Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
File: n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft (raw, json)
Hash identifier: H6T9xgn0vtkNbJmUzOUOhG1OFfIp5XYEqMu8U4JsXKI=
Subject key identifier: A0:B9:BA:72:03:8E:00:1E:1B:33:96:6A:D2:40:1F:59:13:EA:40:6E
Authority key identifier: 9F:8A:3C:9A:9E:DF:64:47:35:A9:4E:B0:9F:01:CA:B3:98:55:D2:78
Certificate issuer: /CN=9f8a3c9a9edf644735a94eb09f01cab39855d278
Certificate serial: 019D29CE6DFEA014C71980F275B096114577
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
Manifest number: 0CF5
Signing time: Thu 26 Mar 2026 11:01:27 +0000
Manifest this update: Thu 26 Mar 2026 11:01:27 +0000
Manifest next update: Fri 27 Mar 2026 11:01:27 +0000
Files and hashes: 1: 3YrPqOPm2HTyKR3X-5RSXy5Hk4U.roa (hash: 5vGo/rzHCgJgztw1UHKfY47yWsIJL5OxKuVDeP97MLA=)
2: n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl (hash: M9eYYo7Xw5Q2BNU+B3tWS4HMjsr2rLNt4C+v0ZiG2zA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:6d:fe:a0:14:c7:19:80:f2:75:b0:96:11:45:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f8a3c9a9edf644735a94eb09f01cab39855d278
Validity
Not Before: Mar 26 11:01:27 2026 GMT
Not After : Mar 27 11:01:27 2026 GMT
Subject: CN=a0b9ba72038e001e1b33966ad2401f5913ea406e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a9:e0:5a:5c:78:e9:4d:c0:59:dc:3f:0b:83:
a7:d2:45:1f:d5:62:c3:3d:0c:1c:41:3d:e5:2d:29:
9f:46:33:c4:cc:01:18:5a:cf:3d:1c:a9:a1:47:86:
1c:58:08:47:2c:4a:6e:97:74:4f:4e:21:6e:8f:f0:
cf:ca:8f:e9:72:0b:83:1a:02:d4:90:50:1e:95:67:
4c:fd:1e:4c:be:2e:d3:04:85:00:03:b0:d2:74:4f:
90:7e:3d:02:b5:fa:d8:0a:c9:72:1c:d0:2f:0c:be:
d0:41:f5:78:cf:7c:e4:c8:c5:55:32:12:3c:62:1e:
25:09:e3:75:bf:69:7f:94:fe:c1:22:6b:fa:5f:c2:
6b:36:de:cd:29:b7:60:8a:c6:6a:44:7b:f2:76:64:
34:70:da:96:90:8f:9d:c6:47:6a:ef:1c:87:83:40:
cf:fa:7b:10:be:99:cf:cd:7e:63:da:73:b5:c0:61:
6c:9b:9c:e1:9f:44:c3:cc:81:8d:08:1b:da:9e:9b:
d0:d6:0b:1c:9d:de:9c:2d:6f:e6:21:6b:eb:ed:c5:
47:fe:cd:1e:08:7c:be:36:ea:5e:a6:15:e4:01:a0:
42:a6:97:5a:75:50:d0:67:e4:42:76:36:1b:5a:12:
5d:d1:60:da:9d:b3:78:99:e6:56:cc:fc:07:5c:b3:
fb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B9:BA:72:03:8E:00:1E:1B:33:96:6A:D2:40:1F:59:13:EA:40:6E
X509v3 Authority Key Identifier:
keyid:9F:8A:3C:9A:9E:DF:64:47:35:A9:4E:B0:9F:01:CA:B3:98:55:D2:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:bc:6a:66:5e:09:cb:35:aa:7a:7f:c7:78:a8:94:eb:e6:85:
5f:eb:85:3f:2e:70:ef:c6:17:78:e9:d9:d7:53:37:f8:6a:1e:
e7:ad:58:c4:a3:8d:0e:0e:10:bc:f7:f1:9e:f6:5c:09:5b:84:
2a:15:9e:45:94:0b:b6:c4:2a:38:68:04:92:c2:fb:a0:7f:4b:
9d:df:26:44:1a:5c:d5:dc:fc:e3:ad:fe:0f:98:b8:b5:93:67:
a1:43:a1:a9:b8:dc:c7:ae:34:0e:27:ca:6d:38:a0:4a:1a:06:
30:ca:96:1f:7d:b3:aa:35:22:c7:fe:3b:c1:a8:c3:2e:8c:ec:
d6:17:d4:10:4a:4f:d6:66:98:c4:39:71:b1:d2:38:7b:dd:c2:
1a:b7:1b:37:8e:e4:f5:9e:34:e4:0f:b8:79:a7:20:bd:a8:6c:
17:23:cf:a3:92:f4:c7:fb:61:b4:fb:17:5e:a2:bb:45:a1:fa:
2e:d4:c1:9f:90:27:7a:1e:6a:74:8f:59:db:c7:7a:b5:4a:00:
a2:6b:79:e5:a9:a6:54:ec:b4:32:78:39:04:c1:29:be:66:fb:
15:21:65:54:24:64:19:93:e6:4c:ea:bd:e2:f0:fc:d7:5d:04:
f2:4a:53:cd:ac:55:f3:67:74:4b:f5:da:06:cc:0e:c9:c0:93:
33:40:e2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:08:40 2026 by rpki-client