Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: exC+B9GYNS14IxvPJ7AYPvjsOK8M5nPdriGTy5JTFo8=
Subject key identifier: 87:8F:82:AB:16:FC:D2:37:CE:FD:78:BC:42:AE:DD:66:2D:09:46:7C
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 019EE856F5AE30910E7EED8ED68C5AB164AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 104F
Signing time: Sun 21 Jun 2026 04:01:13 +0000
Manifest this update: Sun 21 Jun 2026 04:01:13 +0000
Manifest next update: Mon 22 Jun 2026 04:01:13 +0000
Files and hashes: 1: 3kSbU0e5h99O_Tm79lGnT_Tp5Hc.roa (hash: RwQ/Qy1kKylc45gWPZOazTOGnIJ82QduJgu3sQQqwXY=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: u3iRzMIJLsXWHBlt+Yp3UJ+Y4j1uY5aBIWg6tG1qHfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 21:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e8:56:f5:ae:30:91:0e:7e:ed:8e:d6:8c:5a:b1:64:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Jun 21 04:01:13 2026 GMT
Not After : Jun 22 04:01:13 2026 GMT
Subject: CN=878f82ab16fcd237cefd78bc42aedd662d09467c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:88:7d:90:44:c1:f1:e5:b3:59:5c:f5:ef:f4:
a4:ef:ec:1c:f6:7c:0f:4e:56:95:5a:b6:53:95:20:
ff:90:f3:06:4b:b6:db:13:9b:a0:41:61:f5:14:4a:
41:fa:29:0e:a9:9e:6b:96:dc:d7:3f:c6:33:0c:62:
4b:77:db:59:62:34:00:b0:21:24:3f:ec:e8:5d:30:
8d:d8:5b:77:ee:ac:02:ff:ca:90:36:60:e7:7d:a6:
4d:e7:48:ce:9c:8f:a5:c0:e3:5c:5c:ad:ce:cd:b5:
88:a8:d1:2e:e7:16:e6:45:f6:a3:5c:16:09:d9:be:
93:77:63:33:c5:db:29:86:d5:90:e1:85:d2:9e:9c:
c2:d5:17:8c:6b:ee:00:91:41:4a:35:c2:3f:3a:53:
64:d4:7a:db:1e:63:7d:3d:e3:07:1a:ef:ae:5c:65:
89:5a:13:7f:99:96:21:98:0f:0f:10:ea:a2:98:de:
86:bc:28:15:b9:27:1c:69:a2:5d:4f:f0:e6:da:c5:
6e:80:84:05:67:a3:0f:ea:21:b0:64:82:54:2a:dd:
28:ab:1f:0f:76:6a:0e:92:25:6f:f0:92:d5:e2:8d:
36:35:8f:17:82:00:88:74:fb:be:6a:2d:5f:72:f2:
9b:2d:ce:98:08:5d:03:94:ce:dc:8e:33:f8:5d:82:
77:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8F:82:AB:16:FC:D2:37:CE:FD:78:BC:42:AE:DD:66:2D:09:46:7C
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:06:b3:aa:cd:62:79:f8:9e:46:9d:2f:68:1b:3c:f4:c3:4d:
ac:93:b4:c7:42:5d:a9:fa:8f:80:5d:5e:50:4b:d1:30:19:17:
d7:b2:88:e9:8a:6a:f1:bd:48:85:b5:9a:86:ee:13:10:4f:70:
b2:52:10:5f:6b:64:d0:1d:dd:ae:9f:7e:dc:61:a2:2d:0e:0c:
0c:4e:f1:a2:4b:38:6e:f6:2f:bf:26:3c:9e:c8:bf:ab:ab:2d:
3e:dc:88:25:5e:37:ff:a3:3d:2d:9e:28:f6:2b:b5:a1:4d:bb:
eb:a6:cb:51:6d:e7:56:b1:55:4e:85:c5:80:3b:d3:89:03:cd:
b5:68:3c:88:1f:41:01:95:d6:c9:a8:27:87:12:9f:64:e4:51:
38:b5:0b:c1:f0:eb:1b:e9:b1:00:2a:1b:82:7b:fc:ab:b9:51:
fb:5a:a9:74:32:da:f6:00:57:b1:c6:ac:b2:7e:2c:77:6a:5a:
ba:4e:6e:ca:61:02:75:8e:a0:8b:42:c8:b8:17:d7:ea:a9:c4:
1a:c6:a1:b5:a7:30:50:8b:75:75:a7:4d:22:18:b1:81:06:26:
c3:41:fc:fa:45:bb:8d:7a:a7:43:0d:76:64:1e:88:38:14:1e:
c8:a5:db:cd:c6:01:85:91:0c:18:8e:1d:ec:5b:b5:85:ee:ed:
e1:93:e5:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 08:04:58 2026 by rpki-client