Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
File: nHLoTFLlxJCdvHAqodIS1HiHX60.mft (raw, json)
Hash identifier: v5OY17Vs5XYVsZJlKw2ottwHrgjnOsOsB6IRkVGvw+Q=
Subject key identifier: EB:89:EF:9D:12:C8:2E:DE:01:62:E6:23:15:6B:82:B5:36:18:AF:97
Authority key identifier: 9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
Certificate issuer: /CN=9c72e84c52e5c4909dbc702aa1d212d478875fad
Certificate serial: 019D2A3C82772ED78EAC612ABBB8377DED1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
Manifest number: 0873
Signing time: Thu 26 Mar 2026 13:01:41 +0000
Manifest this update: Thu 26 Mar 2026 13:01:41 +0000
Manifest next update: Fri 27 Mar 2026 13:01:41 +0000
Files and hashes: 1: IBlLkWqkaAhFp5QCimnfnCtLSuw.roa (hash: Qqv9tu5JI0ukk1Ce5QgBQxyaYDJ3PAWYDYEJ40iffTc=)
2: nHLoTFLlxJCdvHAqodIS1HiHX60.crl (hash: WSOrHtSONUKzCrVlbADhYKkii0wJzIAcWX1C6W1SH34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 13:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3c:82:77:2e:d7:8e:ac:61:2a:bb:b8:37:7d:ed:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c72e84c52e5c4909dbc702aa1d212d478875fad
Validity
Not Before: Mar 26 13:01:41 2026 GMT
Not After : Mar 27 13:01:41 2026 GMT
Subject: CN=eb89ef9d12c82ede0162e623156b82b53618af97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5e:5c:cb:2c:ea:82:0a:8f:09:c2:91:d1:5b:
9e:01:ce:17:1d:da:49:b1:04:22:8f:26:11:79:ff:
2b:5c:71:b2:5f:08:5a:9a:c7:b0:66:93:56:5b:ac:
30:00:2c:f5:4d:c0:01:81:2c:eb:88:00:e5:b5:b3:
4e:ea:11:e0:ee:f7:22:a2:04:0a:fd:d9:ed:7d:ff:
87:d4:95:8c:c5:d2:53:e9:cb:43:d2:50:71:19:37:
ff:42:0f:78:58:03:48:f1:b8:f4:6e:41:03:6c:a5:
44:ac:35:68:29:18:15:2a:76:45:15:69:48:b4:bd:
de:85:20:81:09:37:b8:80:65:1c:ef:5b:b0:23:a5:
96:fd:ad:8c:b5:b7:57:3a:c2:25:f2:59:cb:40:98:
b0:c7:58:1a:ea:f2:6d:70:e8:a4:fe:2c:09:0a:05:
98:89:44:1f:7c:6d:91:94:61:7c:5a:f7:03:4e:f4:
8e:da:0e:e2:34:c5:31:f4:39:66:03:49:55:1d:d5:
ec:45:ff:34:7e:b8:08:77:cb:09:b2:2f:52:47:ba:
e4:09:c8:52:f0:ab:38:28:f0:f7:41:2b:0d:77:4f:
76:a5:f1:af:6f:61:d1:53:13:d0:90:f1:66:a3:9d:
06:6f:ec:64:a8:f6:f6:93:de:4a:50:c8:5a:d1:1b:
cf:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:89:EF:9D:12:C8:2E:DE:01:62:E6:23:15:6B:82:B5:36:18:AF:97
X509v3 Authority Key Identifier:
keyid:9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:c1:2c:25:e5:96:86:2f:43:e1:fc:7d:11:bc:13:42:1e:8e:
f7:0d:02:05:d7:a8:d3:9c:f8:3b:6e:d3:e6:aa:ee:83:ac:a5:
3b:2e:86:9b:74:c8:53:a7:86:f3:4c:df:38:31:b8:0f:01:54:
ed:56:a2:fa:13:99:07:e0:ed:62:dc:a5:89:f8:ce:cb:9d:92:
f3:f6:65:53:07:cb:47:bc:b4:bf:c1:3c:39:e2:01:01:5a:21:
6f:37:a1:4a:0c:bb:85:83:96:6b:7c:5c:50:da:e8:58:02:c8:
01:2e:4e:c3:bd:48:50:5b:ec:08:34:59:d2:7c:20:0e:ce:38:
9f:bc:44:4e:0f:5f:12:e1:13:83:5c:c7:c3:b6:4e:b5:20:ff:
28:96:bd:da:d5:3b:6a:37:7f:97:fc:a5:b4:d1:8e:a7:3a:a0:
b8:dc:28:1e:fa:51:11:96:90:ef:6e:bd:aa:37:07:ee:82:ea:
a4:b6:b5:a6:7a:52:cb:3c:da:08:14:8b:7a:45:9b:d9:2f:ed:
4b:4d:3f:b1:96:07:31:45:32:97:3f:e6:42:35:4e:91:e6:84:
37:04:11:77:23:c9:9a:f8:e8:4a:81:96:00:ae:1d:fe:83:a5:
ea:00:ee:b6:83:46:72:c1:92:e4:58:76:1c:87:25:cb:78:16:
c2:c8:93:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:04:27 2026 by rpki-client