Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: q0eGvVAtHzx0iKpgf8gXIHowPIJKXqXwJRmsUriR2vc=
Subject key identifier: 23:8D:42:4C:03:56:A1:AC:A6:BF:41:37:A4:EA:E4:58:9B:0F:8D:56
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 019E205ACBF6D9DF85CAC6EFE4D1AB84B84C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 0B80
Signing time: Wed 13 May 2026 08:01:21 +0000
Manifest this update: Wed 13 May 2026 08:01:21 +0000
Manifest next update: Thu 14 May 2026 08:01:21 +0000
Files and hashes: 1: KggeSoYJuTH0OsCrW287o_IBVIU.roa (hash: 3X9Kd87JdDMTWZvK8kLFjDZVe2SDW7wiUWXk0sGtCM8=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: TlnaUfpMMK+/Y4Q2T2Ba3St0INcIDjxYnvfIfy2WE7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 08:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:cb:f6:d9:df:85:ca:c6:ef:e4:d1:ab:84:b8:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: May 13 08:01:21 2026 GMT
Not After : May 14 08:01:21 2026 GMT
Subject: CN=238d424c0356a1aca6bf4137a4eae4589b0f8d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:05:a5:48:d1:41:21:ef:e2:c4:fb:ae:36:8d:
f6:08:2c:e0:12:e8:48:77:5c:02:de:f1:05:0c:35:
3a:e0:2f:e0:d2:5a:c8:22:70:88:3e:13:1d:8b:fb:
18:a4:c1:ac:ee:51:2f:bb:35:d2:60:f9:52:4f:08:
42:30:bc:88:d3:e2:d8:f8:13:62:ba:10:bd:60:af:
a9:3b:83:1e:1d:f1:9b:05:5d:c5:e3:bb:dd:08:35:
f7:35:e4:92:1d:7f:92:af:3f:12:81:1c:f2:7e:86:
d5:c5:66:5d:59:e1:1b:64:d1:3d:b2:a6:27:33:05:
f3:f4:43:e4:0e:41:3f:f1:b8:f5:54:e2:87:36:d2:
0f:8c:cb:5d:64:c4:86:07:dc:0b:05:12:c7:4b:56:
38:14:49:99:0a:5a:df:3a:ce:92:24:a3:40:d3:1c:
e7:c4:57:cc:31:bc:22:82:e3:7b:0d:1f:ca:ff:86:
f7:04:6b:c2:57:9b:e4:99:9f:9d:d5:a6:12:04:d9:
39:ff:29:e7:e1:44:16:65:72:3e:d6:0e:a0:b0:6e:
7d:d3:d5:62:00:67:2e:2d:d9:24:b6:ca:1f:3f:f5:
64:62:cc:a6:0b:43:e2:73:35:e3:e9:8d:2d:c6:69:
c9:36:50:59:2c:89:c6:f1:73:3c:8f:c3:d1:c6:22:
48:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:8D:42:4C:03:56:A1:AC:A6:BF:41:37:A4:EA:E4:58:9B:0F:8D:56
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:3e:00:e4:ee:81:4e:95:f2:9e:5a:36:6a:7b:a7:f6:d2:48:
a1:45:b4:6b:4d:9a:2a:60:59:9e:ec:96:64:54:0d:48:a0:91:
d5:bb:74:3f:b9:80:b7:68:c8:74:58:2d:40:e2:fb:7e:6a:f4:
2d:5b:48:92:c5:eb:2e:ed:94:0f:73:2c:0a:03:29:19:b2:c8:
a0:10:95:f9:03:c6:92:62:1b:eb:e7:28:b0:26:ce:ca:11:1d:
4d:b7:23:3b:3b:c9:78:58:8d:b5:ec:e4:d4:51:7b:65:11:91:
b8:86:fc:d1:98:a1:a2:b1:ed:25:aa:b5:04:93:6b:e3:6b:c8:
b2:c5:bc:f5:e5:d2:58:7d:db:09:bb:00:e6:37:f1:23:20:ec:
45:52:8f:de:f7:54:79:ec:b0:e8:66:2d:99:c7:f3:83:11:8b:
93:2d:d9:26:37:09:4f:e6:4c:1d:41:59:77:42:3d:6f:c8:be:
65:c3:fb:73:69:d7:af:28:0f:f7:26:10:56:31:17:c3:f6:a4:
37:d1:a1:2b:df:6d:56:b4:3d:c6:42:2f:58:71:a6:49:f6:f4:
49:9b:aa:df:4b:4f:64:6a:3b:4f:99:1d:b2:76:ba:cc:92:4f:
81:fa:94:b0:c3:68:f1:a6:9c:cc:d9:38:f4:11:8d:46:e1:82:
a4:03:d6:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:02:22 2026 by rpki-client