Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
File: nskNT33GWqxj5T0h4bYLFHcHjcM.mft (raw, json)
Hash identifier: lGFa/GX4abPNKg6uzBFGs0UJhFFOsYFFumgc46by1Tk=
Subject key identifier: 05:4A:02:9D:CC:4D:32:C1:2B:FD:D9:BA:01:20:38:9C:8A:1C:2B:F9
Authority key identifier: 9E:C9:0D:4F:7D:C6:5A:AC:63:E5:3D:21:E1:B6:0B:14:77:07:8D:C3
Certificate issuer: /CN=9ec90d4f7dc65aac63e53d21e1b60b1477078dc3
Certificate serial: 019EBFC87BD8345FD6B94BD20B83C99EB982
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nskNT33GWqxj5T0h4bYLFHcHjcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
Manifest number: 0152
Signing time: Sat 13 Jun 2026 07:00:47 +0000
Manifest this update: Sat 13 Jun 2026 07:00:47 +0000
Manifest next update: Sun 14 Jun 2026 07:00:47 +0000
Files and hashes: 1: f35nVT2UBskdAnHb1V1qpocTRSw.asa (hash: M12I0GnyVy1LhMGI7fglgOw9JEa1nOJpBPoyuQKlCpA=)
2: nskNT33GWqxj5T0h4bYLFHcHjcM.crl (hash: k34JHcHbufDe/QgYh3Zl5eD0zQhK7QgpP73z6q+Crrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/nskNT33GWqxj5T0h4bYLFHcHjcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:7b:d8:34:5f:d6:b9:4b:d2:0b:83:c9:9e:b9:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ec90d4f7dc65aac63e53d21e1b60b1477078dc3
Validity
Not Before: Jun 13 07:00:47 2026 GMT
Not After : Jun 14 07:00:47 2026 GMT
Subject: CN=054a029dcc4d32c12bfdd9ba0120389c8a1c2bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7e:85:bb:42:de:f6:f0:e9:13:f3:06:99:86:
fd:c6:8f:0c:82:1a:77:21:7a:9a:94:3b:97:23:2b:
93:1a:6e:30:84:1e:c5:69:c2:b0:41:d7:fa:f8:2c:
c3:78:62:ea:80:b8:75:8f:04:b5:93:41:ae:a8:06:
3d:0c:de:5e:8d:5a:0f:be:19:a8:52:92:50:40:5e:
e7:53:81:31:40:0c:8c:95:df:78:31:1d:be:ec:0a:
4d:8f:af:7a:78:d1:34:14:89:d6:1c:90:bf:92:6e:
93:b1:1b:e7:69:26:5c:2e:42:b7:e1:c9:22:6a:b2:
c8:8b:24:0d:7a:ee:5b:2f:f9:35:28:f2:15:e4:a2:
d8:d2:2a:c7:e1:a0:03:a7:dc:bc:47:5e:05:54:fe:
09:ba:58:1f:0f:f1:14:22:1e:f9:ca:1d:42:d9:f4:
c9:2c:80:31:f2:b9:8b:31:a0:b5:ba:c0:eb:3b:5c:
34:ec:c3:40:ec:e3:c3:28:ec:26:40:9f:bb:18:58:
9d:26:8d:de:bc:d9:4c:4d:4c:3f:7b:b2:c8:60:6b:
1e:e8:2d:b6:51:aa:19:c2:55:80:69:01:93:b4:7d:
25:0f:54:1d:aa:07:50:fd:59:06:83:6a:db:39:22:
af:46:66:10:50:46:43:95:ac:31:d2:83:0a:04:86:
7a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:4A:02:9D:CC:4D:32:C1:2B:FD:D9:BA:01:20:38:9C:8A:1C:2B:F9
X509v3 Authority Key Identifier:
keyid:9E:C9:0D:4F:7D:C6:5A:AC:63:E5:3D:21:E1:B6:0B:14:77:07:8D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nskNT33GWqxj5T0h4bYLFHcHjcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/29ff57-3ca6-4cd4-874e-c3741e4d3e74/1/nskNT33GWqxj5T0h4bYLFHcHjcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:6d:ae:49:ce:b0:64:df:81:1d:85:04:99:52:3c:ca:75:89:
58:09:51:f2:8c:00:36:99:d0:08:55:fa:00:a9:37:48:d0:b3:
42:4a:99:c2:6c:e9:4c:52:d4:37:12:ba:6a:a6:62:44:d0:0a:
59:c0:2c:eb:92:81:cb:bc:4d:57:56:5a:7c:a4:63:0a:34:9d:
e2:fa:ca:e2:46:7d:2a:1f:42:70:65:35:e6:1a:a9:94:9d:7b:
c3:7e:4d:9a:6f:e1:06:28:62:a0:3a:09:e2:81:47:34:ad:31:
44:7b:64:74:2e:4a:cd:71:5b:db:e7:33:78:61:90:35:3a:a4:
c6:a3:77:06:f3:d3:37:20:ae:19:01:d5:51:dd:7e:d0:42:85:
83:2d:a7:12:05:51:71:42:9b:de:cb:1e:9a:88:1b:f4:b0:03:
2e:0c:93:75:a4:31:8c:6e:6f:a1:6f:a1:6d:2e:ea:28:b5:91:
b3:e6:e1:72:ef:2a:62:a7:5d:a2:96:87:6b:8e:88:66:9c:0f:
2c:bb:e2:45:54:92:3e:e2:82:df:dc:2c:6c:2f:8d:e9:2e:16:
fe:93:c0:10:16:92:4f:1d:d5:11:2d:27:0f:c8:55:46:db:1f:
33:11:a2:72:97:60:ba:26:6b:70:be:21:19:2d:e9:d8:40:96:
e4:36:a7:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:40:16 2026 by rpki-client