Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft
File: nSP0y0urXBCAGncGWN-JHPuMaMY.mft (raw, json)
Hash identifier: 8ym+NkTH7cOTKr04GZZa1DWbB0TpEYmzS+e3TxWqFxg=
Subject key identifier: 96:D0:89:A6:F0:7A:8C:4C:01:BB:E9:B9:1E:CC:24:6F:D5:8E:93:51
Authority key identifier: 9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6
Certificate issuer: /CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6
Certificate serial: 019D2772D113879B17340A2FE359C5DA237A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft
Manifest number: 1867
Signing time: Thu 26 Mar 2026 00:02:09 +0000
Manifest this update: Thu 26 Mar 2026 00:02:09 +0000
Manifest next update: Fri 27 Mar 2026 00:02:09 +0000
Files and hashes: 1: 1-CMu0p1qNg0e63aYoj_D4LrDxfY.roa (hash: lOabOtnZlG49slymDCg4DYEF9uaLsHuP8kozmEeWWJk=)
2: NhBesxbcMyD0yBQrL2MrPFZhlpM.roa (hash: doi57fugVWY7hzj7Rlf76Ryk/Bx6TRKhE01hpolLsig=)
3: Vx7x_kcOmv3pHdfN4JeJkZMt0-E.roa (hash: H/ghuncbtOSKrShu1dgfSXsTU1/uj8pKrjpq8yu2Ers=)
4: XPTuMOSHPxC4TQkhQQhMLupKp7g.roa (hash: TDD3hEBL7CPqvnrfrg7l4hY6bRfLkH7/ULGfUjsBzoo=)
5: h4LJjNrzp4fAWVmt9xZ04UKNInQ.roa (hash: hPnSIuqaeCZAtukV9F+5jwRGZESxgM1eDjQaNz+/KSs=)
6: nSP0y0urXBCAGncGWN-JHPuMaMY.crl (hash: ClL5INYh3zLf138qmmZbjN33k94rxwacPsRftKXPak8=)
7: nqfdhUcL9cEhRFGA3epCciCW5S4.roa (hash: IIzxcFRfs7wicO4VvZHLFcN54s0V/nVCkQfttWBnBQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:d1:13:87:9b:17:34:0a:2f:e3:59:c5:da:23:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6
Validity
Not Before: Mar 26 00:02:09 2026 GMT
Not After : Mar 27 00:02:09 2026 GMT
Subject: CN=96d089a6f07a8c4c01bbe9b91ecc246fd58e9351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:74:d2:5f:b2:23:f4:ff:8d:6d:45:9d:0a:16:
b0:20:aa:53:0e:18:b3:c1:b6:26:58:93:50:7c:1a:
55:a1:08:95:25:16:32:4d:20:f3:60:65:8a:0a:2d:
c3:7f:c2:b8:af:bd:9e:84:ac:3d:f1:18:1b:ab:94:
5d:8e:fd:a0:5a:cc:84:60:1b:8d:b8:c9:e4:f2:08:
bf:e4:bf:0c:f4:17:c5:37:c4:ef:7e:eb:7d:75:d3:
fa:eb:e5:a3:9e:0f:00:31:35:e5:db:6f:69:90:b5:
fb:a4:4c:3e:1c:5a:44:b0:99:d3:b6:c0:a7:46:4c:
ec:dd:c5:5f:8b:0c:62:ef:86:42:98:4b:67:c5:72:
3e:06:eb:2b:3a:2a:b3:b5:d9:ee:37:37:30:4d:8d:
f7:3f:d2:66:82:4b:07:70:f4:34:70:ad:fa:0c:79:
01:26:1a:c4:f5:71:44:c7:06:87:b5:19:b5:55:87:
f6:18:ed:81:36:5d:6f:58:25:37:86:a8:1c:20:20:
c3:73:a3:74:fc:5c:2d:57:f1:d4:45:43:3f:ec:3b:
f5:95:a5:d0:5c:b4:ac:43:88:48:16:d9:fa:22:2f:
28:34:1b:06:a6:4c:27:4a:e5:ee:e8:99:77:9a:b1:
d9:28:38:c3:aa:40:0a:90:a3:ea:cd:c9:ce:f5:f3:
a2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D0:89:A6:F0:7A:8C:4C:01:BB:E9:B9:1E:CC:24:6F:D5:8E:93:51
X509v3 Authority Key Identifier:
keyid:9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:c3:f0:82:b2:b2:8c:30:0a:fd:dd:70:f3:f4:a8:96:b9:3c:
d8:a6:7c:aa:10:37:19:f0:60:70:d2:96:b1:03:7f:1c:e6:0d:
ca:51:de:47:a8:8c:b2:29:44:e8:fc:24:e0:75:f5:0b:e8:dd:
da:dd:30:d8:61:00:f8:6c:7d:b0:9d:33:8b:c3:bf:84:f9:16:
8a:21:3b:47:a6:90:fc:ab:b1:84:7e:0e:b7:17:0e:8f:4d:76:
a6:03:c1:17:de:a4:79:d9:d9:83:2f:3a:e0:75:cb:68:71:42:
ab:ba:1d:2f:bc:6a:8e:2c:0d:b6:83:e6:93:f7:a2:1b:4c:8e:
78:e3:f7:23:5f:7f:f8:b9:cc:fb:b7:08:31:25:24:68:f8:b6:
eb:4c:91:c1:ca:43:ec:9c:5d:be:f8:a8:84:81:74:d2:5d:8f:
ac:b0:17:43:b2:57:68:8a:fc:1f:e9:2c:37:10:79:e7:08:04:
28:ec:c4:0b:c6:87:5e:09:fd:80:64:0a:9f:a5:5b:89:10:62:
e7:72:17:fb:27:e6:63:48:d0:fa:b4:60:39:e8:4b:26:83:b2:
49:ee:95:1c:ec:d3:5c:46:62:f3:7d:56:6d:4e:6e:d7:b2:44:
96:b2:e0:64:07:9b:de:3a:7b:e5:cd:0a:e2:5c:31:14:41:74:
48:bd:ca:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:11:15 2026 by rpki-client