Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
File: ny83TJpzj63o-FDKq11507kARYQ.mft (raw, json)
Hash identifier: 54ZQZ9oE3BTJMbiWqmkTrkyfOo88OONDZt+kIt52Vp4=
Subject key identifier: D9:6A:E7:71:B0:55:DB:53:24:52:98:DB:F8:01:6F:80:05:5E:25:CE
Authority key identifier: 9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
Certificate issuer: /CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Certificate serial: 019D3865C2E46E6A7855A38357F443408E09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 07:01:26 +0000
Manifest this update: Sun 29 Mar 2026 07:01:26 +0000
Manifest next update: Mon 30 Mar 2026 07:01:26 +0000
Files and hashes: 1: ny83TJpzj63o-FDKq11507kARYQ.crl (hash: mna5PHnduM9voNGwkhay1hUO0LklXkScX4FmFQRJcAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:c2:e4:6e:6a:78:55:a3:83:57:f4:43:40:8e:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Validity
Not Before: Mar 29 07:01:26 2026 GMT
Not After : Mar 30 07:01:26 2026 GMT
Subject: CN=d96ae771b055db53245298dbf8016f80055e25ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:55:bd:0f:13:23:06:e0:2a:77:8c:86:52:b5:
fa:c9:ad:71:ca:11:3f:9e:02:59:4c:f0:7b:54:78:
85:64:9e:8a:bb:85:2a:ff:f5:79:d4:75:14:cc:15:
13:4c:30:71:bc:57:f0:9c:54:76:f1:90:0d:1e:b6:
21:79:aa:c1:ca:34:de:7a:82:cd:a5:f2:3c:4a:cf:
19:bc:ce:a7:ae:40:7c:24:ed:e0:0d:16:ee:79:0d:
ee:c0:a8:9c:c3:0c:56:7e:39:0b:42:c7:2d:86:c6:
f1:fb:09:fb:cb:8e:8f:7e:3e:38:80:03:1c:70:66:
93:6b:4d:5b:9d:4c:8f:a4:84:ef:98:0b:52:fa:8a:
15:5a:15:31:f5:9c:90:49:c5:a1:7b:cf:ba:62:1a:
90:c1:a4:ca:3e:2c:d6:f8:e9:a4:74:c7:6c:b0:d6:
72:66:5c:db:1f:52:22:a6:dd:b0:81:2c:47:70:35:
d6:47:fc:a0:3c:c3:73:58:14:41:6b:66:bc:ef:19:
a1:0c:49:19:19:63:9e:8e:9d:7c:41:fe:ec:7c:cd:
3a:d0:9c:82:c2:f1:fd:df:7c:d0:88:bb:f8:f4:7d:
26:7e:c8:d7:3b:de:da:f1:3b:d5:66:c0:b5:06:23:
b8:14:4f:13:a9:0c:92:54:8c:e3:05:e9:8a:cf:36:
a3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6A:E7:71:B0:55:DB:53:24:52:98:DB:F8:01:6F:80:05:5E:25:CE
X509v3 Authority Key Identifier:
keyid:9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:18:7c:e8:26:d7:93:0d:ce:2d:ab:bb:06:36:42:b2:58:c3:
a4:5a:50:52:93:f0:c1:92:5e:dd:9e:12:e4:d8:ae:13:0b:b6:
b0:c0:d7:8b:23:db:45:14:7e:1b:d0:4b:f6:6c:93:a2:26:e0:
5a:60:11:7b:f6:75:f7:bb:4f:90:27:ce:80:97:ad:65:48:eb:
d0:63:31:c9:32:6e:5a:7a:39:08:9f:ea:19:04:98:1e:b3:e6:
58:e1:ab:c4:4c:61:73:65:4c:1e:0c:a4:61:b4:87:57:95:f3:
80:b3:e8:74:d4:8b:02:9c:a7:2d:b4:0b:d1:76:65:20:93:6e:
a0:26:5c:e5:52:5c:5d:8e:a9:58:82:af:4a:43:49:f8:f4:ec:
51:73:cb:0b:84:34:35:39:fc:85:1e:44:e9:f6:49:21:83:a7:
1a:86:a3:79:7c:e2:82:9e:ca:5a:b4:69:ff:9f:80:7f:90:05:
21:f8:86:37:5d:ca:b0:db:ca:58:ce:b2:ac:f8:e2:9e:12:c3:
8b:d8:9a:ed:ca:fc:b6:e8:2e:dd:b4:d5:60:74:5e:3e:2f:80:
aa:f5:05:cb:05:05:7b:d4:48:16:c3:6e:8e:60:e1:0b:3a:d4:
e6:8d:5d:54:d6:5d:4d:0a:c3:69:49:c9:42:d5:30:7b:c2:b5:
19:53:21:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:01 2026 by rpki-client