb:29:3d:
6f:eb:8b:7d:96:f8:f7:66:af:6e:87:74:76:d7:e2:8a:c1:f1:
8e:6e:e6:06:bb:b3:0f:2b:82:28:86:49:6d:04:ad:15:98:f9:
a7:52:de:f5:d3:91:b8:32:c1:25:04:05:94:22:c0:3a:70:50:
cd:3c:ac:84:a9:87:51:2e:2f:1c:5f:9c:a6:a5:2f:f5:a2:26:
8a:75:a7:d2:a7:32:0a:ee:09:c6:ae:4a:4c:67:a6:4e:3a:28:
e8:ff:3e:21:95:28:d9:97:99:66:62:fd:70:48:d8:d4:1b:12:
dd:32:6b:97:d1:43:34:4f:fb:5f:17:d9:61:6e:c5:5f:d7:52:
14:75:4a:73:7b:f0:b3:ce:7b:be:07:d7:00:03:ad:d6:8a:fa:
0b:a8:90:e2:73:59:a9:7e:f7:0c:1b:1a:43:19:39:af:4e:c3:
c6:0b:e0:fa:5c:80:31:ac:db:50:50:26:af:9d:da:6c:f6:dc:
6e:f8:29:be:9c:49:5a:c3:f8:55:80:2f:49:e7:ce:f2:08:c0:
07:30:a8:88:cd:33:25:53:3b:d7:16:c4:b8:ae:ad:39:63:80:
f5:c5:db:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:52:24 2026 by rpki-client