Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
File: NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft (raw, json)
Hash identifier: zj7zKWw7vo//eNTXJ7XtQN5NumIfomdgHCL65A8LgP4=
Subject key identifier: DD:25:FC:07:8E:0B:8C:E6:56:3D:4F:C5:62:90:11:E8:E1:38:C4:89
Authority key identifier: 34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D
Certificate issuer: /CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d
Certificate serial: 019EB733525AAF1F9603D982D6DE249FEFFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
Manifest number: 04A4
Signing time: Thu 11 Jun 2026 15:00:54 +0000
Manifest this update: Thu 11 Jun 2026 15:00:54 +0000
Manifest next update: Fri 12 Jun 2026 15:00:54 +0000
Files and hashes: 1: 7ksTJ_jFitxF4bukC24j3eo_mx0.roa (hash: P5sZaUJcRIlYxIsN9061EjjltvsNE9PdjoK/NkSXYrQ=)
2: NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl (hash: uO/zhIexkJD/kreYffxKOiSp8TxvvvxRoJf6J+Rnh0k=)
3: jSMK0-DQ4LkW8HGxfeOZqpRoUDg.roa (hash: LbCW9qnhO4rcrIcNPyJRkz9sjQKYiVfJkLlpl6db0Mw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:33:52:5a:af:1f:96:03:d9:82:d6:de:24:9f:ef:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d
Validity
Not Before: Jun 11 15:00:54 2026 GMT
Not After : Jun 12 15:00:54 2026 GMT
Subject: CN=dd25fc078e0b8ce6563d4fc5629011e8e138c489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:79:48:94:3c:a8:f8:5a:0a:63:8a:8f:37:52:
5b:d9:46:bc:9c:a4:0c:f6:92:da:49:44:d8:91:57:
31:94:ee:1d:cd:51:d4:be:7f:dd:98:11:14:64:ea:
29:af:83:16:47:c3:8c:f0:c2:37:32:fd:df:74:63:
84:43:ab:a3:f9:c2:4f:46:c5:6e:56:89:67:08:90:
aa:74:41:ec:1a:28:4f:28:ad:4b:17:6c:25:cb:ee:
16:7b:c4:4a:d8:55:e4:82:ef:f4:8c:e2:bb:40:71:
23:8d:b7:0c:78:a2:c6:23:04:42:c9:fa:04:41:46:
10:87:6b:9d:0b:1c:94:de:8a:55:94:26:58:6b:03:
77:ce:ba:3d:3b:f6:28:9a:c6:ce:66:3c:f8:6b:20:
bc:e7:76:3a:be:91:d4:27:41:10:fe:0d:a3:33:82:
0a:27:36:67:78:ff:15:05:21:d9:35:ad:c0:36:72:
f7:5b:2e:d4:b6:e4:e2:cb:42:22:22:86:34:fd:9a:
cc:5a:8d:de:32:92:ef:14:63:05:b3:0a:66:34:a6:
15:dc:35:c2:56:11:fa:06:9e:a2:36:2c:3d:ea:0a:
f3:1f:c1:35:16:96:52:e7:b7:d2:d4:02:f9:26:7f:
d4:56:7f:9d:7f:21:0d:36:b2:5b:f8:09:d5:09:44:
d5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:25:FC:07:8E:0B:8C:E6:56:3D:4F:C5:62:90:11:E8:E1:38:C4:89
X509v3 Authority Key Identifier:
keyid:34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:4c:5d:d7:0f:5b:ae:17:70:a8:f4:1d:5e:c4:c4:51:6b:ba:
cb:09:aa:d8:36:5f:a0:13:1c:50:61:79:c2:bb:34:e8:a1:a5:
77:15:b3:3c:c0:a7:fa:73:03:63:af:28:11:e1:c7:76:40:4e:
76:43:32:7d:88:aa:1c:d1:2d:62:6c:35:6a:09:09:4a:e8:3d:
2b:e7:fb:0c:63:5a:02:9d:12:b6:3b:99:30:72:34:41:27:1b:
b0:8a:63:ef:17:0e:dc:39:63:3b:54:db:1c:0c:d3:33:32:ce:
7f:c9:43:8a:ef:61:25:81:32:fc:0a:ef:33:ae:96:da:d2:07:
ce:01:e9:4a:c8:ce:09:1d:f5:e3:79:b9:4c:67:df:a1:30:f5:
3e:bd:c1:44:85:d3:b9:ad:9e:f7:95:55:47:71:b2:23:b7:2c:
34:dd:77:37:58:9a:bf:ac:13:22:ab:5c:4c:d8:19:e0:b0:4e:
ee:9c:71:50:61:27:03:92:94:24:d6:61:9e:13:33:d4:e6:5f:
42:d2:02:40:df:ad:d7:cf:b9:6f:a7:b8:73:72:74:ac:1b:09:
ac:d2:a3:3f:3d:a5:1c:39:5b:26:57:57:04:ba:b7:21:db:d7:
6c:3a:16:d1:af:61:de:86:ca:d4:6f:e1:6a:db:ab:76:0a:56:
03:14:89:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ63M1Jarx+WA9mC1t4kn+/7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ZGQ0MDI2ZDI5MGYzMjAxZDI4ZWY2ODRkM2M1YWMxM2M5
NmVjNmQwHhcNMjYwNjExMTUwMDU0WhcNMjYwNjEyMTUwMDU0WjAzMTEwLwYDVQQD
EyhkZDI1ZmMwNzhlMGI4Y2U2NTYzZDRmYzU2MjkwMTFlOGUxMzhjNDg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXlIlDyo+FoKY4qPN1Jb2Ua8nKQM
9pLaSUTYkVcxlO4dzVHUvn/dmBEUZOopr4MWR8OM8MI3Mv3fdGOEQ6uj+cJPRsVu
VolnCJCqdEHsGihPKK1LF2wly+4We8RK2FXkgu/0jOK7QHEjjbcMeKLGIwRCyfoE
QUYQh2udCxyU3opVlCZYawN3zro9O/YomsbOZjz4ayC853Y6vpHUJ0EQ/g2jM4IK
JzZneP8VBSHZNa3ANnL3Wy7UtuTiy0IiIoY0/ZrMWo3eMpLvFGMFswpmNKYV3DXC
VhH6Bp6iNiw96grzH8E1FpZS57fS1AL5Jn/UVn+dfyENNrJb+AnVCUTV+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN0l/AeOC4zmVj1PxWKQEejhOMSJMB8GA1UdIwQY
MBaAFDTdQCbSkPMgHSjvaE08WsE8luxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTk4xQUp0S1E4eUFkS085b1RUeGF3VHlXN0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy83MmE0MDUtMTU5OC00MDMzLThlMmIt
ODc4NTA3ZWQ0NmY3LzEvTk4xQUp0S1E4eUFkS085b1RUeGF3VHlXN0cwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy83MmE0MDUtMTU5OC00MDMzLThlMmItODc4NTA3ZWQ0NmY3
LzEvTk4xQUp0S1E4eUFkS085b1RUeGF3VHlXN0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAUxd1w9b
rhdwqPQdXsTEUWu6ywmq2DZfoBMcUGF5wrs06KGldxWzPMCn+nMDY68oEeHHdkBO
dkMyfYiqHNEtYmw1agkJSug9K+f7DGNaAp0StjuZMHI0QScbsIpj7xcO3DljO1Tb
HAzTMzLOf8lDiu9hJYEy/ArvM66W2tIHzgHpSsjOCR3143m5TGffoTD1Pr3BRIXT
ua2e95VVR3GyI7csNN13N1iav6wTIqtcTNgZ4LBO7pxxUGEnA5KUJNZhnhMz1OZf
QtICQN+t18+5b6e4c3J0rBsJrNKjPz2lHDlbJldXBLq3IdvXbDoW0a9h3obK1G/h
aturdgpWAxSJSA==
-----END CERTIFICATE-----
Generated at Thu Jun 11 23:07:59 2026 by rpki-client