Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
File: nGCyJ8t1doofV4Vuw1M8loSCYZw.mft (raw, json)
Hash identifier: OfwwWoz9aeUlzIhlhrMVA6QrNpZ2KwSNCvQafw/kyBM=
Subject key identifier: 74:75:79:B1:88:B1:02:FD:58:96:CE:62:52:BA:F4:71:F6:E6:9A:9C
Authority key identifier: 9C:60:B2:27:CB:75:76:8A:1F:57:85:6E:C3:53:3C:96:84:82:61:9C
Certificate issuer: /CN=9c60b227cb75768a1f57856ec3533c968482619c
Certificate serial: 019D38D3788E0FBB345F569CE63765B46AB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
Manifest number: 1741
Signing time: Sun 29 Mar 2026 09:01:16 +0000
Manifest this update: Sun 29 Mar 2026 09:01:16 +0000
Manifest next update: Mon 30 Mar 2026 09:01:16 +0000
Files and hashes: 1: nGCyJ8t1doofV4Vuw1M8loSCYZw.crl (hash: 2uGGKN/GyHgKLta7fhcVUujP6IPKa3uf52L9Go/2DUU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:78:8e:0f:bb:34:5f:56:9c:e6:37:65:b4:6a:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c60b227cb75768a1f57856ec3533c968482619c
Validity
Not Before: Mar 29 09:01:16 2026 GMT
Not After : Mar 30 09:01:16 2026 GMT
Subject: CN=747579b188b102fd5896ce6252baf471f6e69a9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2d:d9:58:ea:9f:d5:b7:22:a3:52:3e:4b:c1:
35:d2:c8:e1:c7:d7:f8:89:d5:0d:c1:c6:eb:66:9a:
9c:74:a4:e9:fe:ed:96:31:93:35:b1:d8:7f:0f:a7:
53:86:db:34:b3:92:c4:1f:08:0d:74:22:9f:4e:40:
1c:0a:e0:3a:cc:f9:b6:c8:87:67:a9:56:25:cf:91:
94:02:8b:62:3b:9f:32:d1:58:98:0f:67:5d:0d:7b:
eb:ca:56:c3:6d:9a:44:00:37:9d:96:ba:3d:88:a8:
69:7d:ba:a1:5b:b5:7b:b1:55:28:0f:a4:d4:56:e6:
ac:53:34:c8:41:87:3c:25:0a:13:f0:d4:e1:44:1f:
8f:b3:45:59:35:bc:e6:ad:d3:31:ff:ef:cd:db:b1:
29:84:19:dc:2b:29:a9:21:b9:4f:a3:e4:d2:8d:c5:
89:b6:3e:4a:70:32:c7:d9:8e:3f:52:37:3d:de:4f:
38:77:ed:0f:62:21:35:fd:b7:17:2c:4d:56:4c:b8:
0e:76:a1:71:26:7c:f9:8f:39:80:d5:0b:81:d0:80:
a7:85:22:97:51:6c:53:bf:16:dd:51:54:77:fa:a7:
af:f7:38:a2:9e:02:42:45:8f:2d:f7:29:ed:1f:97:
21:70:13:33:30:25:3a:c4:51:7f:ca:69:87:1b:c0:
d8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:75:79:B1:88:B1:02:FD:58:96:CE:62:52:BA:F4:71:F6:E6:9A:9C
X509v3 Authority Key Identifier:
keyid:9C:60:B2:27:CB:75:76:8A:1F:57:85:6E:C3:53:3C:96:84:82:61:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:4e:61:c8:f6:c3:c7:a6:d2:41:e3:1d:59:fe:ec:0c:c0:3d:
02:28:1e:6e:8f:e0:ca:91:5a:30:bf:6d:08:6a:a6:b0:8c:c0:
22:dc:a7:93:fd:79:d0:bc:dd:22:b8:12:c9:65:6a:96:79:49:
52:92:06:44:57:2a:fb:48:b7:a5:34:6b:0a:4e:42:dc:d3:dd:
76:d3:5e:4f:6f:94:2c:17:88:f6:d2:8a:49:9c:58:18:79:87:
3a:ff:65:da:1a:eb:ed:d2:01:a2:34:9a:0c:c1:c5:7e:ed:a7:
8c:ae:bc:ce:f7:a3:1b:a3:63:dd:af:61:48:87:12:b3:33:84:
0c:d2:6c:aa:dd:b9:c0:df:89:67:59:19:d4:ba:5e:f1:6c:7c:
18:1c:f9:57:44:c1:bd:b8:a8:d9:ff:84:a9:2b:75:e0:66:72:
8c:4c:f9:82:0b:80:16:8d:09:f5:1e:dc:f2:ec:db:cb:a7:26:
a1:08:be:df:83:c6:51:e6:52:fd:dd:0a:47:12:63:61:71:93:
c3:69:23:f8:6d:7c:17:0c:57:79:50:e1:ba:73:af:8d:ab:77:
d5:cd:bf:fc:17:7a:67:c8:7d:2a:a3:1a:b2:ca:8b:f5:44:41:
6a:08:e5:fc:f3:ac:2d:b2:e4:93:72:d5:8c:b0:a3:7c:f9:a5:
19:7a:7c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:24 2026 by rpki-client