Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
File: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft (raw, json)
Hash identifier: FVrnbdmFgqlIJVivCY/qH6PoQiqT7jeOdGaJ8lxju/I=
Subject key identifier: CF:FC:28:0B:1D:AE:A0:AD:44:05:88:D6:1A:E5:F2:56:10:CF:3B:36
Authority key identifier: 9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39
Certificate issuer: /CN=9e74135bb07c6540cd307bda08ca0674bc84c939
Certificate serial: 019E1D9007FB6BDE7AD04FE7B99A85B3C48F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
Manifest number: 1909
Signing time: Tue 12 May 2026 19:00:38 +0000
Manifest this update: Tue 12 May 2026 19:00:38 +0000
Manifest next update: Wed 13 May 2026 19:00:38 +0000
Files and hashes: 1: Cu4pJx-r5WHHtQlLqPIl7Qbn6a8.roa (hash: nvdmwUw2DJYlyGm2Jpi5RTC+E3z4Xl1tYxTpqZlijT8=)
2: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl (hash: JATPnlHDkKFANnOqD0eMuzDpRM1+RLb5SDdCqRPxXWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:07:fb:6b:de:7a:d0:4f:e7:b9:9a:85:b3:c4:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e74135bb07c6540cd307bda08ca0674bc84c939
Validity
Not Before: May 12 19:00:38 2026 GMT
Not After : May 13 19:00:38 2026 GMT
Subject: CN=cffc280b1daea0ad440588d61ae5f25610cf3b36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2d:ba:19:fb:94:a3:91:f8:92:c4:b1:98:de:
c5:92:4e:52:e7:f1:a8:b9:09:39:29:27:83:81:88:
be:ba:47:1f:69:ff:16:6f:11:24:8d:f0:66:42:d1:
39:1e:fa:af:33:7f:26:07:e1:20:f7:0f:df:51:fd:
3e:6e:b6:d6:82:a8:89:b2:d1:49:d4:26:fe:6e:3c:
83:ec:54:a0:8d:1d:24:54:74:60:8e:4a:9c:bc:ce:
5d:7d:2c:cc:a3:c5:f5:05:87:f1:f3:24:3f:f2:f3:
02:63:a7:d2:24:09:d4:af:0e:1c:3a:48:95:22:d8:
83:80:33:15:01:b5:43:37:46:e2:15:e0:48:28:60:
39:95:2f:8a:42:f8:89:0b:46:d4:e4:96:cc:f6:0b:
c2:d3:4d:b2:32:45:11:4a:b2:b0:ab:44:dd:76:31:
47:c8:b9:5f:4e:31:e3:ed:67:97:2c:65:83:78:52:
c2:51:d9:68:d8:8b:86:e5:35:d6:fd:c6:bc:d3:02:
6d:d2:49:e5:ab:56:76:9d:01:32:18:23:87:a2:e6:
82:c9:75:47:ce:01:c1:76:e5:d4:0b:73:00:3c:70:
a9:f1:ac:f6:31:54:e2:6a:93:66:69:c8:24:d0:44:
64:57:32:6a:47:cc:ec:10:20:a8:1f:c5:f7:63:fb:
4c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:FC:28:0B:1D:AE:A0:AD:44:05:88:D6:1A:E5:F2:56:10:CF:3B:36
X509v3 Authority Key Identifier:
keyid:9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:1b:c2:fc:b7:66:6b:a5:e2:b9:a5:cd:60:c9:fc:c3:4e:1e:
0e:f1:66:16:71:d0:6f:2c:af:23:5d:41:13:81:dc:53:d5:72:
f8:03:f9:77:9c:90:1c:7d:ae:b4:cf:b2:82:1a:1a:d6:5c:18:
b1:44:04:9b:b9:d0:9e:bb:a9:61:d4:9a:e6:67:dc:7a:35:d3:
56:19:db:05:b6:41:94:3e:d6:8d:58:f6:6d:60:11:71:98:45:
c4:ce:47:b8:b8:18:7e:ec:fa:67:4a:bb:75:1e:d4:41:b7:e2:
4c:e0:62:95:4b:2d:89:d0:cf:b1:8b:7a:7b:9c:00:3e:94:76:
60:1e:dd:e8:1e:b2:ad:72:3c:d0:8e:8c:89:7f:92:e8:c6:84:
da:91:da:80:0b:15:b9:05:61:f6:88:29:aa:60:fa:c0:6c:8e:
aa:5a:34:1d:68:56:47:de:ba:99:a0:ed:1b:7e:21:6a:ee:ef:
0d:31:4e:79:4e:9d:e0:7f:ca:bb:10:25:35:5f:5f:3d:ac:fc:
37:98:d7:51:73:22:ff:0d:fa:04:81:da:26:82:e5:a0:a8:20:
50:82:e3:8e:d4:8a:79:40:8d:e7:7e:17:91:7b:76:ef:de:64:
f6:91:ec:40:9a:b9:5d:c5:7c:83:25:46:39:9f:2f:29:02:d1:
b2:dc:72:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:31:08 2026 by rpki-client