Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json)
Hash identifier: BkWPcawwsJLeRfzOPWP/hfehE0AjiFp50+j50xFibHI=
Subject key identifier: 06:15:3A:3B:D1:08:03:0B:1D:73:EE:8C:D7:F2:46:58:8C:99:8C:2A
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 019EBFC8F984F73DEB1F944957674557A8D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
Manifest number: 103A
Signing time: Sat 13 Jun 2026 07:01:19 +0000
Manifest this update: Sat 13 Jun 2026 07:01:19 +0000
Manifest next update: Sun 14 Jun 2026 07:01:19 +0000
Files and hashes: 1: 3kSbU0e5h99O_Tm79lGnT_Tp5Hc.roa (hash: RwQ/Qy1kKylc45gWPZOazTOGnIJ82QduJgu3sQQqwXY=)
2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: 4Gt37z1yELc8VJPhgwaVLgcHoStHXELXUZ6xsIXFM24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:f9:84:f7:3d:eb:1f:94:49:57:67:45:57:a8:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Jun 13 07:01:19 2026 GMT
Not After : Jun 14 07:01:19 2026 GMT
Subject: CN=06153a3bd108030b1d73ee8cd7f246588c998c2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:3d:33:e7:58:fb:e5:09:70:00:6a:28:51:64:
ba:a9:bf:ae:00:90:5c:06:9b:22:33:87:34:da:74:
4a:3a:03:92:45:d7:13:98:b4:26:5f:b3:80:19:cb:
69:7e:06:2b:e9:6c:40:38:80:fd:3f:45:b6:e4:5c:
d5:c1:c8:14:05:79:b4:6f:16:cf:63:59:ca:d6:03:
e8:ff:69:cf:fb:4c:dd:c4:9e:12:4a:ef:01:f5:ed:
35:e9:fb:b0:3f:6b:29:d3:45:36:1f:0d:86:1c:57:
16:81:b3:2f:62:14:39:93:1e:8c:0e:a8:3a:1a:6e:
a9:5c:b6:38:0d:20:4d:0b:cd:14:03:79:be:70:c5:
65:c9:83:56:a3:0d:35:77:44:08:7f:bf:46:78:57:
81:ba:4c:a1:ab:d2:67:c3:3e:ba:6d:d4:5f:fd:66:
8c:7e:e6:82:ed:52:d2:04:a6:94:15:3f:0e:87:b1:
ad:b9:7b:c1:4e:74:d3:22:d6:54:7b:53:61:80:7b:
9f:51:67:0e:66:82:b3:d7:26:dd:2b:c8:ea:22:ba:
66:25:bb:ee:66:95:75:9d:d2:b9:9c:1f:fd:98:b7:
fd:6d:c0:bc:aa:a2:db:2c:66:26:cb:26:67:c0:23:
1f:24:d4:16:c2:a2:a0:90:e5:69:99:2d:48:d5:83:
37:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:15:3A:3B:D1:08:03:0B:1D:73:EE:8C:D7:F2:46:58:8C:99:8C:2A
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:3e:c9:08:03:68:c5:62:65:07:bc:99:c2:4a:25:d3:3a:08:
95:ea:cc:17:94:85:a7:38:16:a0:8d:92:ca:90:1e:fc:c3:65:
88:47:a7:97:0c:b2:26:83:08:be:21:a0:f6:d5:ca:4f:96:b4:
a3:26:77:28:c7:30:f9:eb:aa:10:39:1a:3e:45:e9:74:87:ea:
81:7d:1e:b4:05:ce:8e:f6:1b:66:02:a9:41:94:05:4b:2e:d2:
45:01:26:98:88:16:8a:b4:8d:bf:36:8e:4c:2a:a4:de:59:00:
88:e3:9d:d8:a9:86:aa:59:d6:60:b9:ae:3b:3b:2f:f8:db:5d:
4f:75:92:63:ad:c0:7b:ed:a6:22:48:2a:e3:1b:77:3e:bb:3c:
a2:a4:6f:f9:b0:16:bf:a4:0e:55:61:ad:54:06:6d:10:21:fc:
6b:2d:89:f8:7d:74:fa:d9:04:c2:6e:69:8a:7a:2c:44:0d:ac:
fb:ed:9a:52:ad:cf:31:0f:07:f0:92:68:0d:f4:b5:0e:e3:ac:
2c:18:dd:8b:7b:fa:c9:28:c8:94:6c:19:f4:9f:13:af:4f:78:
2c:0f:8e:ef:7c:f3:be:ac:be:37:ad:82:11:e6:29:0c:65:65:
a0:46:9f:ce:e0:55:ec:68:95:12:e1:94:eb:70:da:6a:d3:05:
46:5c:35:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:48:19 2026 by rpki-client