Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
File: nzbQijzYpC9Goslt_XLtjO4nlHc.mft (raw, json)
Hash identifier: bxeM3L5qFlJYUFp9xtWaCc3BNxG5SoXpyONdI+/HJrA=
Subject key identifier: 9B:45:59:55:A3:70:06:B3:90:F9:F5:91:FB:E9:0E:D2:B4:D3:03:A8
Authority key identifier: 9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
Certificate issuer: /CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Certificate serial: 019D3375CFA8FC07A53CE8EE2A71DD212189
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
Manifest number: 0E94
Signing time: Sat 28 Mar 2026 08:00:52 +0000
Manifest this update: Sat 28 Mar 2026 08:00:52 +0000
Manifest next update: Sun 29 Mar 2026 08:00:52 +0000
Files and hashes: 1: 5u7r-95wuuMX-2fZHuvG2UHWlXU.roa (hash: tBKl8/BRqmf50ldsgxKlxVMabmpWuazrAadJJugrD/I=)
2: nzbQijzYpC9Goslt_XLtjO4nlHc.crl (hash: JDsH5jwHsqEC7GfbPXFmCEOaPS+CTFyJdDydZ6Q23Nw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:75:cf:a8:fc:07:a5:3c:e8:ee:2a:71:dd:21:21:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Validity
Not Before: Mar 28 08:00:52 2026 GMT
Not After : Mar 29 08:00:52 2026 GMT
Subject: CN=9b455955a37006b390f9f591fbe90ed2b4d303a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:35:be:af:bb:be:e9:32:4f:56:63:e5:8c:8f:
b8:2d:51:74:e8:61:ec:c6:e4:b6:1a:2a:61:d1:2d:
13:99:24:9b:3a:c3:52:a3:f0:4a:b3:35:67:f1:96:
56:ce:b0:aa:5e:6d:d2:8a:c2:89:e6:33:6b:8c:26:
ed:b9:ea:9f:7a:9b:d9:6b:f9:3b:c0:79:76:3b:15:
13:84:ff:a4:a6:0f:c9:94:4f:5f:b7:5f:b5:a6:19:
83:3b:c7:9f:be:68:a5:40:17:05:2e:b2:2b:9a:7d:
19:56:22:bd:12:8d:7d:48:5e:b5:c9:01:88:66:7d:
a2:04:5c:1b:df:4e:77:49:69:f4:48:3d:a1:83:6d:
af:66:bb:38:55:1a:60:56:fc:38:2f:ae:02:fd:68:
dc:6e:56:79:b8:d8:66:fb:c5:78:fb:52:b1:04:56:
bc:ac:50:41:fc:ae:62:62:c0:6f:e7:bf:0c:23:78:
30:6d:b2:d9:3a:3c:2d:0c:48:6c:14:17:1e:11:f5:
94:6d:2b:16:b4:da:bc:18:c5:0a:7a:ed:e8:49:45:
fb:5c:6e:c2:83:3d:9d:37:12:9f:e2:c4:e8:1c:15:
bf:26:4f:b9:78:66:9a:bf:83:1b:ee:31:3d:13:12:
28:8d:17:eb:40:47:a2:8f:1d:dd:5b:4b:43:38:42:
8d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:45:59:55:A3:70:06:B3:90:F9:F5:91:FB:E9:0E:D2:B4:D3:03:A8
X509v3 Authority Key Identifier:
keyid:9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:a5:d2:a3:a1:a2:f9:ce:4c:a8:56:04:dc:0d:f6:b3:9b:24:
9e:60:3c:10:59:67:1d:ca:2d:cb:2a:ab:50:b7:af:72:70:70:
5b:f1:6e:d4:8b:b8:c2:f4:fc:18:1e:e1:89:09:99:9c:e1:de:
97:47:a0:c1:a3:64:ba:65:05:2a:9a:9a:12:45:b5:98:18:ae:
82:b0:3d:63:1a:ef:82:bc:a3:47:1d:5d:1a:3d:fb:5e:af:a4:
67:64:ac:63:82:36:fe:8a:c7:a9:8c:52:f9:b2:bb:6f:d2:40:
55:15:bc:a4:7d:e4:9c:de:15:27:d9:b9:69:45:29:4d:d7:41:
14:43:fa:ed:59:95:04:39:02:d3:63:ea:80:82:63:e2:26:80:
8b:c8:51:3d:3f:d9:78:0e:18:46:ee:36:e1:32:7e:10:a2:24:
e7:b5:8a:c0:ba:ce:1c:de:50:29:1a:97:b7:49:17:5f:12:33:
46:31:49:c3:69:a8:4e:b4:92:e3:a6:fd:ca:50:76:fe:a8:a1:
fa:08:21:c1:62:8c:61:22:38:6b:c0:b2:87:bb:09:a8:e1:50:
55:fb:0b:92:5e:ae:a7:0b:ef:91:3f:20:55:de:a6:07:26:c2:
5b:01:01:97:df:38:5e:be:5f:0a:58:76:b4:71:67:b7:a6:31:
89:22:a1:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 12:04:49 2026 by rpki-client