Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
File: NutRbqkC2WStsqptytmh3A9bfv4.mft (raw, json)
Hash identifier: dafdoSqQIqHW5re3Qtvbvb8q+J3SK26wYsGxnvjWduI=
Subject key identifier: 0E:48:E3:F7:44:39:E7:68:09:A8:92:AF:21:3A:0A:B6:CB:25:E5:1B
Authority key identifier: 36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE
Certificate issuer: /CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
Certificate serial: 019D389BAAC078FB94C16C9B33ABF080EF0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
Manifest number: 1821
Signing time: Sun 29 Mar 2026 08:00:18 +0000
Manifest this update: Sun 29 Mar 2026 08:00:18 +0000
Manifest next update: Mon 30 Mar 2026 08:00:18 +0000
Files and hashes: 1: NutRbqkC2WStsqptytmh3A9bfv4.crl (hash: lWPlhF00fG6rnuNW3MF3+urtCBSSu3ltrzYijZsq8vk=)
2: YlXedLCyqhXrfS6xWyQ0uTsUI3U.roa (hash: F80TY0fOITpa/Bk+EYhgg41ne6mDHfXgDtH94lguM+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:aa:c0:78:fb:94:c1:6c:9b:33:ab:f0:80:ef:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
Validity
Not Before: Mar 29 08:00:18 2026 GMT
Not After : Mar 30 08:00:18 2026 GMT
Subject: CN=0e48e3f74439e76809a892af213a0ab6cb25e51b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fd:64:2c:d1:18:1e:d3:54:18:0d:f5:e0:3d:
0d:c1:2e:58:02:c3:5c:38:ca:c9:0a:0b:66:e0:a1:
81:43:06:29:10:92:0b:91:5f:76:23:26:1d:67:eb:
4e:b2:f7:51:95:09:44:15:91:23:09:9b:67:1e:62:
75:6b:bb:99:b3:6d:91:f9:01:32:b0:63:ab:2a:34:
a8:8f:bb:6b:91:d7:34:6c:49:1b:c8:e3:d2:b5:30:
47:07:18:b7:6d:89:a0:53:69:45:24:ae:6b:cc:49:
cc:a5:f6:41:da:80:8b:e9:78:33:24:3e:35:8b:ce:
2e:30:4a:d1:78:ed:9c:a5:65:92:d0:e1:ea:4b:55:
3f:74:f5:d2:12:65:7d:16:f8:61:ba:3f:86:c2:fb:
bd:1c:05:68:d0:6e:0b:a6:c3:d2:e6:83:29:24:d5:
a1:94:55:00:be:a2:63:b7:9e:90:9f:35:2a:6b:ed:
41:ed:5c:56:a1:ae:1d:50:b1:fa:8a:3f:c8:4b:75:
ac:02:8c:9a:60:78:ab:9a:2b:a1:18:4b:bc:6a:c0:
10:3f:69:db:24:45:3e:90:a1:7f:c6:85:48:25:cb:
47:f7:78:48:ee:ef:f9:ac:d6:ca:ac:76:06:e8:2f:
cd:c8:bd:32:a5:c2:57:b8:0c:a9:bc:db:89:15:cd:
3e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:48:E3:F7:44:39:E7:68:09:A8:92:AF:21:3A:0A:B6:CB:25:E5:1B
X509v3 Authority Key Identifier:
keyid:36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:c7:b7:a1:ff:39:f0:66:0b:13:1a:82:24:3a:71:fd:7e:f2:
69:2b:0d:5a:2c:82:dd:b8:16:89:7e:bd:76:99:3f:0e:4a:7a:
37:38:b1:97:2c:f8:b6:c8:7f:01:1a:e1:b3:10:8c:fe:42:c3:
15:6a:56:6a:69:8c:ab:1c:e3:4a:ac:66:0d:8d:c8:1a:5b:da:
24:d6:48:73:22:03:cf:a4:27:32:a4:c3:e6:43:9a:08:1f:79:
ef:33:7f:e3:6f:c3:68:f9:f2:58:6b:22:c9:72:1f:0b:94:46:
d9:c3:34:2a:be:79:e5:3a:50:6b:37:61:1b:23:d0:e4:99:1d:
61:ac:38:37:7b:18:43:52:94:67:c4:9b:f7:f2:49:70:af:10:
ec:c4:75:42:f8:6d:d9:86:5b:04:60:5b:dc:f0:1c:48:6d:c5:
e7:44:75:17:35:aa:21:22:95:05:41:29:f9:63:ec:97:35:9e:
43:a5:ca:5a:6a:9e:7f:e5:46:86:14:20:08:03:00:b1:e8:90:
c4:e9:c7:ff:95:01:0c:33:e3:ba:3a:39:70:d8:c7:8a:3b:a0:
6f:1e:94:dc:3f:0c:8b:f9:5f:4d:27:14:01:8f:19:55:08:57:
3e:1e:20:d9:f8:98:e5:99:d3:11:f3:2c:cc:7f:fb:62:b2:1e:
81:5b:3c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:53:40 2026 by rpki-client