Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
File: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft (raw, json)
Hash identifier: ywhxX0LSUWiSm4EN5sV+2kWMd4RIpTswZi3uaHTjNAM=
Subject key identifier: 0E:8B:53:8E:AC:45:6F:56:8F:F8:79:3D:A0:31:53:54:31:54:EE:A2
Authority key identifier: 9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
Certificate issuer: /CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Certificate serial: 019D39E5BD2D8945D23B5D67D8C5D9D7D38D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
Manifest number: 0F63
Signing time: Sun 29 Mar 2026 14:00:50 +0000
Manifest this update: Sun 29 Mar 2026 14:00:50 +0000
Manifest next update: Mon 30 Mar 2026 14:00:50 +0000
Files and hashes: 1: _-WgAdeW2Y99K-sGrqhGfWbfEYA.roa (hash: 66pgLoCvktoVUaDGxvzDuDueB2STnHHTVeeS6krd+lc=)
2: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl (hash: lWS0PcHgW0BFT2PTj2HUaD61S6URRQIr2+dcbab9C/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:e5:bd:2d:89:45:d2:3b:5d:67:d8:c5:d9:d7:d3:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Validity
Not Before: Mar 29 14:00:50 2026 GMT
Not After : Mar 30 14:00:50 2026 GMT
Subject: CN=0e8b538eac456f568ff8793da03153543154eea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:eb:7c:1e:04:93:c1:37:f6:32:f0:fc:c9:50:
3d:62:71:c1:d4:00:f7:60:92:df:34:5d:9d:4f:bf:
e8:bc:6a:88:76:d3:4e:52:9c:5a:ae:8b:b2:fb:10:
23:40:5c:52:92:9d:db:6d:70:b8:e2:f5:bb:8e:0e:
81:e2:bd:54:33:59:01:e7:df:bf:e3:a6:ac:b8:95:
44:cd:c9:48:5c:4d:6d:2f:77:dc:a9:98:97:06:31:
88:5a:94:97:89:4c:3d:b6:df:82:89:f9:17:09:0c:
8e:ea:01:c2:ac:9b:b3:ce:8f:6c:63:fe:e4:bf:e4:
f8:19:73:a4:b0:ac:16:3a:fb:3c:75:3a:ce:17:63:
02:5f:8d:40:76:5b:6d:c1:c7:88:1d:05:ac:61:f5:
bf:9a:dc:d9:ec:cb:13:50:49:88:bc:fe:a0:91:bd:
5c:13:77:d0:78:fc:c7:c5:ba:37:51:77:bd:58:8c:
06:3e:51:2c:a3:a1:d8:0b:c2:ba:f1:29:70:3b:8c:
2d:ee:5c:55:72:b6:9c:03:40:e6:83:e7:02:ea:f7:
a5:25:82:69:a8:5a:73:bc:a4:31:c8:37:02:90:8b:
51:2e:4e:30:07:71:f7:a0:7c:8c:62:47:50:94:5b:
27:95:c0:0e:56:1a:81:7d:bf:91:cd:8a:05:e3:b2:
f5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:8B:53:8E:AC:45:6F:56:8F:F8:79:3D:A0:31:53:54:31:54:EE:A2
X509v3 Authority Key Identifier:
keyid:9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:ad:1d:f3:83:12:89:6e:7d:4b:9d:6d:8d:eb:a1:2f:b8:71:
8c:cf:3e:b9:74:5c:10:f7:e4:b9:c6:77:ed:18:50:66:57:77:
73:6f:72:6a:ac:f9:f2:71:7c:05:04:92:b8:46:b6:0e:fb:79:
5f:8f:c5:f1:e6:64:16:26:51:a5:8a:bb:d4:53:42:c8:1c:fb:
b5:08:0e:58:b8:00:18:9c:41:a9:53:93:b8:f4:4c:38:f6:f2:
89:27:a5:9f:ff:1a:63:87:b6:a8:e2:48:68:ca:1e:13:ef:e5:
91:22:17:4c:ab:ec:da:17:b6:a8:6c:90:71:ee:c1:aa:1b:2f:
06:4c:47:36:41:03:76:57:98:a2:63:e9:5d:dd:e0:f4:5f:d6:
eb:6b:9e:98:32:37:15:6c:1b:cb:f0:1f:06:56:40:f3:07:af:
87:34:70:21:2c:db:17:f1:cb:dc:49:ac:22:49:a0:e9:37:b4:
fb:83:cc:45:b0:95:05:9c:01:5c:97:a9:e2:43:0a:0b:ea:68:
19:c5:6e:33:3e:e2:a2:da:a3:c0:81:bb:32:e1:48:cf:c1:d7:
30:bc:4a:84:83:65:af:aa:2f:9a:47:e9:f0:6e:4d:ae:84:b4:
b2:79:93:86:3a:60:21:89:00:cb:af:51:e4:91:5f:31:1d:cc:
d3:e8:bc:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:39:05 2026 by rpki-client