Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
File: nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft (raw, json)
Hash identifier: AtcjRV5n8i4yneARown4DGVed/wHrXannV5RkC8C9rI=
Subject key identifier: 13:B3:23:6F:A7:BB:B9:23:19:FA:B8:71:52:12:1C:1F:CB:7D:6F:C2
Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Certificate serial: 019D265F712D8AC58446093B67273A47AA2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
Manifest number: 1888
Signing time: Wed 25 Mar 2026 19:01:22 +0000
Manifest this update: Wed 25 Mar 2026 19:01:22 +0000
Manifest next update: Thu 26 Mar 2026 19:01:22 +0000
Files and hashes: 1: nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl (hash: 9cVmB3PFzEzU3g15n1PsYCZEequlT0xpCW4iys0+7NQ=)
2: yE7elJQcwCE2lQSAbWletTxQ5Qo.roa (hash: tKAft8gW1YvZxBPlZ5+27HK7UOl/JK2+eMjDk7cQl10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:71:2d:8a:c5:84:46:09:3b:67:27:3a:47:aa:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Validity
Not Before: Mar 25 19:01:22 2026 GMT
Not After : Mar 26 19:01:22 2026 GMT
Subject: CN=13b3236fa7bbb92319fab87152121c1fcb7d6fc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:19:58:fb:98:a2:2c:52:12:b5:70:27:e0:72:
df:f9:52:8b:83:24:90:a1:d3:06:d9:04:f4:03:ee:
73:c2:37:19:a5:d3:ca:07:11:19:6f:2d:1c:e8:6d:
f3:82:c7:60:71:d6:60:42:ec:86:e1:3d:46:a3:1b:
00:88:5d:8b:d9:00:99:56:12:94:83:96:51:10:89:
63:52:fa:45:f9:8d:67:48:d5:09:23:ce:70:d7:62:
8c:ab:05:41:64:cb:1d:67:21:0a:8e:c4:63:4b:bf:
6b:fd:4c:68:2c:12:14:49:21:a8:41:4a:18:dd:53:
b2:d3:0e:de:aa:7d:a9:6f:9b:f9:36:b8:49:af:1c:
6f:1f:7d:1f:5d:67:f5:73:23:fb:1d:1c:11:d6:0e:
7d:ae:96:c5:8c:b5:31:3f:35:34:ca:60:28:e9:a7:
dc:16:be:09:e8:60:e8:ad:33:70:23:bb:66:eb:51:
22:3f:84:10:da:93:a7:a6:68:e7:30:14:0a:f0:6e:
90:2c:4e:17:67:da:9b:c3:3c:9e:9e:ea:a8:c7:0f:
cc:9c:42:1a:9f:f1:3e:b3:46:12:e2:15:07:c7:f1:
93:28:4b:47:d5:9b:a3:6f:eb:23:ed:9f:18:c1:fa:
41:27:ad:58:c7:b7:b4:18:22:3c:7f:0c:35:c5:2e:
ff:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:B3:23:6F:A7:BB:B9:23:19:FA:B8:71:52:12:1C:1F:CB:7D:6F:C2
X509v3 Authority Key Identifier:
keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:5b:a8:7a:6c:43:93:49:d1:10:a3:2d:19:bf:30:d9:88:ad:
86:c0:24:09:86:9f:7c:5b:3d:03:1a:da:0a:0f:6b:8a:f0:24:
55:1e:9c:fd:66:b0:47:ca:cb:4d:62:2f:60:e0:fd:e9:73:21:
bc:5f:a5:f0:6b:e4:65:e2:c0:77:f0:00:df:3d:2e:67:6e:55:
54:69:59:ee:4e:c6:dc:80:1c:31:f6:24:b6:01:ee:31:6a:65:
2d:5a:29:c4:fb:2c:23:83:ad:5e:ec:06:12:a5:fd:13:4d:e4:
ff:c1:86:3c:a4:1f:6b:3b:c4:c2:8f:04:a2:45:20:d9:a0:13:
bf:c7:4b:d4:56:d6:63:0f:69:90:3a:47:3a:72:98:2b:a4:0c:
76:48:df:99:48:7b:ff:06:02:33:58:f4:65:a3:30:74:71:73:
61:8f:32:02:7e:ff:91:9c:0d:2f:dc:1c:0b:72:85:f0:46:13:
b0:1d:fd:1f:8b:09:ed:c0:25:43:d8:ff:7e:ca:15:9b:b7:41:
8c:74:41:d0:8c:2c:4a:49:98:05:c4:92:5e:77:67:3b:1b:8d:
31:c9:8a:97:c4:95:c5:71:3c:16:a0:8a:d6:be:18:4f:a4:fb:
41:8b:1e:db:0c:56:29:fb:f9:38:24:0d:8d:66:3d:91:cd:76:
ce:39:8b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:04:29 2026 by rpki-client