Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
File: nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft (raw, json)
Hash identifier: XRB1OpdijthWinPs2u3bG0pPKbgl/JTOFBCLcWaMKro=
Subject key identifier: 87:81:BD:43:B6:06:E5:41:AA:F5:1E:14:F5:6F:98:FB:D4:A8:C0:3A
Authority key identifier: 9D:8A:DA:35:29:82:A3:19:B5:4D:5E:48:3D:34:42:63:46:73:3E:A4
Certificate issuer: /CN=9d8ada352982a319b54d5e483d34426346733ea4
Certificate serial: 019D3941128660CE9F972ED8015452378089
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
Manifest number: 1780
Signing time: Sun 29 Mar 2026 11:00:59 +0000
Manifest this update: Sun 29 Mar 2026 11:00:59 +0000
Manifest next update: Mon 30 Mar 2026 11:00:59 +0000
Files and hashes: 1: fPpcTKJECfYoksYEZEcUM_j0qkQ.roa (hash: E5+q7rc6m3t9onZOzrQMasG/CbDzH+1hOPd2cCu+nT4=)
2: nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl (hash: vmqGoHttk0eOOBPtT7NOMM5T3z2fhX5+q9X1bxwzTL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:12:86:60:ce:9f:97:2e:d8:01:54:52:37:80:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8ada352982a319b54d5e483d34426346733ea4
Validity
Not Before: Mar 29 11:00:59 2026 GMT
Not After : Mar 30 11:00:59 2026 GMT
Subject: CN=8781bd43b606e541aaf51e14f56f98fbd4a8c03a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:04:1c:36:07:24:f5:ad:b4:51:fd:1e:19:cc:
12:8c:e4:c4:15:b7:69:1c:c0:54:c5:bb:9f:ed:f9:
4b:53:55:70:24:af:6a:e2:64:85:f1:f1:d7:64:7a:
d6:da:8f:fe:c9:03:2f:39:76:12:26:ae:f7:d4:48:
4a:6c:ce:b7:94:93:88:63:aa:52:0d:e2:b9:4d:f3:
fe:bb:dc:74:8f:8f:45:60:ba:79:13:1e:44:0f:13:
11:1a:8d:70:9d:35:0c:11:cc:ac:22:3f:b0:09:91:
47:1b:1f:bc:78:29:b0:ca:1b:13:64:3e:2b:d9:88:
04:f2:1d:84:c2:23:c0:d9:ed:a2:60:d0:1b:b8:70:
17:d7:69:38:79:d3:bd:2f:77:08:5e:f4:f5:1b:d4:
c4:3d:a4:0d:23:b3:9d:d4:81:74:95:b8:59:39:8b:
f1:43:d8:92:40:3a:19:82:59:72:c0:74:8a:70:8d:
c8:97:d6:4f:e3:44:d9:e3:00:4d:e6:5f:09:f1:8f:
96:98:51:6b:28:16:c5:c4:64:2d:3f:75:39:44:01:
45:f1:98:2b:58:ac:c4:66:06:8e:fa:0f:e5:55:a6:
cb:fd:e1:83:01:86:fa:00:47:55:a8:2a:e0:c9:68:
06:9a:b1:4f:9a:c8:4e:58:86:ed:ec:6a:9d:67:31:
f4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:81:BD:43:B6:06:E5:41:AA:F5:1E:14:F5:6F:98:FB:D4:A8:C0:3A
X509v3 Authority Key Identifier:
keyid:9D:8A:DA:35:29:82:A3:19:B5:4D:5E:48:3D:34:42:63:46:73:3E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/f4863a-aeae-42f7-ba14-ed4a138c4113/1/nYraNSmCoxm1TV5IPTRCY0ZzPqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:48:3e:24:a0:cf:83:9c:9b:d2:87:42:9f:fe:37:e7:2a:b4:
ab:5a:79:4b:91:c3:ed:8b:8a:2b:2e:eb:50:f2:dc:f6:54:7c:
6e:a0:5d:d6:41:11:a9:88:fb:08:d9:cb:56:cd:35:7e:d5:f8:
0d:59:4f:b6:7b:d6:a2:7e:ab:b4:25:b5:df:b2:3d:3b:d4:0c:
95:3c:33:69:44:f3:d9:1d:d0:20:8c:cc:7a:9f:3d:92:60:12:
e5:97:a1:2e:c9:fa:ee:b4:96:c5:b3:97:77:20:bf:05:da:20:
a2:55:b9:8a:30:08:76:18:31:6a:ea:26:95:f9:58:40:fd:92:
16:85:63:92:1d:b4:e0:c3:74:0e:dc:51:5b:2d:b5:d3:3b:05:
c1:00:da:96:c8:8e:65:31:e6:8e:3e:ee:3d:27:62:8c:d0:37:
de:f6:e9:70:3e:21:06:e0:bc:f5:b2:0b:86:f2:49:9a:16:4a:
58:9c:4f:fd:34:99:88:4b:91:76:17:a5:2c:5c:b3:38:08:95:
0a:f4:8d:d9:06:df:fc:19:c7:5d:55:02:d9:fe:4f:c9:55:75:
77:4e:16:09:33:ee:df:56:ad:eb:36:c3:df:50:3f:70:54:f4:
a8:d7:d0:06:6c:47:71:95:55:03:97:47:21:65:32:48:3e:ef:
70:5b:88:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:18 2026 by rpki-client