Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: s40eIaDgzoO4sX57cwb8NwIZkNjjFP/ikIQoqO1xMfY=
Subject key identifier: 24:C3:31:90:11:E6:5B:F0:B8:72:68:B9:23:AC:2D:E0:55:13:25:56
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 019CAAFD03F722A23B94B527160253CB488B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 0D08
Signing time: Sun 01 Mar 2026 20:00:34 +0000
Manifest this update: Sun 01 Mar 2026 20:00:34 +0000
Manifest next update: Mon 02 Mar 2026 20:00:34 +0000
Files and hashes: 1: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: bWASwX8tEZAZD/ISpAw5Arbvn4bmm7j3tpyrHPK19DA=)
2: uoPZT_uIWtt1y75pLuVRiaAOCA8.roa (hash: 9YrNpBfyPkS8WM22E6fKQ7KTx+jlfiKDKpzF0Ults2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:03:f7:22:a2:3b:94:b5:27:16:02:53:cb:48:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Mar 1 20:00:34 2026 GMT
Not After : Mar 2 20:00:34 2026 GMT
Subject: CN=24c3319011e65bf0b87268b923ac2de055132556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c3:ef:d2:cb:43:0e:bb:2e:02:aa:4e:a9:e7:
97:28:1c:1b:a1:22:aa:87:a6:af:2c:49:5b:8d:cb:
cb:46:bc:58:32:5a:4f:12:a5:ba:2f:3d:c6:74:5e:
66:be:1b:07:1d:d0:24:85:af:a6:bc:17:03:df:36:
59:cf:0f:2e:b2:5d:f4:07:44:64:b6:18:43:17:0c:
96:26:d6:7f:61:29:b0:1e:95:98:25:61:46:90:46:
7c:c8:e8:eb:97:3f:f9:68:28:2e:22:42:d8:83:a5:
8f:59:d1:36:ce:d9:87:64:77:1c:85:35:b7:49:fd:
63:81:94:7b:8e:79:05:be:e2:68:2a:12:1b:b7:63:
70:b7:47:96:f0:9e:a3:05:5e:eb:14:b9:9b:bb:50:
03:2b:bd:d9:8d:7b:1c:19:07:93:d8:34:6c:32:94:
e0:b1:e2:81:89:99:23:1e:40:59:c3:d1:69:e2:d7:
38:97:db:ea:c0:41:fb:c0:20:58:b0:6d:9f:53:11:
d0:41:a2:5f:b1:6c:2d:c8:8d:bf:96:99:ec:47:2f:
9f:05:34:cb:7c:1a:be:16:b6:83:e8:0c:85:28:1e:
30:3a:9a:05:6c:18:63:50:43:df:70:61:86:1e:24:
76:05:4a:1b:3b:32:3f:b4:99:4a:34:7f:0a:94:a5:
a1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C3:31:90:11:E6:5B:F0:B8:72:68:B9:23:AC:2D:E0:55:13:25:56
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:3f:18:af:00:1d:ab:ae:ef:50:09:75:a4:ee:ac:98:1a:1a:
57:43:09:63:fb:5d:85:0b:2b:df:c0:9d:19:99:f5:cc:cc:34:
19:b8:2e:c5:82:11:35:24:93:85:17:98:a1:01:8f:b6:2f:bb:
18:8f:72:c2:00:2a:49:39:c1:c8:25:bf:07:63:ff:73:ac:6d:
ee:8b:68:db:50:b1:da:d1:e6:de:2f:73:2b:ef:de:e6:28:c8:
99:3e:b7:35:12:89:86:2e:2d:43:33:88:30:8d:c8:38:b8:b9:
6e:97:c6:55:82:64:6b:3c:06:2d:88:13:d4:40:63:96:c7:10:
bd:60:be:2d:ad:c4:1b:75:c8:62:a2:48:b9:8f:95:35:e3:2d:
3e:59:0d:28:fe:87:70:13:1f:35:14:df:16:26:5c:a5:d3:88:
41:a6:13:ab:dc:2d:db:a4:78:8c:c3:b7:0c:21:5f:e4:7b:8b:
12:68:4f:ce:16:57:da:9b:57:14:23:18:7f:2f:2a:3a:b2:21:
26:41:2b:5a:e3:7c:b5:d3:71:19:d3:ab:48:a8:af:46:ab:dc:
e2:df:3f:83:69:8b:83:c2:7f:c8:0b:95:d8:d4:9d:4e:c7:0f:
c6:8d:d5:57:2b:09:0f:4b:5b:0a:4c:35:ed:c2:5b:eb:d7:2e:
5c:31:31:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:00:33 2026 by rpki-client