Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: eLVIjTTxTPgpavfbL1IHFSEhb/LfPyBPFUpH8Uz5OLc=
Subject key identifier: 0E:AD:D5:65:92:E1:9A:B3:6E:9E:2C:95:2A:91:7D:CE:D4:45:D5:21
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 019EDCC09C45BCA090BC6B7480011AE8263F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 1049
Signing time: Thu 18 Jun 2026 22:01:10 +0000
Manifest this update: Thu 18 Jun 2026 22:01:10 +0000
Manifest next update: Fri 19 Jun 2026 22:01:10 +0000
Files and hashes: 1: 3kSbU0e5h99O_Tm79lGnT_Tp5Hc.roa (hash: RwQ/Qy1kKylc45gWPZOazTOGnIJ82QduJgu3sQQqwXY=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: mJqaRv2lNymYn3TllMeq2wYXvhlup0dl1k8HwCKgEOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Jun 2026 22:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:dc:c0:9c:45:bc:a0:90:bc:6b:74:80:01:1a:e8:26:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Jun 18 22:01:10 2026 GMT
Not After : Jun 19 22:01:10 2026 GMT
Subject: CN=0eadd56592e19ab36e9e2c952a917dced445d521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5a:5d:ec:75:d1:3a:17:7c:6b:66:95:36:21:
fd:fe:c0:9c:10:8c:09:cd:03:44:ee:e6:ee:eb:39:
31:3f:06:7f:7f:67:e4:78:e7:83:f5:ec:f5:02:7c:
1c:bd:de:bb:b9:e8:4d:2e:fc:fe:7d:22:85:72:7e:
df:9f:65:5b:64:62:76:a2:c6:03:72:d2:e5:3f:3f:
b0:64:ea:ca:22:df:6c:37:fc:36:e7:f0:02:03:e5:
3a:03:7b:25:b2:2b:08:c8:21:f6:f4:b3:cc:74:b8:
cd:11:26:45:f9:a1:93:4c:2b:cf:02:c5:b0:9f:94:
ce:26:6f:d7:f7:6a:c7:0d:44:98:c3:a4:e7:de:1e:
2c:74:13:35:01:c5:60:87:5f:3a:e1:69:cc:1a:15:
f0:6a:5a:78:5a:82:c7:72:24:e1:e6:bb:1c:f0:72:
9f:bc:81:8f:28:b7:9e:48:ab:0f:46:85:e2:3f:44:
cc:1c:2a:05:b3:24:04:ef:24:30:00:11:dc:fb:8d:
3d:fd:40:9f:05:af:7c:ac:0d:f8:4c:99:c9:e3:1c:
06:6d:b3:d3:e4:ac:90:51:67:2e:50:e4:8f:8b:47:
33:c0:f8:94:04:44:5b:fe:08:db:21:d0:ba:75:7b:
5e:4f:e8:54:ab:ab:56:11:ee:11:d2:31:fc:12:c6:
d3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AD:D5:65:92:E1:9A:B3:6E:9E:2C:95:2A:91:7D:CE:D4:45:D5:21
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:7e:4b:d1:7f:6b:a6:75:21:86:e9:20:1e:bf:d5:c8:f5:2a:
ab:a0:91:68:7c:25:4d:a2:d8:81:c2:05:c1:ad:26:8e:8d:2a:
f1:7d:3d:28:c8:99:b8:a0:9f:d8:ef:c8:f7:4b:f3:1f:91:34:
4a:1b:9e:20:b2:1a:09:0f:15:9f:6d:2d:96:14:33:c2:73:cb:
1e:7c:30:9c:82:e3:47:75:79:41:04:e3:26:ba:43:0d:e5:a2:
b8:9a:91:e0:dd:76:e9:44:51:ff:ab:22:9a:0a:b2:df:98:98:
3e:5f:cf:ca:e8:54:e1:be:a1:33:71:92:1b:8d:6a:b0:67:82:
6c:5e:d8:b5:fa:3b:25:ee:e7:f5:4d:c1:6b:f6:a7:8b:6c:ee:
a4:e1:4a:0b:be:2f:43:fc:92:a6:55:6a:1b:37:8a:35:f0:f2:
81:be:96:a8:b7:45:4b:c1:c7:95:af:6d:38:12:20:06:b4:78:
4d:71:47:a5:5e:f9:5f:e0:72:5f:c7:ae:e9:7f:bb:20:a1:3f:
09:22:82:32:2c:0f:bf:dd:7d:5f:55:76:de:94:76:f4:08:65:
af:b3:93:eb:f5:c9:9e:a5:a0:ae:36:0f:d6:a1:56:5c:6d:4c:
40:88:3b:92:5c:76:31:ea:0c:e6:0f:29:c2:cf:c9:41:a1:5a:
47:a5:5b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 19 08:28:33 2026 by rpki-client