Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
File: nskNT33GWqxj5T0h4bYLFHcHjcM.mft (raw, json)
Hash identifier: l4OuffVV9xhlZfpxC7/M6TjHVDEcXA6u9w8Pl6bowtg=
Subject key identifier: 71:E4:9A:36:33:B6:BD:47:E0:0D:58:37:17:D9:7C:DA:9A:67:BF:58
Authority key identifier: 9E:C9:0D:4F:7D:C6:5A:AC:63:E5:3D:21:E1:B6:0B:14:77:07:8D:C3
Certificate issuer: /CN=9ec90d4f7dc65aac63e53d21e1b60b1477078dc3
Certificate serial: 019DA3E62651361B57FDE057B55F51C86D1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nskNT33GWqxj5T0h4bYLFHcHjcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
Manifest number: BF
Signing time: Sun 19 Apr 2026 04:01:02 +0000
Manifest this update: Sun 19 Apr 2026 04:01:02 +0000
Manifest next update: Mon 20 Apr 2026 04:01:02 +0000
Files and hashes: 1: f35nVT2UBskdAnHb1V1qpocTRSw.asa (hash: M12I0GnyVy1LhMGI7fglgOw9JEa1nOJpBPoyuQKlCpA=)
2: nskNT33GWqxj5T0h4bYLFHcHjcM.crl (hash: bLMK7NqFfSRc4pm4/ECw7VwLNFcYnd3F0TGTxAVZ8Fo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/nskNT33GWqxj5T0h4bYLFHcHjcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e6:26:51:36:1b:57:fd:e0:57:b5:5f:51:c8:6d:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ec90d4f7dc65aac63e53d21e1b60b1477078dc3
Validity
Not Before: Apr 19 04:01:02 2026 GMT
Not After : Apr 20 04:01:02 2026 GMT
Subject: CN=71e49a3633b6bd47e00d583717d97cda9a67bf58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:42:e6:5d:78:48:91:af:f2:a0:e6:85:ce:10:
04:9a:a1:27:e7:8c:e2:31:c1:1e:b0:d5:c7:2c:71:
63:02:84:94:e9:32:34:c8:56:e6:3b:3c:a3:f1:76:
59:27:e1:d7:07:10:06:c7:b4:a0:66:d0:6e:52:85:
56:ec:53:c0:6e:19:56:52:75:8a:cd:89:d9:d9:e7:
e0:0c:68:7b:b8:4e:b1:46:f1:e6:44:6e:57:9c:b1:
3e:a9:c9:f4:67:94:23:5b:9c:b2:0b:dd:64:d3:f1:
77:ea:28:93:7e:f3:3c:cb:bc:62:92:8c:46:ef:d9:
78:17:d0:61:98:df:22:7c:62:31:58:c8:4a:a2:c0:
2d:d6:27:5c:50:ca:fb:83:e8:5d:59:7e:43:d3:95:
4b:87:1a:81:81:1a:7e:e9:9d:ac:c1:34:44:69:7b:
c7:73:97:b8:78:3f:70:2f:e6:9e:cc:5f:11:79:ae:
f3:f3:ef:d6:0e:51:e7:3a:37:8c:ef:8e:c8:81:26:
f8:cb:5b:1f:55:70:ee:e9:c3:c1:6e:b6:43:76:55:
bd:6a:2e:41:8a:4c:2c:8c:c8:c3:2d:9c:f3:f7:ee:
d2:dd:36:d5:d9:3d:bb:33:55:2f:c9:7a:c3:a2:81:
fd:bc:77:5d:67:a9:d4:b7:86:13:55:2f:87:cf:e5:
2e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:E4:9A:36:33:B6:BD:47:E0:0D:58:37:17:D9:7C:DA:9A:67:BF:58
X509v3 Authority Key Identifier:
keyid:9E:C9:0D:4F:7D:C6:5A:AC:63:E5:3D:21:E1:B6:0B:14:77:07:8D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nskNT33GWqxj5T0h4bYLFHcHjcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:6b:44:d1:c0:29:97:66:40:0f:d1:92:1d:e9:ae:2c:58:00:
76:41:59:7b:64:46:f0:ee:4c:2b:a8:f5:49:41:72:5c:37:7d:
16:8c:8c:b1:c1:b5:4d:78:f0:fa:88:e3:35:86:df:1b:b3:4c:
1c:16:7f:52:2d:79:80:72:79:31:4b:e8:9c:ec:f5:b5:e8:91:
c9:cf:ed:ba:1d:ac:ef:7f:82:79:96:bd:dc:42:40:e6:31:86:
b0:c1:32:e6:43:dc:f9:58:68:ac:a8:11:1a:ad:73:e2:88:06:
56:7e:da:d9:fd:0b:5e:da:4c:1b:3a:46:03:a3:40:5d:9c:94:
55:30:26:f3:f0:47:7f:25:8c:88:13:d7:c1:4f:6b:c7:fd:aa:
5c:de:99:5b:23:46:04:dd:75:74:d7:d9:9e:d3:fb:20:7a:89:
81:4f:d4:e1:db:3f:19:c0:0f:68:a7:d3:ee:c1:06:57:10:cf:
99:17:77:7d:6e:1c:55:5c:a8:ba:06:ff:a4:41:d1:34:41:10:
8c:de:b9:c3:32:ce:27:d8:07:b7:80:f8:6f:e6:3a:88:fc:cf:
c4:3b:b5:69:63:c7:3d:43:8a:2e:5d:0e:bb:a2:40:bd:a5:51:
9c:8d:8c:e9:52:7f:a4:82:84:43:99:19:c9:18:de:76:5d:71:
90:d6:bd:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:44:25 2026 by rpki-client