Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
File: NgHDzOanHKshpLut8KuE3ePyurI.mft (raw, json)
Hash identifier: yZH/h9fjAWGNRMYNA8NfGph0vrz97TETal7MWkRl03Q=
Subject key identifier: 7C:1F:E0:E3:2D:49:B9:CD:B1:E3:92:88:56:BD:7B:F3:0F:36:CB:EF
Authority key identifier: 36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
Certificate issuer: /CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Certificate serial: 019CAB33F411289DC17415C0BAE3091493CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
Manifest number: 1849
Signing time: Sun 01 Mar 2026 21:00:34 +0000
Manifest this update: Sun 01 Mar 2026 21:00:34 +0000
Manifest next update: Mon 02 Mar 2026 21:00:34 +0000
Files and hashes: 1: NgHDzOanHKshpLut8KuE3ePyurI.crl (hash: H/hCVdpzWpkbrG8XhoVjJm0RejDWDFsgwgolAcO/n0w=)
2: n4exwERefxehosNF3vrmda7cVQg.roa (hash: Yi7HEiIp9Gzv2dhWbsT1GkQVLHDCPjnmDLNUTFuloG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:33:f4:11:28:9d:c1:74:15:c0:ba:e3:09:14:93:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Validity
Not Before: Mar 1 21:00:34 2026 GMT
Not After : Mar 2 21:00:34 2026 GMT
Subject: CN=7c1fe0e32d49b9cdb1e3928856bd7bf30f36cbef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:95:4d:44:0e:41:c5:44:4a:ec:54:14:85:6c:
5f:24:92:86:2d:07:c4:56:14:e2:34:fe:b1:96:ca:
a7:42:5e:d5:60:da:fc:f6:87:97:75:4a:a7:3a:23:
0a:db:67:a7:d2:14:a9:3f:2a:a3:d8:68:67:63:a0:
a9:9c:f7:17:53:3a:96:0c:c2:eb:54:85:b9:05:70:
aa:86:b8:57:e5:c8:aa:db:f9:20:e8:58:4a:4d:76:
ff:07:6f:2b:e9:73:40:b9:01:78:56:fb:47:37:de:
5d:20:d2:4f:12:c6:cd:73:61:b8:55:18:97:b6:67:
30:d6:34:9f:d8:c3:47:a3:2e:4f:cb:ad:12:bb:ce:
08:41:5e:44:0c:85:29:82:3e:ba:ca:85:1a:3e:84:
12:d6:6d:15:74:20:bb:ef:8c:09:96:85:90:72:80:
9e:f5:cb:06:93:00:72:f0:ea:6d:64:42:24:56:c8:
a6:0b:06:35:be:8b:cf:6f:57:5f:c9:a0:92:77:3d:
af:d1:77:53:bc:aa:c7:97:d4:ad:6b:2b:dd:b9:53:
88:e2:5a:c3:cb:06:a4:af:a3:46:68:01:63:8b:04:
df:65:e5:bf:88:98:ac:f4:03:cc:56:a4:fa:b1:fa:
18:71:d9:95:85:b5:84:4c:27:6e:d6:ea:2e:66:ab:
97:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:1F:E0:E3:2D:49:B9:CD:B1:E3:92:88:56:BD:7B:F3:0F:36:CB:EF
X509v3 Authority Key Identifier:
keyid:36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:5e:6e:51:57:30:ee:e3:13:dd:56:3e:85:28:7a:13:fe:07:
9d:9a:65:11:31:a6:f3:f4:a8:70:cb:9b:03:3d:4d:55:97:db:
46:82:ff:b4:b6:0d:10:e8:77:39:71:7e:db:94:39:90:e9:eb:
7f:56:b6:af:39:37:99:9d:62:9d:30:88:48:b3:2a:73:25:e3:
f6:50:55:af:04:a3:a4:82:7c:5c:c3:65:d2:89:eb:bd:46:f3:
fd:ee:5b:15:43:8d:d8:ae:9f:d2:f7:41:f9:ce:3c:20:e2:57:
68:77:b9:5b:7c:d2:6b:78:cc:23:f8:45:b8:cb:bc:c0:42:6d:
6c:18:b9:1d:7a:27:c0:f0:75:93:9c:95:43:c6:58:16:9a:b3:
13:9d:ef:e4:44:1f:33:da:91:32:c9:48:71:de:c6:7e:04:93:
6a:6d:95:9d:13:eb:f0:29:a2:10:73:e8:5f:cd:01:01:36:08:
c2:c9:9a:6f:bb:ea:a5:5a:54:09:04:7c:ac:91:e8:e3:67:c1:
82:49:2a:a2:6f:b5:43:58:3c:62:10:22:86:93:9e:f5:c5:a2:
08:29:37:df:3c:0a:31:0c:f7:40:8e:08:a0:b1:1e:c1:31:1d:
43:38:db:cc:16:c6:14:46:ce:16:24:8a:47:0f:83:c3:9c:9d:
bc:eb:c6:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrM/QRKJ3BdBXAuuMJFJPPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2MDFjM2NjZTZhNzFjYWIyMWE0YmJhZGYwYWI4NGRkZTNm
MmJhYjIwHhcNMjYwMzAxMjEwMDM0WhcNMjYwMzAyMjEwMDM0WjAzMTEwLwYDVQQD
Eyg3YzFmZTBlMzJkNDliOWNkYjFlMzkyODg1NmJkN2JmMzBmMzZjYmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3JVNRA5BxURK7FQUhWxfJJKGLQfE
VhTiNP6xlsqnQl7VYNr89oeXdUqnOiMK22en0hSpPyqj2GhnY6CpnPcXUzqWDMLr
VIW5BXCqhrhX5ciq2/kg6FhKTXb/B28r6XNAuQF4VvtHN95dINJPEsbNc2G4VRiX
tmcw1jSf2MNHoy5Py60Su84IQV5EDIUpgj66yoUaPoQS1m0VdCC774wJloWQcoCe
9csGkwBy8OptZEIkVsimCwY1vovPb1dfyaCSdz2v0XdTvKrHl9StayvduVOI4lrD
ywakr6NGaAFjiwTfZeW/iJis9APMVqT6sfoYcdmVhbWETCdu1uouZquXUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHwf4OMtSbnNseOSiFa9e/MPNsvvMB8GA1UdIwQY
MBaAFDYBw8zmpxyrIaS7rfCrhN3j8rqyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmdIRHpPYW5IS3NocEx1dDhLdUUzZVB5dXJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8wZjBhMDEtMGNjNC00ZWZjLTlkZDUt
ODAxZWYzOGRlYTljLzEvTmdIRHpPYW5IS3NocEx1dDhLdUUzZVB5dXJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS8wZjBhMDEtMGNjNC00ZWZjLTlkZDUtODAxZWYzOGRlYTlj
LzEvTmdIRHpPYW5IS3NocEx1dDhLdUUzZVB5dXJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcl5uUVcw
7uMT3VY+hSh6E/4HnZplETGm8/SocMubAz1NVZfbRoL/tLYNEOh3OXF+25Q5kOnr
f1a2rzk3mZ1inTCISLMqcyXj9lBVrwSjpIJ8XMNl0onrvUbz/e5bFUON2K6f0vdB
+c48IOJXaHe5W3zSa3jMI/hFuMu8wEJtbBi5HXonwPB1k5yVQ8ZYFpqzE53v5EQf
M9qRMslIcd7GfgSTam2VnRPr8CmiEHPoX80BATYIwsmab7vqpVpUCQR8rJHo42fB
gkkqom+1Q1g8YhAihpOe9cWiCCk33zwKMQz3QI4IoLEewTEdQzjbzBbGFEbOFiSK
Rw+Dw5ydvOvGDg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:04:19 2026 by rpki-client