Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
File: NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft (raw, json)
Hash identifier: uatp9zABCR5t7TYZUzW2zu2etAqNUR2Um9hKe1xEmxM=
Subject key identifier: 6D:D8:A5:03:76:7A:C5:F7:7C:9B:DE:C8:02:5A:2E:AB:A7:D8:4F:67
Authority key identifier: 35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
Certificate issuer: /CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Certificate serial: 019D38D2E2AABE7F0D82DC55AB7D73B32374
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
Manifest number: 110E
Signing time: Sun 29 Mar 2026 09:00:37 +0000
Manifest this update: Sun 29 Mar 2026 09:00:37 +0000
Manifest next update: Mon 30 Mar 2026 09:00:37 +0000
Files and hashes: 1: 1dnMq6ZCcFb70edGxGmL0hiobfI.roa (hash: +vsRlNxh8n7NYthhGysqntNveXYKCA8nzfq82JjmeCw=)
2: NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl (hash: HpJkxDIC19bxOjBFjxB8N4gtM4QilM/fdc7QDBqhZZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:e2:aa:be:7f:0d:82:dc:55:ab:7d:73:b3:23:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Validity
Not Before: Mar 29 09:00:37 2026 GMT
Not After : Mar 30 09:00:37 2026 GMT
Subject: CN=6dd8a503767ac5f77c9bdec8025a2eaba7d84f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:49:1a:b4:19:77:aa:cb:88:c4:d7:01:42:2e:
25:e0:b5:32:62:a7:58:ae:74:c5:9d:42:4a:2f:4c:
38:12:75:a1:08:35:58:7c:07:4f:c4:06:87:28:c4:
09:48:91:5d:3b:c7:ab:e9:ff:53:82:cf:5e:66:26:
bc:36:b8:db:2b:c1:7f:9f:13:df:02:53:a8:be:1f:
4e:69:8b:eb:75:da:35:e2:a6:2a:d0:94:52:16:0c:
eb:34:be:85:47:7e:4f:12:4a:45:07:8f:91:19:1c:
e3:10:b8:ce:8c:f2:38:cc:e6:c6:3d:f4:89:23:f8:
8d:7a:eb:55:97:f2:2d:36:8a:b0:57:6b:fc:f7:16:
67:21:7a:aa:6c:80:1c:7e:16:d0:d5:d8:e5:df:da:
23:b0:e2:50:f7:78:e8:9a:76:70:eb:db:68:4e:c1:
71:93:ad:db:ba:25:39:92:6d:fb:c2:8a:55:2d:1f:
d5:a8:f7:5d:d3:e8:41:e7:27:94:a6:e4:78:11:c8:
fa:e3:f0:82:2d:39:37:dd:0c:8f:63:3f:5c:5d:24:
13:92:fd:cc:89:f5:de:b3:c6:00:25:c1:2f:3d:79:
6f:61:8e:2b:1e:d7:d9:55:d9:26:42:a3:0b:cf:36:
12:ef:c6:d5:4b:3c:28:a2:92:65:54:59:9a:25:1c:
df:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D8:A5:03:76:7A:C5:F7:7C:9B:DE:C8:02:5A:2E:AB:A7:D8:4F:67
X509v3 Authority Key Identifier:
keyid:35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:fb:0d:6e:3c:c9:f1:11:55:8b:0a:6d:b7:55:4e:43:dd:f5:
97:38:e3:29:84:0f:b0:fc:13:c3:e7:30:aa:09:b6:5d:47:4d:
13:8c:d2:4e:e9:f6:9c:ff:41:be:d3:50:97:1d:37:c0:77:1d:
f8:7a:ad:7c:25:d0:2f:8e:cb:20:90:03:99:4c:11:af:7c:d6:
f5:bb:1e:7e:49:13:bc:8e:d9:ab:a9:fa:71:84:b2:f0:ee:d6:
a1:7e:09:21:9f:ab:35:92:22:3f:a1:fd:54:21:f9:c5:b9:c6:
db:3a:01:93:c9:64:ef:52:f7:49:2a:92:a6:0b:e1:5c:ea:41:
fb:c4:94:23:d6:a4:0c:91:bc:f8:ed:61:35:1f:ff:29:d5:97:
87:7f:ed:94:09:84:4e:b4:7f:32:35:2e:2a:6b:9e:7f:1d:4f:
9b:4e:15:89:a7:dd:83:04:30:1f:8b:68:9c:d9:21:39:ea:8a:
d9:2d:a5:70:21:b8:e4:15:a4:a8:3a:10:e8:cd:42:b2:35:a1:
3c:2a:09:dc:0f:94:ff:14:ba:47:7d:09:ee:48:0f:38:13:48:
5b:1b:80:b1:89:12:88:16:ba:a8:a6:7d:fb:b3:67:80:6b:f5:
0e:97:e0:a9:3a:42:84:9b:f2:f1:70:44:f6:2f:e1:a8:76:f2:
ed:2e:73:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040uKqvn8NgtxVq31zsyN0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1M2YxN2Y0YmJiMTkzNDZkYzVhZmMwYzIzNTg3OWZiZTYz
NTdjNmQwHhcNMjYwMzI5MDkwMDM3WhcNMjYwMzMwMDkwMDM3WjAzMTEwLwYDVQQD
Eyg2ZGQ4YTUwMzc2N2FjNWY3N2M5YmRlYzgwMjVhMmVhYmE3ZDg0ZjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0katBl3qsuIxNcBQi4l4LUyYqdY
rnTFnUJKL0w4EnWhCDVYfAdPxAaHKMQJSJFdO8er6f9Tgs9eZia8NrjbK8F/nxPf
AlOovh9OaYvrddo14qYq0JRSFgzrNL6FR35PEkpFB4+RGRzjELjOjPI4zObGPfSJ
I/iNeutVl/ItNoqwV2v89xZnIXqqbIAcfhbQ1djl39ojsOJQ93jomnZw69toTsFx
k63buiU5km37wopVLR/VqPdd0+hB5yeUpuR4Ecj64/CCLTk33QyPYz9cXSQTkv3M
ifXes8YAJcEvPXlvYY4rHtfZVdkmQqMLzzYS78bVSzwoopJlVFmaJRzfQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG3YpQN2esX3fJveyAJaLqun2E9nMB8GA1UdIwQY
MBaAFDU/F/S7sZNG3Fr8DCNYefvmNXxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlQ4WDlMdXhrMGJjV3Z3TUkxaDUtLVkxZkcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wYTI0YjUtYjlhZC00OGE2LWFkZjct
OWZkODRjNzliMGVmLzEvTlQ4WDlMdXhrMGJjV3Z3TUkxaDUtLVkxZkcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8wYTI0YjUtYjlhZC00OGE2LWFkZjctOWZkODRjNzliMGVm
LzEvTlQ4WDlMdXhrMGJjV3Z3TUkxaDUtLVkxZkcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVvsNbjzJ
8RFViwptt1VOQ931lzjjKYQPsPwTw+cwqgm2XUdNE4zSTun2nP9BvtNQlx03wHcd
+HqtfCXQL47LIJADmUwRr3zW9bsefkkTvI7Zq6n6cYSy8O7WoX4JIZ+rNZIiP6H9
VCH5xbnG2zoBk8lk71L3SSqSpgvhXOpB+8SUI9akDJG8+O1hNR//KdWXh3/tlAmE
TrR/MjUuKmuefx1Pm04ViafdgwQwH4tonNkhOeqK2S2lcCG45BWkqDoQ6M1CsjWh
PCoJ3A+U/xS6R30J7kgPOBNIWxuAsYkSiBa6qKZ9+7NngGv1DpfgqTpChJvy8XBE
9i/hqHby7S5zPg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:54 2026 by rpki-client