Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
File: nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft (raw, json)
Hash identifier: FHo23ANcEpnod1Q1kbeY7T1Cfd8NLB0cnnMB2b0nKOE=
Subject key identifier: 29:25:CD:1B:EE:91:27:18:71:D2:D0:1D:21:77:28:37:52:16:3D:49
Authority key identifier: 9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
Certificate issuer: /CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Certificate serial: 019D394107475FD9D436AE68E3F258C554F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
Manifest number: 11B6
Signing time: Sun 29 Mar 2026 11:00:56 +0000
Manifest this update: Sun 29 Mar 2026 11:00:56 +0000
Manifest next update: Mon 30 Mar 2026 11:00:56 +0000
Files and hashes: 1: By9XwpaaIZ1vbKoC0EMkQI8xFME.roa (hash: rVTno30bTxW1UXGkTngYyYx+U1Aa9CBafc0WRSX3D0M=)
2: nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl (hash: VawUKagm9SUM7+lLZSO2Adbzk/B/0jngIOuiCmFVkJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:07:47:5f:d9:d4:36:ae:68:e3:f2:58:c5:54:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Validity
Not Before: Mar 29 11:00:56 2026 GMT
Not After : Mar 30 11:00:56 2026 GMT
Subject: CN=2925cd1bee91271871d2d01d2177283752163d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:67:e0:3f:ab:2e:b6:e5:f5:2e:b5:70:da:6b:
b7:8c:06:5b:5e:6a:0b:de:34:30:6d:92:37:cc:0b:
f1:93:73:b5:4b:3d:05:f9:51:b2:9b:d6:82:c8:2a:
94:60:4b:3f:9b:fe:a8:2f:c5:34:90:84:48:e2:ed:
34:68:d5:99:a6:59:d3:3b:4d:6c:05:9e:e1:16:e3:
34:63:43:59:f0:21:a9:44:02:26:d5:4c:2f:fa:21:
78:9b:70:93:85:02:78:0f:47:c6:84:6a:44:b9:84:
2a:d2:37:96:28:07:74:7a:05:77:f2:d6:9c:59:4f:
7f:3b:71:91:80:79:cf:e3:f8:e3:69:b4:bb:a6:4c:
4d:38:92:17:88:14:a8:ed:b8:95:55:0a:63:a8:b8:
3f:ae:a2:7f:bc:4e:9b:d1:4f:2b:2f:34:00:61:e5:
97:7b:ad:28:28:1d:7c:aa:07:57:76:5a:8b:9f:bc:
91:56:df:95:d0:c4:e8:8a:a9:38:aa:a9:a7:91:c5:
95:e1:90:b1:91:59:e0:39:08:d7:5f:d3:66:63:f7:
04:0b:69:12:fa:6b:93:1e:ab:37:fb:d6:2f:a3:e7:
4c:ca:bc:f3:92:12:54:2a:fb:bb:6c:b1:37:51:64:
ce:8c:9c:f2:55:2f:d4:29:fb:93:80:e4:da:ca:28:
d1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:25:CD:1B:EE:91:27:18:71:D2:D0:1D:21:77:28:37:52:16:3D:49
X509v3 Authority Key Identifier:
keyid:9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:ca:76:15:81:d8:02:0e:74:ee:35:59:cd:b6:55:69:1c:f7:
89:40:54:32:c8:8b:5e:fb:9b:d8:8e:d2:12:3c:7f:00:bc:ff:
49:85:b3:b3:37:37:a7:ef:c4:6b:13:de:b8:2d:03:33:4b:7f:
f3:79:58:d5:14:8d:c9:91:8f:13:90:e9:88:ca:0d:89:f8:10:
6c:c9:c9:8f:e9:c1:d3:df:11:70:53:58:b9:40:b0:97:34:ad:
45:c4:d3:27:47:f8:42:f3:8e:0e:ed:20:df:4a:d4:24:a0:57:
4a:d7:71:a6:ab:c7:6e:1c:c5:d8:83:4f:9c:1e:6c:70:4f:ae:
45:81:ff:ed:90:12:2a:d2:69:a1:90:98:66:c0:49:7a:d1:83:
a0:7a:51:34:c5:17:dc:e7:96:fb:49:b3:b8:fa:d0:6b:df:59:
17:5a:b6:63:1e:06:7f:e6:c1:e1:0c:31:d1:37:04:b4:92:c5:
38:8f:e7:b6:cc:d1:c9:20:cd:21:b1:27:29:19:ce:67:c6:46:
da:b1:6d:9a:fd:53:e2:d1:ef:e2:9b:77:44:6f:6a:55:7f:15:
10:1a:3f:28:f4:af:32:d5:c8:13:49:f9:df:2d:db:10:19:84:
2c:18:0e:2a:84:ca:c8:a4:d7:44:ac:0d:06:74:60:fe:66:79:
62:97:08:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:49 2026 by rpki-client