Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
File: NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft (raw, json)
Hash identifier: HibZlIVXCpssD53T1PBy66fplWwFda5W+Cbf8k8Jy70=
Subject key identifier: 26:DA:76:26:9F:E0:60:D9:2C:AA:30:CC:A8:C8:F1:84:E1:AA:06:68
Authority key identifier: 35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
Certificate issuer: /CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Certificate serial: 019F19B0E2792AD727B46378E5CEAA2FBCD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
Manifest number: 1207
Signing time: Tue 30 Jun 2026 18:00:50 +0000
Manifest this update: Tue 30 Jun 2026 18:00:50 +0000
Manifest next update: Wed 01 Jul 2026 18:00:50 +0000
Files and hashes: 1: 1dnMq6ZCcFb70edGxGmL0hiobfI.roa (hash: +vsRlNxh8n7NYthhGysqntNveXYKCA8nzfq82JjmeCw=)
2: NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl (hash: HXMAnRNwtmEXJazqSwhlxIyCQbOtgmBlcTQxeogtYDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:b0:e2:79:2a:d7:27:b4:63:78:e5:ce:aa:2f:bc:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Validity
Not Before: Jun 30 18:00:50 2026 GMT
Not After : Jul 1 18:00:50 2026 GMT
Subject: CN=26da76269fe060d92caa30cca8c8f184e1aa0668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:15:4e:47:72:f0:41:84:f4:b3:1c:4b:14:ea:
13:91:72:6d:e0:31:dd:14:de:c8:6c:8d:4e:57:c4:
b7:d0:79:1e:75:82:e2:93:4b:c8:2c:1b:76:92:0b:
34:d2:b0:8f:64:6a:20:c9:ba:45:73:d9:3a:df:54:
9a:dc:5a:c7:ed:1c:d1:80:ee:c5:53:0d:c9:87:e5:
64:08:6e:9a:43:2f:e9:13:05:d3:0b:1e:fe:35:8b:
6f:56:87:5f:4c:7c:7a:c1:c1:98:b8:85:f7:72:61:
54:99:e9:b5:0e:78:3d:41:76:e0:4e:8e:22:65:9a:
fe:41:83:02:45:81:27:13:1e:63:a2:60:80:9d:95:
e8:7a:7a:13:2f:4c:97:16:1d:63:15:e1:8f:89:4f:
84:fc:ab:7a:39:d8:9a:6e:48:5b:dd:0e:0a:eb:c2:
b4:87:11:8e:47:e9:7c:f0:78:73:ce:c6:b9:d3:f1:
6e:40:e0:9e:4f:15:bf:c4:db:0c:9b:a0:f8:03:b4:
10:04:0c:a6:36:5e:8e:79:50:08:7b:02:4b:5f:c1:
f4:c4:b3:29:31:ff:36:3b:21:1b:02:10:e7:3c:a0:
80:92:10:75:ac:50:07:67:fb:de:e8:3c:34:cd:85:
df:8f:58:4e:f4:10:60:de:62:2a:34:54:b2:83:6f:
6e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:DA:76:26:9F:E0:60:D9:2C:AA:30:CC:A8:C8:F1:84:E1:AA:06:68
X509v3 Authority Key Identifier:
keyid:35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:28:56:f8:be:8d:20:bd:9c:a1:92:df:5a:db:86:d3:90:53:
33:66:ac:0f:f7:de:31:e1:9d:8f:5f:ff:22:7e:a2:3f:f3:4c:
4a:93:61:1a:dd:73:8a:f8:01:da:50:c7:fc:41:04:6c:ca:0e:
56:e3:43:b0:7b:80:32:25:ce:d2:8a:21:d5:22:07:e8:31:8f:
73:38:ef:80:72:b9:09:74:36:8f:1e:2a:1c:6f:4d:d9:87:8f:
74:d6:3e:58:69:be:db:39:ec:9b:19:a7:76:d4:44:f1:47:00:
7f:5a:3a:e8:61:b1:b5:af:08:67:21:af:45:fd:21:be:65:0e:
95:76:e5:d0:0e:93:45:1c:c3:ee:ea:3e:2f:f4:71:5b:d0:de:
a1:7c:ae:4b:00:62:40:dc:17:c4:62:b6:2f:9d:a0:2c:54:77:
cb:53:32:2a:d6:df:7b:b4:60:de:bf:5c:80:2e:80:e9:ff:c5:
92:5c:28:fd:22:ff:fe:80:50:f3:e8:66:28:8a:e0:e4:34:6d:
52:0f:91:5e:46:b0:23:ba:be:2f:fa:84:a2:3e:f6:fe:89:63:
14:ac:c6:56:cd:3a:79:a0:50:c7:51:5e:9f:6d:40:60:71:a4:
44:26:b1:c0:b4:b7:5a:cf:51:89:e6:22:40:eb:bb:97:9e:6c:
7f:6c:ad:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:36:23 2026 by rpki-client