Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
File: nY85NIPUicQp_Biwk0LXbQr-QkQ.mft (raw, json)
Hash identifier: wav9EI3/Vn0DheHUQr9dk8sRsI6FfQjs6fDwWQgQ6gY=
Subject key identifier: D8:AD:4F:77:62:B6:40:B6:DA:31:50:7F:40:FD:10:10:E1:B5:4C:2A
Authority key identifier: 9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
Certificate issuer: /CN=9d8f393483d489c429fc18b09342d76d0afe4244
Certificate serial: 019D3909E59718A7B5DC8591D6ED0F5C0A35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
Manifest number: 1479
Signing time: Sun 29 Mar 2026 10:00:42 +0000
Manifest this update: Sun 29 Mar 2026 10:00:42 +0000
Manifest next update: Mon 30 Mar 2026 10:00:42 +0000
Files and hashes: 1: PnOOh7fnmZFCfeOa_wMzgqjdxqA.roa (hash: ggogQletXZT21dYbTRV1SNWHwV2S6gHYiktJ4MjCyQI=)
2: nY85NIPUicQp_Biwk0LXbQr-QkQ.crl (hash: 86gaScXRstv2Zia/ERw8ihjNqZwuHqg+ULQR9eNQyyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:e5:97:18:a7:b5:dc:85:91:d6:ed:0f:5c:0a:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8f393483d489c429fc18b09342d76d0afe4244
Validity
Not Before: Mar 29 10:00:42 2026 GMT
Not After : Mar 30 10:00:42 2026 GMT
Subject: CN=d8ad4f7762b640b6da31507f40fd1010e1b54c2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:32:38:44:25:f9:eb:a1:1c:9c:fe:a3:ed:43:
f5:59:8f:90:30:c7:7b:9d:96:37:0f:bd:be:1c:65:
7d:86:d7:56:3f:99:b8:6c:7c:50:23:f8:95:e5:b3:
92:e3:22:a5:5c:b6:17:9d:72:de:4b:8a:e6:9a:05:
b2:5b:6e:7c:70:7d:cc:b4:09:80:62:32:63:fc:79:
d3:8b:57:2f:12:ab:9e:33:b6:7f:ff:a6:96:69:d2:
c5:0f:51:ce:30:51:cc:b3:b4:86:d9:34:b7:a3:11:
5d:16:51:3c:74:ea:81:88:9e:08:20:ac:5d:a9:77:
c7:b5:6a:43:eb:03:bb:7a:0e:9c:1d:17:46:fe:3c:
90:07:e9:5b:1c:59:20:dc:4d:19:29:cf:a1:af:bb:
70:44:4a:27:49:e8:fc:15:fa:6f:ae:c8:9c:32:34:
29:a7:d8:a6:23:d1:13:d6:2f:64:28:09:5c:e6:6e:
54:05:12:e1:d1:1e:18:94:16:63:66:fa:29:0e:94:
20:a0:43:eb:30:09:5a:05:b2:05:6a:79:2a:1d:06:
e8:e5:9d:e4:93:ff:c5:9c:79:39:17:37:a6:7a:3f:
f4:60:18:03:06:f9:70:4e:27:0b:44:21:25:64:19:
38:ab:b6:c6:9a:48:f3:4f:39:8d:4f:4c:50:ef:f7:
28:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:AD:4F:77:62:B6:40:B6:DA:31:50:7F:40:FD:10:10:E1:B5:4C:2A
X509v3 Authority Key Identifier:
keyid:9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:94:04:ec:b3:fb:88:35:30:53:14:3f:9c:4e:54:d9:bd:89:
f0:31:43:bb:51:4b:ae:32:17:93:7d:a0:80:3c:6d:5f:8e:58:
93:97:54:f2:e1:e2:90:9b:22:02:5d:ee:13:d1:9d:ca:39:0c:
be:69:c8:0b:22:b6:80:39:05:fb:87:bd:59:c7:76:67:52:ca:
4e:cf:9d:50:6a:b9:d3:c4:e3:13:8b:ee:e6:72:ca:d2:b5:85:
5f:22:5f:b9:0d:f2:e5:11:17:3a:38:d2:2d:be:c3:fd:25:ed:
c5:8d:b3:fa:6d:6a:f5:7a:32:03:04:7e:82:19:82:20:03:32:
0e:3e:77:40:a3:06:bb:b5:03:3d:e2:98:58:20:e2:4a:32:17:
46:6e:60:d3:ee:cc:cc:bc:77:ca:cc:96:57:35:06:db:95:9e:
cd:69:34:8c:5c:ee:88:5f:22:80:d2:ba:a8:37:27:eb:6b:0a:
27:a6:2e:2f:fe:e1:dd:3f:6f:2f:70:99:98:8d:a9:4e:ba:35:
c8:1a:82:ae:72:fe:4f:72:e3:6b:c8:eb:8f:8e:78:23:87:a1:
fc:d5:35:bd:f8:26:c3:8c:df:8a:62:09:53:16:26:71:e4:c8:
56:59:8e:bf:80:28:ee:db:e5:3a:24:99:78:05:a2:a2:a3:05:
2a:ea:e7:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05CeWXGKe13IWR1u0PXAo1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkOGYzOTM0ODNkNDg5YzQyOWZjMThiMDkzNDJkNzZkMGFm
ZTQyNDQwHhcNMjYwMzI5MTAwMDQyWhcNMjYwMzMwMTAwMDQyWjAzMTEwLwYDVQQD
EyhkOGFkNGY3NzYyYjY0MGI2ZGEzMTUwN2Y0MGZkMTAxMGUxYjU0YzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTI4RCX566EcnP6j7UP1WY+QMMd7
nZY3D72+HGV9htdWP5m4bHxQI/iV5bOS4yKlXLYXnXLeS4rmmgWyW258cH3MtAmA
YjJj/HnTi1cvEqueM7Z//6aWadLFD1HOMFHMs7SG2TS3oxFdFlE8dOqBiJ4IIKxd
qXfHtWpD6wO7eg6cHRdG/jyQB+lbHFkg3E0ZKc+hr7twREonSej8FfpvrsicMjQp
p9imI9ET1i9kKAlc5m5UBRLh0R4YlBZjZvopDpQgoEPrMAlaBbIFankqHQbo5Z3k
k//FnHk5Fzemej/0YBgDBvlwTicLRCElZBk4q7bGmkjzTzmNT0xQ7/cotQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNitT3ditkC22jFQf0D9EBDhtUwqMB8GA1UdIwQY
MBaAFJ2POTSD1InEKfwYsJNC120K/kJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTct
MWUxNTFhYTFhZmRjLzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTctMWUxNTFhYTFhZmRj
LzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM5QE7LP7
iDUwUxQ/nE5U2b2J8DFDu1FLrjIXk32ggDxtX45Yk5dU8uHikJsiAl3uE9GdyjkM
vmnICyK2gDkF+4e9Wcd2Z1LKTs+dUGq508TjE4vu5nLK0rWFXyJfuQ3y5REXOjjS
Lb7D/SXtxY2z+m1q9XoyAwR+ghmCIAMyDj53QKMGu7UDPeKYWCDiSjIXRm5g0+7M
zLx3ysyWVzUG25WezWk0jFzuiF8igNK6qDcn62sKJ6YuL/7h3T9vL3CZmI2pTro1
yBqCrnL+T3Lja8jrj454I4eh/NU1vfgmw4zfimIJUxYmceTIVlmOv4Ao7tvlOiSZ
eAWioqMFKurnJA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:44:52 2026 by rpki-client