Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
File:                     NutRbqkC2WStsqptytmh3A9bfv4.mft (raw, json)
Hash identifier:          Q1IJzyjNT3evTiFDjvRpzFpbxth+6adE4h1qSqMHFIk=
Subject key identifier:   6C:5F:66:C1:02:FD:48:BF:6D:1D:00:1C:36:B1:71:2C:EF:55:88:D8
Authority key identifier: 36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE
Certificate issuer:       /CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
Certificate serial:       019F724F3B1B7F6AF5B65EC900EAD79EB7BA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
Manifest number:          1948
Signing time:             Fri 17 Jul 2026 23:00:22 +0000
Manifest this update:     Fri 17 Jul 2026 23:00:22 +0000
Manifest next update:     Sat 18 Jul 2026 23:00:22 +0000
Files and hashes:         1: NutRbqkC2WStsqptytmh3A9bfv4.crl (hash: we1lvCGbzaGZSub+63vbqU9peXZSPNUaJz9uz8/G8Vo=)
                          2: YlXedLCyqhXrfS6xWyQ0uTsUI3U.roa (hash: F80TY0fOITpa/Bk+EYhgg41ne6mDHfXgDtH94lguM+A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Jul 2026 23:00:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:72:4f:3b:1b:7f:6a:f5:b6:5e:c9:00:ea:d7:9e:b7:ba
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe
        Validity
            Not Before: Jul 17 23:00:22 2026 GMT
            Not After : Jul 18 23:00:22 2026 GMT
        Subject: CN=6c5f66c102fd48bf6d1d001c36b1712cef5588d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:8c:59:c1:9a:ed:ef:68:9a:01:c9:bf:6b:c8:
                    2d:70:43:f8:d2:58:a6:f5:5c:f3:43:3d:dd:f5:fa:
                    89:8e:5e:cb:da:2d:f4:7f:24:f7:2c:40:ce:63:c9:
                    16:0b:4e:f9:90:d5:6c:f2:ab:ff:82:a0:ac:86:39:
                    34:fb:e7:25:76:40:6b:3f:b8:44:4f:6d:0e:ee:19:
                    d0:aa:26:e2:5e:80:33:19:fb:54:34:9a:93:a1:39:
                    6e:ca:65:75:2f:4b:07:65:f4:e8:5f:07:c1:6b:db:
                    42:0d:8d:81:8d:db:b7:8c:52:2c:a7:13:62:2f:0f:
                    e9:72:28:28:68:e3:f9:1e:bc:71:5b:99:3a:be:78:
                    13:ea:9b:62:d0:54:7b:1e:f4:21:00:b8:e9:d8:48:
                    97:36:11:49:74:a8:51:bc:d7:3b:80:0c:c5:8c:fe:
                    14:c0:84:d6:62:2d:96:3b:86:bd:72:0e:30:42:2d:
                    c4:b1:99:97:61:b8:eb:50:91:bd:51:39:7c:e7:79:
                    6c:89:91:77:f2:29:5f:0a:5e:2b:aa:5a:12:6b:1f:
                    fe:f2:9b:06:35:9c:19:df:3a:71:3c:35:21:01:1e:
                    92:c8:07:cd:ff:15:a5:31:b9:d0:1c:7b:3a:cc:66:
                    cd:19:b4:c4:20:52:b0:c0:02:cf:2a:39:14:b8:29:
                    c6:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:5F:66:C1:02:FD:48:BF:6D:1D:00:1C:36:B1:71:2C:EF:55:88:D8
            X509v3 Authority Key Identifier:
                keyid:36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:47:9b:a1:80:b3:d4:13:f0:3e:62:1a:79:bd:46:e5:63:e6:
         55:66:1c:21:f8:b1:be:de:2a:f0:99:9f:81:1b:2f:f4:92:fe:
         93:d8:93:30:de:47:1e:bc:90:71:55:42:fc:5c:9b:f9:51:5d:
         3d:2d:4f:3c:ad:89:84:1d:51:3f:b5:34:a7:3d:58:12:79:bc:
         43:87:42:ce:cc:b4:5e:f3:cd:cd:f3:20:d4:10:b6:21:8d:09:
         97:c2:51:51:8c:ef:a7:42:18:bb:49:29:4f:12:af:9e:f8:c8:
         ee:17:bc:b1:3d:93:db:34:c8:c5:c2:c7:fa:0e:1d:e2:5c:ff:
         59:d8:60:47:a2:48:5c:84:79:cb:dd:7a:3b:5e:22:5b:82:4a:
         43:f0:0a:c3:43:0a:58:4b:3a:24:f9:9a:cb:09:04:44:3f:1c:
         98:bb:81:87:f1:34:eb:9b:0b:14:dc:a8:91:58:3a:e9:a2:aa:
         24:89:b4:ed:2b:bc:f5:d8:e4:34:ce:d2:b5:d4:a5:3c:d6:d1:
         41:1a:db:62:8a:a8:1c:5a:f0:f5:0c:3d:44:04:b7:07:cb:45:
         66:e0:7e:1f:d4:4b:11:44:43:8b:90:ad:1a:b2:d4:53:2e:1b:
         d2:1e:bc:3c:b1:e6:4c:36:fb:29:b1:52:49:69:e1:11:6d:66:
         56:cb:11:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:15:22 2026 by rpki-client