Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
File: nUkl6XatC_tz4JfaaRfoD1vObIw.mft (raw, json)
Hash identifier: SFsrK9PFdQIHoL6/CrgqGIUTQfVX5uGrhTWk8+o09yQ=
Subject key identifier: 8B:8A:BB:0E:10:3E:14:48:D2:1C:38:AC:83:40:18:9E:A7:A6:CB:72
Authority key identifier: 9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
Certificate issuer: /CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Certificate serial: 019D98F468573C716C7D50C0EF8F7BF605AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
Manifest number: 1320
Signing time: Fri 17 Apr 2026 01:00:47 +0000
Manifest this update: Fri 17 Apr 2026 01:00:47 +0000
Manifest next update: Sat 18 Apr 2026 01:00:47 +0000
Files and hashes: 1: nUkl6XatC_tz4JfaaRfoD1vObIw.crl (hash: 13zsbOlJ5sOrqnaUOt5x6pgxrznyvIA88Bt/ghSUn88=)
2: oXaYTtMVNJP1Fl7ZKs5QpgsqsMk.roa (hash: +RNVphol1dxO7daQTUBiRS/Hm7azf02WGvxKISPu3wM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:68:57:3c:71:6c:7d:50:c0:ef:8f:7b:f6:05:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Validity
Not Before: Apr 17 01:00:47 2026 GMT
Not After : Apr 18 01:00:47 2026 GMT
Subject: CN=8b8abb0e103e1448d21c38ac8340189ea7a6cb72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c1:17:eb:04:69:17:7e:31:6c:c7:3a:a1:88:
26:c9:11:60:62:56:c3:ad:9b:b0:4a:44:63:8b:2f:
88:ca:e6:38:ed:c8:a3:d0:71:89:30:5b:1c:2e:e7:
6b:09:cb:3a:a5:96:0f:8e:56:bb:53:77:24:c4:ca:
bf:10:57:70:e9:ed:40:76:c8:c6:8a:07:1e:c7:74:
24:94:b2:43:93:2e:9d:20:8f:1d:4a:1d:a6:77:03:
b8:78:17:ed:15:6d:25:60:f2:9f:58:ac:8e:0f:ab:
f8:73:ba:45:3d:ac:c7:42:44:04:77:e5:41:ac:71:
45:7c:cd:f6:6b:1b:25:3e:18:e9:f4:b1:80:8b:85:
38:5d:4c:eb:40:7d:a6:6d:ad:c0:33:3c:c9:50:9e:
79:24:77:22:86:87:93:d1:a9:6e:6f:26:e4:1c:05:
94:e6:61:a7:8a:a3:dc:4f:8f:c7:f7:77:f7:ac:46:
11:68:e1:43:78:72:cb:23:5d:e0:35:78:c2:ef:b7:
bb:33:66:5d:e6:9c:71:32:20:20:da:85:17:8f:6c:
cd:23:85:f1:46:fb:f5:3b:b9:94:8a:30:98:1c:a2:
c6:bb:4b:ce:a8:99:dc:dc:72:6c:47:a2:f2:be:ff:
64:d5:6e:da:b3:1c:32:3b:9d:ff:79:8d:e1:0d:76:
81:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:8A:BB:0E:10:3E:14:48:D2:1C:38:AC:83:40:18:9E:A7:A6:CB:72
X509v3 Authority Key Identifier:
keyid:9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:3e:a5:fb:82:22:c7:82:10:66:61:80:ac:1a:50:2c:19:a8:
f7:76:58:a9:4f:bc:24:d0:35:20:14:b5:9e:93:c7:6a:c2:5a:
7f:e8:d8:79:36:45:cf:ff:ff:03:78:64:17:e3:cf:71:29:b4:
ce:c6:a9:42:77:40:fc:fd:ef:e5:9d:a0:e3:5c:10:e5:20:34:
e8:3e:19:d0:e7:33:09:2d:8a:39:7d:52:ee:3c:3d:a7:60:e3:
33:32:46:e0:60:43:4c:46:df:77:d0:94:c4:b6:e8:14:b5:ac:
d9:80:f3:90:45:61:a0:74:74:d9:be:14:17:d8:8b:d7:17:d1:
8a:d9:33:5f:7f:fa:4e:8f:38:c8:e1:97:8a:b0:61:5a:7e:d0:
4d:d3:15:77:af:66:d7:7d:a5:44:1c:e5:fe:5c:37:2d:8b:19:
08:39:09:e5:9a:8d:41:1b:6f:97:84:b8:5b:2c:2d:c2:e0:f2:
2d:5d:02:1b:4f:13:79:85:0a:79:68:db:c0:7c:f9:a0:8e:a5:
d6:23:12:a6:c1:c3:86:68:1f:12:dd:6d:92:74:bc:df:41:ce:
62:2d:74:93:7e:a5:f7:3e:e8:bb:58:83:ed:6d:56:6e:bb:f7:
95:cb:49:7b:2e:58:56:80:8d:69:a6:22:9a:a4:5b:a1:cb:ea:
ed:31:0f:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9GhXPHFsfVDA74979gWvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkNDkyNWU5NzZhZDBiZmI3M2UwOTdkYTY5MTdlODBmNWJj
ZTZjOGMwHhcNMjYwNDE3MDEwMDQ3WhcNMjYwNDE4MDEwMDQ3WjAzMTEwLwYDVQQD
Eyg4YjhhYmIwZTEwM2UxNDQ4ZDIxYzM4YWM4MzQwMTg5ZWE3YTZjYjcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8EX6wRpF34xbMc6oYgmyRFgYlbD
rZuwSkRjiy+IyuY47cij0HGJMFscLudrCcs6pZYPjla7U3ckxMq/EFdw6e1AdsjG
igcex3QklLJDky6dII8dSh2mdwO4eBftFW0lYPKfWKyOD6v4c7pFPazHQkQEd+VB
rHFFfM32axslPhjp9LGAi4U4XUzrQH2mba3AMzzJUJ55JHcihoeT0alubybkHAWU
5mGniqPcT4/H93f3rEYRaOFDeHLLI13gNXjC77e7M2Zd5pxxMiAg2oUXj2zNI4Xx
Rvv1O7mUijCYHKLGu0vOqJnc3HJsR6Lyvv9k1W7asxwyO53/eY3hDXaB/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIuKuw4QPhRI0hw4rINAGJ6npstyMB8GA1UdIwQY
MBaAFJ1JJel2rQv7c+CX2mkX6A9bzmyMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblVrbDZYYXRDX3R6NEpmYWFSZm9EMXZPYkl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xZjFjYmQtZmVhNi00NTUzLThkYjYt
NGUwOWY5ZTg1NzIzLzEvblVrbDZYYXRDX3R6NEpmYWFSZm9EMXZPYkl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xZjFjYmQtZmVhNi00NTUzLThkYjYtNGUwOWY5ZTg1NzIz
LzEvblVrbDZYYXRDX3R6NEpmYWFSZm9EMXZPYkl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZz6l+4Ii
x4IQZmGArBpQLBmo93ZYqU+8JNA1IBS1npPHasJaf+jYeTZFz///A3hkF+PPcSm0
zsapQndA/P3v5Z2g41wQ5SA06D4Z0OczCS2KOX1S7jw9p2DjMzJG4GBDTEbfd9CU
xLboFLWs2YDzkEVhoHR02b4UF9iL1xfRitkzX3/6To84yOGXirBhWn7QTdMVd69m
132lRBzl/lw3LYsZCDkJ5ZqNQRtvl4S4WywtwuDyLV0CG08TeYUKeWjbwHz5oI6l
1iMSpsHDhmgfEt1tknS830HOYi10k36l9z7ou1iD7W1Wbrv3lctJey5YVoCNaaYi
mqRbocvq7TEPLQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 03:53:35 2026 by rpki-client