Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.mft
File: NYzSZ8VKP8IovKHe43LZbGA3PCc.mft (raw, json)
Hash identifier: pAQiEXt8B0TEh4hV5ouKZkV8BdtgisxIfEUIRnC3E/4=
Subject key identifier: E0:1E:5A:F8:C3:B3:DA:FA:33:5C:47:28:A3:23:FF:2C:90:0B:37:41
Authority key identifier: 35:8C:D2:67:C5:4A:3F:C2:28:BC:A1:DE:E3:72:D9:6C:60:37:3C:27
Certificate issuer: /CN=358cd267c54a3fc228bca1dee372d96c60373c27
Certificate serial: 019E9137C25BECE9169F389E6AAB806483DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYzSZ8VKP8IovKHe43LZbGA3PCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.mft
Manifest number: 0223
Signing time: Thu 04 Jun 2026 06:00:10 +0000
Manifest this update: Thu 04 Jun 2026 06:00:10 +0000
Manifest next update: Fri 05 Jun 2026 06:00:10 +0000
Files and hashes: 1: Jy76E1q7dDTCejXtPafJsRSES8Y.roa (hash: 1WiGvZJxKYYrQ+5QCN5Y0ow1dlNCCLa6+9MgNHjV0TQ=)
2: NYzSZ8VKP8IovKHe43LZbGA3PCc.crl (hash: dTSk7w0luozMEVrKrVLjwh6x0C2lZd+YLU0lqtGwafA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NYzSZ8VKP8IovKHe43LZbGA3PCc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:91:37:c2:5b:ec:e9:16:9f:38:9e:6a:ab:80:64:83:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358cd267c54a3fc228bca1dee372d96c60373c27
Validity
Not Before: Jun 4 06:00:10 2026 GMT
Not After : Jun 5 06:00:10 2026 GMT
Subject: CN=e01e5af8c3b3dafa335c4728a323ff2c900b3741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:35:82:5a:56:84:43:01:65:7b:69:d3:49:f8:
3a:0e:8c:51:19:ed:2f:0c:03:b1:0f:c5:19:74:b0:
24:92:a4:01:d0:a6:ce:9b:fa:ce:98:be:4d:6f:8d:
30:08:6a:c6:9f:61:54:b9:8a:35:94:31:f7:a2:b7:
f3:28:50:4c:05:45:38:0d:73:b9:aa:fe:f6:a5:a0:
74:99:ea:c6:ca:79:48:76:62:da:1b:e2:c9:b9:f9:
70:50:6b:3f:ab:d2:0e:e6:6d:80:5a:3e:ee:6a:20:
ab:36:2a:3d:92:5a:4c:f2:c5:0f:3f:7a:80:d9:3b:
d4:93:70:80:34:c2:cc:d0:02:78:01:b3:cd:73:0b:
46:56:89:a3:90:57:91:d7:88:25:54:aa:89:f4:8f:
06:74:fd:0a:38:5d:f4:d5:76:0b:f6:59:d9:0f:23:
8d:50:e9:8d:71:e6:35:5b:70:6e:a3:ec:6c:38:9f:
7b:0c:92:37:bc:d4:77:0b:f4:a9:c7:b2:e5:a3:f8:
5d:42:03:99:fa:d3:21:2e:d8:fd:94:2c:e0:0e:28:
20:1b:0c:e0:18:25:ce:58:f3:1f:a5:c0:b8:f2:6e:
b4:71:b4:1b:16:23:83:e7:ac:2f:98:a8:0c:92:b6:
45:16:01:b2:f3:dd:0d:01:8d:13:c2:cb:e7:71:bc:
87:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:1E:5A:F8:C3:B3:DA:FA:33:5C:47:28:A3:23:FF:2C:90:0B:37:41
X509v3 Authority Key Identifier:
keyid:35:8C:D2:67:C5:4A:3F:C2:28:BC:A1:DE:E3:72:D9:6C:60:37:3C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYzSZ8VKP8IovKHe43LZbGA3PCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/84a1b5-1aad-4edf-ab9b-8a2e9a46819b/1/NYzSZ8VKP8IovKHe43LZbGA3PCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:b3:f1:ca:50:52:f7:52:7d:b7:fd:f2:2e:70:b5:98:66:88:
ba:aa:7d:3c:a4:b5:5b:c0:1e:b3:4e:83:07:6a:99:ec:55:f8:
8d:d8:9f:c7:eb:3a:e8:f1:e1:bb:06:11:51:1f:fa:b9:91:06:
38:e3:7c:72:21:78:4a:84:9e:f6:ff:f9:81:40:62:d6:51:79:
83:0b:b9:00:7c:85:f5:d8:b3:15:3b:aa:d1:f8:69:25:8e:ac:
9a:f5:26:c8:62:46:ca:ec:fb:16:0f:0c:47:da:ae:3b:37:cb:
12:30:17:a8:a8:21:d8:79:1d:9a:c8:cf:44:4f:ef:19:52:d9:
05:27:88:87:d6:f9:0a:aa:ce:80:19:38:4e:75:50:78:35:cf:
9b:67:87:88:47:4e:02:b1:4f:3c:b9:4e:10:dc:ab:72:90:87:
96:7f:2e:26:67:36:a9:43:90:b2:58:73:c4:c2:f2:ff:e7:6d:
27:cb:08:29:8b:b6:24:ce:0b:8d:fd:98:d0:6f:05:1e:d8:b7:
30:46:6b:8a:21:4f:a6:e8:60:b5:2f:14:ff:fd:b7:b0:36:50:
0a:a0:1b:e0:88:cc:d7:da:02:f7:74:3a:e4:3a:43:3a:a9:e6:
c1:5b:32:42:fe:d6:fa:48:4b:79:5d:99:23:4a:46:b5:8c:b8:
05:91:05:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 16:00:47 2026 by rpki-client