Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
File: nUkl6XatC_tz4JfaaRfoD1vObIw.mft (raw, json)
Hash identifier: OynGfhVFffyuAB83XEmfBBIVZVUTwcOmxZiJlBMKlt4=
Subject key identifier: FE:7D:80:D2:32:B4:8E:47:B8:2D:45:42:25:F5:FC:6A:58:AB:7E:73
Authority key identifier: 9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
Certificate issuer: /CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Certificate serial: 019CAD596585DE259359F120D34C48E367E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
Manifest number: 12A6
Signing time: Mon 02 Mar 2026 07:00:42 +0000
Manifest this update: Mon 02 Mar 2026 07:00:42 +0000
Manifest next update: Tue 03 Mar 2026 07:00:42 +0000
Files and hashes: 1: nUkl6XatC_tz4JfaaRfoD1vObIw.crl (hash: 10mjj1NiOQTfNTitOf4f+0Ia08AmvQWJp8fByTS9upQ=)
2: oXaYTtMVNJP1Fl7ZKs5QpgsqsMk.roa (hash: +RNVphol1dxO7daQTUBiRS/Hm7azf02WGvxKISPu3wM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:65:85:de:25:93:59:f1:20:d3:4c:48:e3:67:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Validity
Not Before: Mar 2 07:00:42 2026 GMT
Not After : Mar 3 07:00:42 2026 GMT
Subject: CN=fe7d80d232b48e47b82d454225f5fc6a58ab7e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b0:16:b0:df:2a:89:d3:eb:30:64:77:59:9e:
b5:44:57:f8:d7:34:20:8d:c4:f7:83:a2:5d:2e:b1:
52:8d:97:36:36:7d:75:e4:24:5b:e3:41:64:f4:d5:
ad:63:d9:85:57:72:a7:71:36:91:61:96:12:9f:c6:
2d:1e:bd:3b:41:0f:5e:95:3a:da:12:54:5c:b4:93:
8d:21:83:f9:14:d9:38:e1:50:c1:8d:14:1f:11:84:
17:77:7f:da:a7:44:e9:c2:34:e2:18:88:38:81:53:
61:ad:8e:c6:e3:89:51:5a:a7:cf:df:1b:81:42:91:
6a:36:62:0e:d8:eb:8b:06:9e:02:38:a6:4a:56:0f:
75:3c:ab:33:65:a2:61:70:3f:3e:d6:0a:40:9f:2b:
12:b6:2f:7d:84:57:b7:b1:be:c7:fa:5c:fc:03:a0:
39:08:88:cb:6e:84:bc:85:95:6b:4e:fa:73:58:b2:
87:fb:5c:94:51:0d:2c:21:d8:fc:b0:89:1b:77:56:
88:f3:c2:23:d7:a1:ff:1a:f8:cf:af:ae:29:fd:0f:
38:b4:2f:ab:32:ef:39:00:73:9c:07:d8:38:c7:15:
97:48:60:7d:e4:4b:99:e4:69:07:34:60:fc:52:0c:
e6:9c:68:f4:d7:fa:d9:9b:41:70:be:62:43:54:f9:
59:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:7D:80:D2:32:B4:8E:47:B8:2D:45:42:25:F5:FC:6A:58:AB:7E:73
X509v3 Authority Key Identifier:
keyid:9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:fe:fc:b6:dd:88:6e:f7:d2:eb:f7:eb:5c:a4:62:48:21:25:
1b:68:d4:02:18:d8:bb:6e:92:73:8c:4e:11:c5:9e:5d:89:9c:
e6:6f:a7:97:e8:d3:17:22:2f:36:f1:96:30:6d:71:9d:59:aa:
75:69:7a:2b:b6:41:d5:77:79:71:b8:54:39:31:e7:af:f9:6c:
ee:71:ed:33:8e:a5:15:db:80:df:85:2d:b1:61:56:e2:fb:ce:
49:2a:4e:70:a4:42:db:55:ae:a8:22:f3:be:a6:bb:42:1d:44:
ac:4d:33:55:4d:ed:69:7d:0c:07:94:67:a2:bb:7e:d8:00:d8:
76:07:6a:11:73:67:f7:8c:18:97:d8:75:71:f1:72:5b:b5:d8:
9d:fe:4b:a7:e3:c8:a0:ea:fa:e5:7f:a2:6b:2f:37:c7:5c:90:
72:10:da:cb:eb:3e:89:3d:dd:db:47:37:23:c1:f0:3b:42:0a:
22:f4:5d:71:3d:6f:76:f8:90:c6:95:71:2f:12:36:4a:d4:a6:
7d:35:68:e9:e1:17:b3:26:33:27:99:30:7b:fb:05:a3:d9:6c:
e7:62:7d:53:00:fe:ce:09:f2:f9:7a:ab:b7:77:b3:c4:d1:58:
ad:b0:5c:49:a8:b8:e4:4d:73:e4:1f:9f:7a:f6:50:fe:40:2f:
45:c5:cf:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:08:20 2026 by rpki-client