Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
File: nfToC0ytTlC3iO3xaXZxLe7_bA0.mft (raw, json)
Hash identifier: AZfnwDxvj4Ui24ZEVV1WqS3X+TBbIlnoFB3WoSDzfjo=
Subject key identifier: 48:E3:1E:D8:4A:F4:BF:CE:B3:47:D1:D5:47:D5:C5:0D:20:49:80:DC
Authority key identifier: 9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
Certificate issuer: /CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Certificate serial: 019D39415768D21AD2BA43F4C7933933D8F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
Manifest number: 1164
Signing time: Sun 29 Mar 2026 11:01:16 +0000
Manifest this update: Sun 29 Mar 2026 11:01:16 +0000
Manifest next update: Mon 30 Mar 2026 11:01:16 +0000
Files and hashes: 1: 6qyreawZF4fVMyWkw4FMT5_E4Cs.roa (hash: KqH2FCJeUYV2BaDFAOaLAJqNcjNFt24zga0dBBMyQAY=)
2: nfToC0ytTlC3iO3xaXZxLe7_bA0.crl (hash: lDoVtJB4+Wj5UkS10T4H1rtW4FSir/SFzp0Q6mfBtOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:57:68:d2:1a:d2:ba:43:f4:c7:93:39:33:d8:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df4e80b4cad4e50b788edf16976712deeff6c0d
Validity
Not Before: Mar 29 11:01:16 2026 GMT
Not After : Mar 30 11:01:16 2026 GMT
Subject: CN=48e31ed84af4bfceb347d1d547d5c50d204980dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:63:70:02:ab:7b:85:e7:aa:e9:66:a6:35:a8:
c9:0e:c5:bd:2c:9b:58:7d:1a:92:ac:91:19:2b:91:
88:77:63:89:b9:36:7f:d6:44:19:35:e7:1f:03:f7:
25:64:10:b2:d2:94:13:8f:17:34:b8:59:69:f6:f6:
83:7a:af:47:b3:ec:0c:47:57:c6:7e:b9:0a:70:fa:
35:f7:b9:bf:ea:b3:ad:42:04:1c:c7:ab:e0:a9:b4:
76:f8:ce:96:99:95:b5:ec:c6:f8:bf:82:3f:80:b2:
81:3d:24:48:13:1c:2c:23:9f:5d:f5:ba:79:56:b1:
83:d2:9c:97:92:69:84:ed:15:2e:a9:2c:f0:74:4b:
20:56:c2:ec:d9:a9:1a:09:a7:0c:9b:aa:f4:0d:44:
41:9b:af:59:5a:a5:49:60:df:db:61:c2:58:2b:9e:
5c:b9:a2:96:03:f8:3e:64:ee:59:5f:65:b9:76:58:
5d:cb:7f:f3:57:e1:e2:c8:d9:8a:0f:e8:87:de:a6:
2a:d3:84:39:89:68:a9:f9:87:b5:94:ab:44:d2:fe:
5f:55:41:5f:91:2d:6f:45:63:ad:47:fc:e0:16:ea:
b8:ce:17:e6:82:00:80:57:ca:d8:28:05:71:cc:38:
31:75:2b:22:2d:ea:45:72:41:58:3f:21:04:62:c7:
5e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E3:1E:D8:4A:F4:BF:CE:B3:47:D1:D5:47:D5:C5:0D:20:49:80:DC
X509v3 Authority Key Identifier:
keyid:9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:74:41:47:1f:6a:bf:7b:54:d7:67:31:87:84:38:61:04:b8:
11:b6:8f:47:e2:51:66:f5:70:32:4e:ea:a1:f8:ec:7e:b3:e3:
5d:6c:f5:90:e7:dc:95:16:dd:82:2b:bb:cb:f6:cf:cf:0c:8f:
70:77:ae:fe:3f:66:8e:b6:b1:c9:79:c5:09:22:b1:cd:3e:cd:
f4:17:72:03:49:72:fb:5a:bb:3b:99:6f:2f:9f:2f:c5:0d:ce:
5f:93:77:ef:17:ef:d8:7b:7d:19:32:8d:cd:a1:d4:1e:17:e1:
c9:2b:b0:cf:9b:bb:7d:1a:fb:f9:40:b8:0f:c6:4b:1a:1d:0a:
d0:c0:07:5f:a2:cb:cb:27:b5:94:63:0f:f9:63:e8:a1:dd:c0:
80:59:68:5a:77:8d:66:e1:16:83:1d:f4:a3:f8:68:05:10:f1:
52:b7:d6:d7:db:9f:8f:18:e4:fd:82:1f:cf:4f:7c:a2:62:49:
6a:de:54:5b:f6:19:5e:8f:73:b7:c6:6a:1d:33:d2:b2:f7:ed:
45:03:65:49:bc:5c:42:10:5a:da:25:53:d5:81:af:16:b9:51:
7b:7a:92:6f:9c:b9:2c:e9:72:26:9d:d5:92:c0:c3:52:d8:db:
89:59:95:6d:08:47:ad:34:ed:af:59:6d:63:30:59:ea:c3:71:
29:0b:1c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:45:39 2026 by rpki-client