Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
File: NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft (raw, json)
Hash identifier: 8hjcNc8DfNIfnE2Pqn5kjIvHTnlWcAdeZykKrW2r8jw=
Subject key identifier: FE:CF:64:E9:30:39:35:6F:41:9A:54:79:6B:AA:F6:D1:D3:DB:8C:6E
Authority key identifier: 34:DD:CB:C8:F6:1B:26:0F:D3:F3:E7:8B:6B:86:87:7C:B9:5F:D8:3E
Certificate issuer: /CN=34ddcbc8f61b260fd3f3e78b6b86877cb95fd83e
Certificate serial: 019D37C103DD319362DF0DE71FAD582CB030
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
Manifest number: 146F
Signing time: Sun 29 Mar 2026 04:01:29 +0000
Manifest this update: Sun 29 Mar 2026 04:01:29 +0000
Manifest next update: Mon 30 Mar 2026 04:01:29 +0000
Files and hashes: 1: NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl (hash: I8sG/bwzrtqxCr4SBciZXQduKmW6Q9xh9RgsZPwT5v4=)
2: yLkWfOZ9pwRHBarKKNZ4fHLFIcc.roa (hash: svQPIicQF6L4iRCTdIy2JhuS8+4OxhvfXxWW++0FFdM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:03:dd:31:93:62:df:0d:e7:1f:ad:58:2c:b0:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34ddcbc8f61b260fd3f3e78b6b86877cb95fd83e
Validity
Not Before: Mar 29 04:01:29 2026 GMT
Not After : Mar 30 04:01:29 2026 GMT
Subject: CN=fecf64e93039356f419a54796baaf6d1d3db8c6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a3:df:88:bf:36:44:9f:5b:ed:1f:88:27:fc:
7c:28:8a:cd:75:f7:3c:b4:a0:c7:64:20:73:da:e0:
3c:3e:4f:fb:a6:54:51:2d:e7:2d:33:57:5f:a1:06:
7b:d8:f4:2d:3a:52:b5:97:86:d8:ed:19:c0:af:e0:
7b:37:9b:bd:ed:55:b0:58:73:46:98:b3:51:0b:3d:
27:04:ad:c9:a3:e1:98:af:1c:f9:38:0d:2e:d1:0e:
f8:f3:7d:ac:f1:fb:fe:2e:34:6f:34:65:c2:a6:c9:
f3:34:60:9c:fb:da:09:59:28:2a:48:2a:29:09:59:
fd:a3:ce:7e:b3:34:eb:a3:d7:80:1e:94:0f:2c:7f:
69:5f:9d:36:38:b1:bd:0c:16:7a:01:de:5e:7c:e3:
30:ee:9a:c1:17:3d:15:14:47:29:03:bc:b0:73:d8:
a8:0e:57:8b:2b:6e:d7:92:74:60:79:9b:5a:c3:5d:
e4:12:86:4f:70:d1:91:a4:51:14:6c:62:f8:55:b9:
45:c9:52:db:4c:a1:f6:b4:79:04:79:87:6c:67:9c:
b8:a0:46:e6:29:dc:90:fc:24:28:6e:08:96:ad:ee:
4d:ed:e0:b9:78:f0:6e:c7:fa:9e:5e:36:39:05:b6:
08:cf:74:d9:b9:57:91:5f:21:9c:3e:f6:c9:2c:a5:
7e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:CF:64:E9:30:39:35:6F:41:9A:54:79:6B:AA:F6:D1:D3:DB:8C:6E
X509v3 Authority Key Identifier:
keyid:34:DD:CB:C8:F6:1B:26:0F:D3:F3:E7:8B:6B:86:87:7C:B9:5F:D8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:31:7b:07:66:0d:4f:9b:7f:2d:be:91:18:74:3b:7b:e8:99:
05:fe:12:87:7a:60:5b:1d:4d:1a:f9:62:68:83:2f:0e:f4:36:
50:52:38:d2:15:38:23:28:0d:bc:fb:ad:b3:c5:a2:a8:17:cb:
4b:b8:62:a1:e7:3a:b7:e0:6f:c9:ad:46:85:e5:18:2c:0c:77:
b6:8a:bd:0f:d3:65:14:f2:a7:da:be:eb:57:d4:a7:a0:49:aa:
48:cb:98:33:a7:93:35:e8:76:e7:fa:23:61:7d:25:fd:c0:0e:
52:2f:5a:ea:20:5d:c9:96:46:9c:2f:9d:50:24:c4:7a:a6:65:
dd:08:c0:a6:c8:4d:ed:fe:8f:b2:96:e2:47:67:d4:4d:fc:d8:
d6:d5:1a:13:36:fe:c3:1d:cd:21:8d:15:f6:4f:e9:1a:bc:5f:
1e:83:16:b5:c6:d9:a7:36:ce:6e:6b:06:f2:0e:e7:bc:01:2e:
34:16:5c:2c:e7:e5:46:b6:16:d7:31:05:bb:ea:50:fa:3c:56:
44:dc:25:11:aa:c0:32:88:29:bd:cd:51:17:58:99:39:bd:34:
bf:4a:42:5d:9c:d7:33:30:2b:1a:3f:03:d8:c8:18:e9:3c:5c:
49:21:12:46:db:53:dc:ca:f4:49:1a:4e:36:eb:7d:10:60:1e:
40:1c:3f:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wQPdMZNi3w3nH61YLLAwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ZGRjYmM4ZjYxYjI2MGZkM2YzZTc4YjZiODY4NzdjYjk1
ZmQ4M2UwHhcNMjYwMzI5MDQwMTI5WhcNMjYwMzMwMDQwMTI5WjAzMTEwLwYDVQQD
EyhmZWNmNjRlOTMwMzkzNTZmNDE5YTU0Nzk2YmFhZjZkMWQzZGI4YzZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKPfiL82RJ9b7R+IJ/x8KIrNdfc8
tKDHZCBz2uA8Pk/7plRRLectM1dfoQZ72PQtOlK1l4bY7RnAr+B7N5u97VWwWHNG
mLNRCz0nBK3Jo+GYrxz5OA0u0Q74832s8fv+LjRvNGXCpsnzNGCc+9oJWSgqSCop
CVn9o85+szTro9eAHpQPLH9pX502OLG9DBZ6Ad5efOMw7prBFz0VFEcpA7ywc9io
DleLK27XknRgeZtaw13kEoZPcNGRpFEUbGL4VblFyVLbTKH2tHkEeYdsZ5y4oEbm
KdyQ/CQobgiWre5N7eC5ePBux/qeXjY5BbYIz3TZuVeRXyGcPvbJLKV+jwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP7PZOkwOTVvQZpUeWuq9tHT24xuMB8GA1UdIwQY
MBaAFDTdy8j2GyYP0/Pni2uGh3y5X9g+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTk4zTHlQWWJKZ19UOC1lTGE0YUhmTGxmMkQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC82NTA4YTEtNDQxMi00MGM3LThhNzIt
NTJjZDZlODlhYThkLzEvTk4zTHlQWWJKZ19UOC1lTGE0YUhmTGxmMkQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC82NTA4YTEtNDQxMi00MGM3LThhNzItNTJjZDZlODlhYThk
LzEvTk4zTHlQWWJKZ19UOC1lTGE0YUhmTGxmMkQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKDF7B2YN
T5t/Lb6RGHQ7e+iZBf4Sh3pgWx1NGvliaIMvDvQ2UFI40hU4IygNvPuts8WiqBfL
S7hioec6t+Bvya1GheUYLAx3toq9D9NlFPKn2r7rV9SnoEmqSMuYM6eTNeh25/oj
YX0l/cAOUi9a6iBdyZZGnC+dUCTEeqZl3QjApshN7f6PspbiR2fUTfzY1tUaEzb+
wx3NIY0V9k/pGrxfHoMWtcbZpzbObmsG8g7nvAEuNBZcLOflRrYW1zEFu+pQ+jxW
RNwlEarAMogpvc1RF1iZOb00v0pCXZzXMzArGj8D2MgY6TxcSSESRttT3Mr0SRpO
Nut9EGAeQBw/OA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:29:49 2026 by rpki-client