Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
File: nyhBEXAEkqsL4RDoIaG85z-ApWU.mft (raw, json)
Hash identifier: yzVteX29mU6Mliwbk5QLMSFU8v/ko4D0u06vPjUs2ww=
Subject key identifier: 74:34:74:24:84:52:90:A8:4D:39:DD:DB:03:C2:73:AA:F6:76:19:E5
Authority key identifier: 9F:28:41:11:70:04:92:AB:0B:E1:10:E8:21:A1:BC:E7:3F:80:A5:65
Certificate issuer: /CN=9f284111700492ab0be110e821a1bce73f80a565
Certificate serial: 019D39AF30B5D2DA5554E3557FABF781FCCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
Manifest number: 156F
Signing time: Sun 29 Mar 2026 13:01:15 +0000
Manifest this update: Sun 29 Mar 2026 13:01:15 +0000
Manifest next update: Mon 30 Mar 2026 13:01:15 +0000
Files and hashes: 1: nyhBEXAEkqsL4RDoIaG85z-ApWU.crl (hash: CPd+PGL+jm4LdQXVmywjL6Q8CakDqBGeGJ4t3BKTuVI=)
2: yc62V3uIeA0-wy5Fq3O35pcJbHU.roa (hash: 7ByXG9IeLzWoaYBiJRWc0wUwLkE/yLcff/PMKmyqASg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:30:b5:d2:da:55:54:e3:55:7f:ab:f7:81:fc:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f284111700492ab0be110e821a1bce73f80a565
Validity
Not Before: Mar 29 13:01:15 2026 GMT
Not After : Mar 30 13:01:15 2026 GMT
Subject: CN=74347424845290a84d39dddb03c273aaf67619e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:15:5d:4d:f0:89:dc:35:72:b2:08:08:9e:b0:
80:65:27:cf:72:41:0f:29:ee:35:60:8e:4b:91:cf:
2b:f5:68:f0:d6:38:d3:54:51:db:72:6a:95:4a:5f:
51:27:b7:91:ff:60:96:79:d2:04:f9:94:e6:8c:c0:
9f:38:21:b9:d5:0e:b3:48:fd:dd:c0:e3:28:f8:6f:
c2:81:0e:96:b8:a7:0f:4f:fa:23:2f:91:d3:d2:7c:
4f:24:24:84:ed:ef:95:4e:17:f3:84:d3:51:ef:26:
b9:9e:22:73:d2:b0:b4:16:4d:5b:f8:f3:3b:74:ac:
37:ed:45:7d:b7:e8:62:aa:d3:fa:a1:44:7c:1a:cf:
fb:c7:8e:0a:af:53:a5:ff:3b:c9:bc:00:ac:05:32:
47:3c:18:d8:12:32:59:be:04:07:ec:f2:ae:82:e7:
31:d4:4c:be:ac:7a:ac:04:a2:81:f0:cc:45:54:85:
0b:2a:40:b1:24:b3:cb:be:c6:8a:1f:d0:6d:78:9d:
64:10:a9:32:cb:05:a7:2e:6f:91:e2:78:ad:a0:b9:
6b:a7:71:62:0b:48:26:15:6d:7a:06:f9:77:55:6c:
bb:30:af:72:bc:ad:9e:18:f4:15:87:8b:72:9e:9e:
13:35:84:18:b1:aa:06:b0:50:97:0f:c6:7e:49:d6:
45:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:34:74:24:84:52:90:A8:4D:39:DD:DB:03:C2:73:AA:F6:76:19:E5
X509v3 Authority Key Identifier:
keyid:9F:28:41:11:70:04:92:AB:0B:E1:10:E8:21:A1:BC:E7:3F:80:A5:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:ba:b4:06:66:02:ee:63:f5:ac:4f:c7:5b:69:cb:ba:8b:4b:
6a:f1:5d:27:91:bf:ba:66:b8:5d:cb:33:91:1a:4f:27:12:d6:
b6:0a:84:19:60:8f:a9:50:81:f3:8f:92:ec:92:58:b6:dd:f7:
b2:93:71:84:8f:ee:6b:fd:c6:47:cf:a2:2f:1e:1a:d1:f7:8b:
35:92:05:1c:52:51:f5:a4:0c:f3:c3:6e:8d:f0:6c:a4:3d:63:
19:9b:d4:34:87:93:49:c3:34:15:e1:cc:68:ca:2c:61:19:d5:
37:df:e9:da:45:a6:f5:40:4e:b4:70:19:4a:11:ed:5a:cd:e5:
29:40:52:76:04:0e:de:d9:78:e5:23:f2:d8:ca:c4:8d:59:7b:
53:a9:95:7d:e3:fc:8c:f0:3a:74:91:7a:aa:26:be:5e:14:6d:
9a:97:3f:49:45:ed:98:6b:06:b8:a1:d8:69:81:63:1f:7d:81:
33:31:0e:b9:78:e1:8c:6b:e2:c2:a8:48:ee:c9:85:41:fc:5b:
9d:1d:ad:1a:19:85:39:98:9e:19:fe:01:a0:b8:f4:6f:14:4d:
2c:b4:dd:81:37:a3:5f:96:5f:7d:65:e4:0f:f6:49:86:cf:03:
91:06:c3:7c:e6:8b:91:9b:5d:c1:68:a5:71:72:96:21:92:d2:
fa:73:c1:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05rzC10tpVVONVf6v3gfzPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMjg0MTExNzAwNDkyYWIwYmUxMTBlODIxYTFiY2U3M2Y4
MGE1NjUwHhcNMjYwMzI5MTMwMTE1WhcNMjYwMzMwMTMwMTE1WjAzMTEwLwYDVQQD
Eyg3NDM0NzQyNDg0NTI5MGE4NGQzOWRkZGIwM2MyNzNhYWY2NzYxOWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBVdTfCJ3DVysggInrCAZSfPckEP
Ke41YI5Lkc8r9Wjw1jjTVFHbcmqVSl9RJ7eR/2CWedIE+ZTmjMCfOCG51Q6zSP3d
wOMo+G/CgQ6WuKcPT/ojL5HT0nxPJCSE7e+VThfzhNNR7ya5niJz0rC0Fk1b+PM7
dKw37UV9t+hiqtP6oUR8Gs/7x44Kr1Ol/zvJvACsBTJHPBjYEjJZvgQH7PKugucx
1Ey+rHqsBKKB8MxFVIULKkCxJLPLvsaKH9BteJ1kEKkyywWnLm+R4nitoLlrp3Fi
C0gmFW16Bvl3VWy7MK9yvK2eGPQVh4tynp4TNYQYsaoGsFCXD8Z+SdZFowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHQ0dCSEUpCoTTnd2wPCc6r2dhnlMB8GA1UdIwQY
MBaAFJ8oQRFwBJKrC+EQ6CGhvOc/gKVlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnloQkVYQUVrcXNMNFJEb0lhRzg1ei1BcFdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8yZDBlOGYtY2Q4YS00ZDM4LWFjNTEt
NmY1MjNmOTYwMDczLzEvbnloQkVYQUVrcXNMNFJEb0lhRzg1ei1BcFdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8yZDBlOGYtY2Q4YS00ZDM4LWFjNTEtNmY1MjNmOTYwMDcz
LzEvbnloQkVYQUVrcXNMNFJEb0lhRzg1ei1BcFdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACrq0BmYC
7mP1rE/HW2nLuotLavFdJ5G/uma4XcszkRpPJxLWtgqEGWCPqVCB84+S7JJYtt33
spNxhI/ua/3GR8+iLx4a0feLNZIFHFJR9aQM88NujfBspD1jGZvUNIeTScM0FeHM
aMosYRnVN9/p2kWm9UBOtHAZShHtWs3lKUBSdgQO3tl45SPy2MrEjVl7U6mVfeP8
jPA6dJF6qia+XhRtmpc/SUXtmGsGuKHYaYFjH32BMzEOuXjhjGviwqhI7smFQfxb
nR2tGhmFOZieGf4BoLj0bxRNLLTdgTejX5ZffWXkD/ZJhs8DkQbDfOaLkZtdwWil
cXKWIZLS+nPB4Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 20:25:45 2026 by rpki-client