Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.mft
File: NkYULOMpCrZ4bT0w8mteQf1oTd4.mft (raw, json)
Hash identifier: wGE6K0XeGBw0id610eW2lYya9P6gCuNZLkFsRu9GfnA=
Subject key identifier: 00:87:9C:94:8E:45:9A:E4:FB:55:15:47:D6:1E:4B:62:56:56:A0:2A
Authority key identifier: 36:46:14:2C:E3:29:0A:B6:78:6D:3D:30:F2:6B:5E:41:FD:68:4D:DE
Certificate issuer: /CN=3646142ce3290ab6786d3d30f26b5e41fd684dde
Certificate serial: 019EC1EE2E46E4759225B74E177E603DB072
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NkYULOMpCrZ4bT0w8mteQf1oTd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.mft
Manifest number: 0D39
Signing time: Sat 13 Jun 2026 17:01:12 +0000
Manifest this update: Sat 13 Jun 2026 17:01:12 +0000
Manifest next update: Sun 14 Jun 2026 17:01:12 +0000
Files and hashes: 1: 8sd6i61fK2pFKRyKUFXIcecWNdA.roa (hash: 0lP2EukbQ7lxiIB/1dg6Wt6kXv3T/8YmxZYQdbkSyU4=)
2: LZcyPq5gcVmCZJNsmUPn5VwCWKQ.roa (hash: qXtKcLjBnYcfm5KPZ6PRmpU8Z0A5pTm8Psp+7+d29jQ=)
3: NkYULOMpCrZ4bT0w8mteQf1oTd4.crl (hash: 3rDdS9RnMIG83Bi0J6UT8K4qLRmeF0I9G2R3YcCPhRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NkYULOMpCrZ4bT0w8mteQf1oTd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:2e:46:e4:75:92:25:b7:4e:17:7e:60:3d:b0:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3646142ce3290ab6786d3d30f26b5e41fd684dde
Validity
Not Before: Jun 13 17:01:12 2026 GMT
Not After : Jun 14 17:01:12 2026 GMT
Subject: CN=00879c948e459ae4fb551547d61e4b625656a02a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:97:53:e1:b8:b9:3c:f7:50:68:14:d4:21:2c:
d9:68:ba:20:9d:fd:61:ad:ce:bb:a2:fe:29:90:00:
b0:f3:47:66:ea:b1:37:74:f5:0f:c9:65:71:7a:5c:
0e:db:f8:6a:1d:17:1a:c1:a8:f8:b1:16:29:92:3a:
3b:db:43:35:d7:66:eb:a2:12:2c:b6:ba:6c:6a:40:
96:37:f3:ea:be:db:87:c5:59:21:69:93:9f:fd:c9:
5c:88:0c:f5:58:03:89:23:3d:18:7e:aa:05:b1:77:
fd:b6:a9:37:10:98:e6:93:ff:3e:10:17:de:18:97:
a8:3f:bd:3c:d7:37:ca:1b:ad:fc:dc:44:9a:cc:f8:
17:bb:3a:82:a2:ef:51:a0:4e:f7:e7:36:d7:c4:37:
a9:40:e2:39:3f:a6:4a:20:e1:d6:97:f4:7b:13:ce:
ec:2c:38:3f:2c:bc:81:3a:02:70:e4:50:3c:90:f5:
ed:b0:27:a3:78:51:e6:ac:21:44:e7:dd:95:85:0c:
ea:7e:a6:17:da:d9:2e:4e:cf:76:47:a3:8e:36:51:
61:14:24:5d:91:56:35:8c:8b:bd:0c:b2:d0:f0:9d:
4e:29:65:b5:01:a2:2b:7e:03:8c:e2:a4:1c:ab:c1:
45:af:75:54:0d:43:4c:f1:5b:5b:1c:4c:1a:4a:b2:
1d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:87:9C:94:8E:45:9A:E4:FB:55:15:47:D6:1E:4B:62:56:56:A0:2A
X509v3 Authority Key Identifier:
keyid:36:46:14:2C:E3:29:0A:B6:78:6D:3D:30:F2:6B:5E:41:FD:68:4D:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NkYULOMpCrZ4bT0w8mteQf1oTd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cd8206-764e-4a31-ace7-d308542a1d86/1/NkYULOMpCrZ4bT0w8mteQf1oTd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:37:07:94:69:00:58:29:57:ca:16:a1:46:16:95:56:8e:b6:
a2:31:14:a0:1b:ee:91:c9:8f:2a:a9:ba:0b:e4:a0:a3:c8:bb:
c4:24:bb:88:91:7e:12:6e:e8:91:c3:7d:74:53:c9:ae:61:83:
dc:f2:27:5d:41:d3:95:57:3e:30:07:79:00:1a:89:a8:b2:97:
cb:0a:1d:f4:ee:14:da:0c:fd:08:c9:8f:ea:3a:b1:db:34:19:
c7:9a:bc:d2:18:e5:e8:6a:42:c7:95:81:f2:ea:d6:8c:1b:dc:
7d:cf:41:52:06:0c:73:55:bf:ef:d8:26:65:e6:38:8d:df:fd:
c8:7c:a0:36:03:2d:48:07:1d:4d:12:44:e9:a9:e7:cc:d7:e2:
1e:28:69:a9:0f:6f:ed:b1:5e:2d:ba:f5:a4:59:9a:c0:7f:d6:
cc:67:29:35:b7:8f:36:77:f0:ec:d8:34:ec:2f:0e:b6:bb:29:
cb:64:fc:b3:70:04:2e:76:07:6a:ad:df:69:77:79:a0:33:cb:
2f:a4:f9:d8:c9:53:c8:f0:18:eb:52:b4:f5:47:c6:1f:42:08:
af:3b:50:80:e2:ed:a8:65:6d:46:97:b9:f8:80:2a:8f:b5:d8:
80:38:6e:5a:53:9b:74:a4:ea:fe:e1:f0:c5:fc:86:e0:ea:24:
d6:3e:b7:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:16:39 2026 by rpki-client