Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft
File: nHIayAejJvhxu6oYSWPNYCtcwtY.mft (raw, json)
Hash identifier: LSgtyrgeNYPupifEelXziIJfppwkq6t4kpBxwv/HL5g=
Subject key identifier: 74:FE:3C:60:DC:07:FF:2D:68:D3:67:44:59:81:84:82:E7:C7:04:61
Authority key identifier: 9C:72:1A:C8:07:A3:26:F8:71:BB:AA:18:49:63:CD:60:2B:5C:C2:D6
Certificate issuer: /CN=9c721ac807a326f871bbaa184963cd602b5cc2d6
Certificate serial: 019D29294C1462B5C3256DB7313534839267
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHIayAejJvhxu6oYSWPNYCtcwtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 08:01:05 +0000
Manifest this update: Thu 26 Mar 2026 08:01:05 +0000
Manifest next update: Fri 27 Mar 2026 08:01:05 +0000
Files and hashes: 1: Om7ZQ-8XCQlgOaJIlxkUZHdp1tc.roa (hash: bjl4aARKpgl6sPBL+R2cds28ZzucnTcBrTeFC8PyXIc=)
2: nHIayAejJvhxu6oYSWPNYCtcwtY.crl (hash: jSjciNA03DOjQHoUC6ISpinf97AK/06sleM1j6Xz4NE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nHIayAejJvhxu6oYSWPNYCtcwtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:4c:14:62:b5:c3:25:6d:b7:31:35:34:83:92:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c721ac807a326f871bbaa184963cd602b5cc2d6
Validity
Not Before: Mar 26 08:01:05 2026 GMT
Not After : Mar 27 08:01:05 2026 GMT
Subject: CN=74fe3c60dc07ff2d68d3674459818482e7c70461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:dd:95:67:c5:2e:39:71:af:0d:c3:5a:0c:dd:
c0:62:30:d0:a4:45:6d:8b:a3:23:eb:0d:be:50:c8:
51:68:27:e2:12:b6:57:61:bb:b6:c9:a2:32:ff:0c:
83:ac:a9:39:0b:8a:59:d1:fc:81:25:9a:76:5a:73:
e6:6c:a3:8b:5b:f6:9f:91:2a:57:17:65:fd:a5:d4:
82:03:36:99:8f:22:17:6d:d2:36:ae:a6:1e:7d:93:
56:44:44:b3:83:80:c3:6e:b6:12:a7:71:49:f9:d8:
4c:49:c9:4c:69:56:74:aa:d5:f8:23:a5:78:d2:77:
90:e1:16:f6:52:ca:52:32:a6:e0:2d:3f:fa:c9:02:
3a:11:04:82:72:d7:09:4b:7e:7c:77:7d:e3:35:03:
ca:5a:ad:b1:56:a0:7b:76:41:37:bd:cc:f3:a4:e2:
17:18:2e:e6:70:b8:0c:e7:93:b1:7a:c4:98:3e:3f:
64:35:43:39:d1:57:3e:2f:4e:82:d6:6b:67:e5:9a:
5a:2f:a8:03:39:b5:e9:20:b7:49:d5:f3:81:2e:82:
72:58:7f:e8:e7:66:9c:38:93:d9:b8:a3:35:64:e2:
4c:68:f0:e4:fe:ba:16:1e:6f:89:a8:b0:f1:f0:11:
cd:e5:25:80:22:ae:c7:19:af:fe:08:94:f4:ad:58:
f3:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FE:3C:60:DC:07:FF:2D:68:D3:67:44:59:81:84:82:E7:C7:04:61
X509v3 Authority Key Identifier:
keyid:9C:72:1A:C8:07:A3:26:F8:71:BB:AA:18:49:63:CD:60:2B:5C:C2:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHIayAejJvhxu6oYSWPNYCtcwtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:75:36:ce:29:b6:d7:0d:74:b1:45:d2:08:6b:db:22:b2:cb:
3e:67:d3:42:76:83:bd:41:d2:be:07:28:bb:bc:97:a7:97:dc:
ba:3e:ac:6d:ce:54:00:9f:eb:9e:97:d1:98:30:8c:11:6a:23:
49:94:08:fa:e0:04:01:9d:01:97:3c:90:ff:89:12:07:a6:90:
40:cb:29:72:f8:a2:51:4a:55:9f:40:a9:a0:cc:11:ff:04:31:
72:47:77:6b:81:08:c6:03:81:9a:07:ab:02:96:4c:1d:a4:38:
f1:05:0f:a2:e3:52:33:0f:7a:b2:87:05:d1:95:91:06:d9:62:
d5:57:06:6b:84:cd:f0:57:d0:bc:43:4d:00:17:b3:de:6d:73:
43:cc:1f:42:4f:7e:6d:e7:68:50:5d:b5:47:11:27:e1:3f:a9:
ea:66:00:86:85:7c:46:d6:4c:3c:cb:26:df:93:1c:46:33:26:
9f:ff:cf:92:ea:da:bf:ca:da:b0:cd:77:b3:6b:64:3e:4f:44:
02:70:26:03:1a:6f:42:7a:1a:ce:92:c0:a1:65:ab:84:07:14:
6b:11:ae:14:b9:64:1e:f9:96:29:9f:ef:d2:aa:73:7d:bd:9d:
07:4b:c1:42:ef:e6:3c:31:63:0a:18:99:89:db:6a:f1:e6:a8:
55:ca:55:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:58:02 2026 by rpki-client