Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json)
Hash identifier: O9jrch02VRPPryTsdUgmcpjgixSols53ItDoAyc3JJc=
Subject key identifier: AE:11:8D:FC:B3:73:A4:6F:8C:86:BE:C7:1D:DC:C2:B7:E3:0B:69:05
Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Certificate serial: 019D2583A458AABFA9EED15D97F60C651330
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
Manifest number: 08D2
Signing time: Wed 25 Mar 2026 15:01:17 +0000
Manifest this update: Wed 25 Mar 2026 15:01:17 +0000
Manifest next update: Thu 26 Mar 2026 15:01:17 +0000
Files and hashes: 1: AoPgCevjaet1nmHheuN6SeeL1kc.roa (hash: 6xkXeVfyM+lok9O6WIPuoQpZtpps9f90d+FFQVcYVr4=)
2: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: 9hgxBQG3dYeWZRD8lFQ9a07s5+XI5tGxEruwqJYEnxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:a4:58:aa:bf:a9:ee:d1:5d:97:f6:0c:65:13:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Validity
Not Before: Mar 25 15:01:17 2026 GMT
Not After : Mar 26 15:01:17 2026 GMT
Subject: CN=ae118dfcb373a46f8c86bec71ddcc2b7e30b6905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:dd:29:7b:02:11:ca:d1:16:c8:36:50:82:67:
71:86:1d:9d:cd:88:4a:fb:f9:9b:4c:17:9b:62:f8:
a3:0f:42:2c:26:f1:ff:27:44:c2:f4:5c:1a:90:90:
fb:a4:4f:d3:ae:d6:f4:4d:e5:3c:23:de:14:05:3c:
f4:22:03:7c:ee:a1:24:c0:35:a9:6a:87:b6:87:ea:
f0:3b:62:ec:7e:34:1a:64:df:0c:68:aa:81:e3:e2:
32:0b:94:6c:51:1f:86:76:09:da:67:b3:a4:50:06:
89:a4:b7:13:f6:56:7f:ea:24:a2:3d:16:17:e7:15:
40:78:0d:66:0a:b0:25:db:60:73:d0:28:55:32:88:
ec:d9:4a:23:ac:ec:7b:c9:43:38:ef:07:d1:d2:98:
6c:47:9b:bf:50:c1:33:92:bc:c0:bb:92:bc:67:67:
be:55:05:61:33:27:ef:bc:de:24:4e:45:e0:90:18:
9e:90:9f:50:b4:97:7d:8f:40:74:6e:07:da:19:69:
5f:8b:ff:b9:61:dd:ea:f7:63:c9:00:e4:0b:16:42:
77:99:26:5c:41:a6:d7:0c:74:4b:b5:7e:09:97:a8:
73:6f:4a:a3:34:34:b1:88:38:6a:59:44:e3:fe:7d:
21:b2:e8:c9:56:a7:a9:49:96:c1:57:61:01:c4:b1:
f6:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:11:8D:FC:B3:73:A4:6F:8C:86:BE:C7:1D:DC:C2:B7:E3:0B:69:05
X509v3 Authority Key Identifier:
keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:8b:47:10:71:19:19:3b:33:8f:f2:c6:f4:b0:bf:5b:dd:3f:
93:14:81:33:2d:c0:f7:0d:38:bf:7c:88:cf:a3:9d:53:de:b1:
da:18:a0:5a:71:d6:39:8e:67:95:cd:af:a5:20:8c:cb:d0:60:
21:cd:c9:a2:0d:1a:ec:54:c0:be:8e:70:68:a1:12:4e:c8:4c:
f5:7f:a4:3a:11:d5:bf:0d:88:ca:f5:3e:22:a5:16:21:b2:9a:
22:7a:5b:3d:47:a5:6e:a7:49:11:b1:3b:41:34:0a:8e:6b:8d:
eb:48:1c:a4:bd:73:31:0f:e9:30:b4:f6:8d:0c:f8:ee:28:f1:
c2:ee:72:40:dd:ca:09:c4:36:7d:9f:26:dd:7f:44:06:2f:96:
3e:ae:ce:6e:a7:92:a4:a6:11:26:95:4a:39:4b:32:d6:c3:68:
69:a5:0c:69:c4:ea:90:6b:6e:3a:6d:b6:a7:08:24:25:8c:3a:
99:ae:9e:a5:06:0f:08:48:1f:53:6c:e7:d6:10:f6:ce:5b:f6:
aa:a1:d5:47:9d:c8:64:53:0d:8d:65:07:29:62:2a:cf:f2:64:
b0:f5:d6:dd:b1:ad:16:06:04:1f:b3:5c:f4:37:00:38:c3:df:
4a:59:b1:35:e6:f2:c9:54:bc:47:2e:1b:7b:46:37:de:f6:48:
31:7d:77:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:14:21 2026 by rpki-client