Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
File: nskNT33GWqxj5T0h4bYLFHcHjcM.mft (raw, json)
Hash identifier: N62qZFBjp5euWOOCJ5+paLoNyzNnLNQlOF0SljsnPUg=
Subject key identifier: 94:FA:71:0E:21:DD:C9:0A:9C:A3:84:6D:C5:76:85:C4:B2:FB:89:45
Authority key identifier: 9E:C9:0D:4F:7D:C6:5A:AC:63:E5:3D:21:E1:B6:0B:14:77:07:8D:C3
Certificate issuer: /CN=9ec90d4f7dc65aac63e53d21e1b60b1477078dc3
Certificate serial: 019CA8D81094B3C7CFF2C139A4193ABA25D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nskNT33GWqxj5T0h4bYLFHcHjcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
Manifest number: 3D
Signing time: Sun 01 Mar 2026 10:00:58 +0000
Manifest this update: Sun 01 Mar 2026 10:00:58 +0000
Manifest next update: Mon 02 Mar 2026 10:00:58 +0000
Files and hashes: 1: f35nVT2UBskdAnHb1V1qpocTRSw.asa (hash: M12I0GnyVy1LhMGI7fglgOw9JEa1nOJpBPoyuQKlCpA=)
2: nskNT33GWqxj5T0h4bYLFHcHjcM.crl (hash: mLSMJi2ne1oeQjy/7pM5blxlj5XImufuhV9xFjCxO8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/nskNT33GWqxj5T0h4bYLFHcHjcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a8:d8:10:94:b3:c7:cf:f2:c1:39:a4:19:3a:ba:25:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ec90d4f7dc65aac63e53d21e1b60b1477078dc3
Validity
Not Before: Mar 1 10:00:58 2026 GMT
Not After : Mar 2 10:00:58 2026 GMT
Subject: CN=94fa710e21ddc90a9ca3846dc57685c4b2fb8945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8a:3b:e7:af:24:70:60:0d:b1:43:dc:33:7c:
c0:49:ad:b2:7f:c9:95:18:d4:32:f5:7f:28:60:45:
f7:5e:2f:49:8a:bc:06:fd:7c:b6:90:79:0d:41:d3:
0a:44:94:b4:ed:e9:86:81:7a:1d:66:b1:87:b6:2f:
86:8d:3c:8a:47:2c:e2:78:ed:3c:2e:97:54:49:75:
fe:37:83:d5:52:8a:34:61:9b:ec:da:bd:cb:8d:6a:
d6:40:23:40:29:e6:01:35:65:ab:fa:e5:20:ce:ae:
da:a9:fb:e7:7e:39:f3:65:d3:bf:b0:01:83:28:20:
90:3a:c4:87:3e:2b:d8:24:89:e5:50:67:b9:49:08:
56:c1:20:d3:15:87:9c:15:30:e3:5d:48:fd:4d:f5:
66:7c:1f:17:c3:d1:c9:3d:39:48:31:65:dd:05:97:
d3:3c:2c:a1:44:12:16:b0:75:9a:e5:54:1a:09:39:
d8:79:34:70:5c:e7:71:3d:a3:81:d6:69:9f:03:d2:
1d:b2:6b:f4:a1:02:e3:fd:f3:1a:d3:c5:8d:4c:c8:
70:0e:79:a1:4b:79:5d:12:a7:99:92:61:b5:ec:ed:
58:2c:02:62:47:7d:9a:ec:1b:17:8a:22:12:51:6d:
db:6a:c5:80:70:1a:e1:1e:a0:cc:75:cc:20:87:ed:
4c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:FA:71:0E:21:DD:C9:0A:9C:A3:84:6D:C5:76:85:C4:B2:FB:89:45
X509v3 Authority Key Identifier:
keyid:9E:C9:0D:4F:7D:C6:5A:AC:63:E5:3D:21:E1:B6:0B:14:77:07:8D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nskNT33GWqxj5T0h4bYLFHcHjcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:3e:97:e8:84:9f:6d:b1:0f:1f:b7:04:46:5c:a9:b0:b1:1a:
36:7f:49:4c:f0:2d:a3:ca:55:39:95:e0:51:46:4d:d3:95:d1:
3c:08:e1:fd:fe:4f:21:b3:b8:b4:e6:22:a5:a7:d8:d6:60:fc:
47:71:82:b7:65:12:9c:b3:e4:54:10:13:4e:e7:da:b1:7e:55:
c3:da:47:19:4c:d4:4c:9b:46:77:4d:b1:f9:a4:be:e1:4d:9c:
84:dc:bc:c3:bb:a8:13:f8:0c:a9:c1:17:2e:96:d5:83:c9:df:
4b:22:c0:03:91:d3:5b:2b:2f:91:70:f5:18:2b:7d:76:a9:35:
38:10:d9:55:46:9e:26:f1:be:78:58:2b:c3:c5:4b:0d:0b:dc:
a1:50:46:05:25:3b:13:3f:74:30:43:33:5a:c8:53:c4:aa:f2:
5c:c4:43:25:87:a5:01:65:db:77:5c:43:09:91:85:3d:d4:c0:
38:b1:e2:d5:da:84:42:fd:5f:dc:54:9b:3b:ff:50:26:d3:4c:
b3:af:0c:6e:a6:56:58:89:a9:49:85:25:e9:af:4d:09:b2:c0:
5b:86:5f:46:e1:ae:b9:09:b8:87:41:98:e6:96:65:92:33:33:
1b:42:7f:40:5b:d6:bc:54:21:fc:cd:5e:04:48:eb:63:8d:49:
dc:38:12:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyo2BCUs8fP8sE5pBk6uiXRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllYzkwZDRmN2RjNjVhYWM2M2U1M2QyMWUxYjYwYjE0Nzcw
NzhkYzMwHhcNMjYwMzAxMTAwMDU4WhcNMjYwMzAyMTAwMDU4WjAzMTEwLwYDVQQD
Eyg5NGZhNzEwZTIxZGRjOTBhOWNhMzg0NmRjNTc2ODVjNGIyZmI4OTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIo7568kcGANsUPcM3zASa2yf8mV
GNQy9X8oYEX3Xi9JirwG/Xy2kHkNQdMKRJS07emGgXodZrGHti+GjTyKRyzieO08
LpdUSXX+N4PVUoo0YZvs2r3LjWrWQCNAKeYBNWWr+uUgzq7aqfvnfjnzZdO/sAGD
KCCQOsSHPivYJInlUGe5SQhWwSDTFYecFTDjXUj9TfVmfB8Xw9HJPTlIMWXdBZfT
PCyhRBIWsHWa5VQaCTnYeTRwXOdxPaOB1mmfA9Idsmv0oQLj/fMa08WNTMhwDnmh
S3ldEqeZkmG17O1YLAJiR32a7BsXiiISUW3basWAcBrhHqDMdcwgh+1MGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJT6cQ4h3ckKnKOEbcV2hcSy+4lFMB8GA1UdIwQY
MBaAFJ7JDU99xlqsY+U9IeG2CxR3B43DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnNrTlQzM0dXcXhqNVQwaDRiWUxGSGNIamNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8yOWZmNTctM2NhNi00Y2Q0LTg3NGUt
YzM3NDFlNGQzZTc0LzEvbnNrTlQzM0dXcXhqNVQwaDRiWUxGSGNIamNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8yOWZmNTctM2NhNi00Y2Q0LTg3NGUtYzM3NDFlNGQzZTc0
LzEvbnNrTlQzM0dXcXhqNVQwaDRiWUxGSGNIamNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbT6X6ISf
bbEPH7cERlypsLEaNn9JTPAto8pVOZXgUUZN05XRPAjh/f5PIbO4tOYipafY1mD8
R3GCt2USnLPkVBATTufasX5Vw9pHGUzUTJtGd02x+aS+4U2chNy8w7uoE/gMqcEX
LpbVg8nfSyLAA5HTWysvkXD1GCt9dqk1OBDZVUaeJvG+eFgrw8VLDQvcoVBGBSU7
Ez90MEMzWshTxKryXMRDJYelAWXbd1xDCZGFPdTAOLHi1dqEQv1f3FSbO/9QJtNM
s68MbqZWWImpSYUl6a9NCbLAW4ZfRuGuuQm4h0GY5pZlkjMzG0J/QFvWvFQh/M1e
BEjrY41J3DgSeQ==
-----END CERTIFICATE-----
Generated at Sun Mar 1 16:23:15 2026 by rpki-client