Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
File: nSh1M866BkWhSM8QyMJ-qachoJ0.mft (raw, json)
Hash identifier: 7EdkA8EHQNOQFj5qLPGbi83e8SYZph7q9rw8XsXzyvs=
Subject key identifier: 54:4A:88:A8:10:71:5A:3E:69:EA:B5:75:22:18:F0:05:F2:9A:65:91
Authority key identifier: 9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
Certificate issuer: /CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Certificate serial: 019D265F43B923A60BDF04D6FAD23BF6FD81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
Manifest number: 1885
Signing time: Wed 25 Mar 2026 19:01:10 +0000
Manifest this update: Wed 25 Mar 2026 19:01:10 +0000
Manifest next update: Thu 26 Mar 2026 19:01:10 +0000
Files and hashes: 1: 54EH0AkM2oIGqv7eAmOmOB-xeho.roa (hash: NM/JAZ4ZRze3goIGV4nxJHsbs+egnPq8XUH12SQCKoo=)
2: dqQcATTiVDcYhuyOfiuaEN-dzH0.roa (hash: vdWyxZWoqaf18qoRAgHeLHy8Ubdk/kl3p3xQIpz4Who=)
3: nSh1M866BkWhSM8QyMJ-qachoJ0.crl (hash: 8CkMPdET4rTI8EBgPdB7mFq4zzEeXt6US5OfDqrxBjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:43:b9:23:a6:0b:df:04:d6:fa:d2:3b:f6:fd:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Validity
Not Before: Mar 25 19:01:10 2026 GMT
Not After : Mar 26 19:01:10 2026 GMT
Subject: CN=544a88a810715a3e69eab5752218f005f29a6591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:38:dd:c3:e0:47:4c:20:97:46:e4:07:81:c9:
f9:b6:ed:a1:2d:45:d6:f5:32:d2:4b:84:0c:9c:ef:
25:64:44:da:28:56:a2:3e:30:33:db:c3:44:fe:3a:
00:ae:fe:47:db:51:f5:1f:8d:a6:ae:b5:ff:4d:53:
73:2e:06:fd:24:34:ec:b6:7a:2d:b5:ba:47:03:8a:
af:57:c6:5b:ca:87:3f:05:91:72:43:1d:b8:6b:ae:
2a:2a:4d:a8:bb:a9:cc:0a:65:f8:83:1e:f6:4b:23:
39:60:b1:68:72:f5:8d:b5:e9:4b:6a:78:1c:db:8e:
8f:bd:35:f7:3f:4b:c7:fa:ec:fd:34:bf:77:e7:85:
3e:20:c9:e8:c6:d3:f1:d5:96:5f:88:e0:e5:4e:f4:
2e:10:90:08:23:70:b8:ac:06:e8:8f:39:69:59:40:
86:23:e0:1e:f0:cc:35:d1:42:0b:c2:3a:92:19:3f:
54:89:df:c8:05:9e:68:bb:da:3a:1f:ba:ce:99:69:
ec:6a:e9:87:19:e9:72:a3:6d:e4:12:6d:36:7a:85:
29:fc:1d:b6:5c:0e:2f:88:2d:b7:4f:66:4f:f1:57:
85:f9:d1:2c:9d:30:5a:a5:0c:29:56:44:3e:35:23:
33:15:48:80:76:ba:96:b3:2b:1f:73:38:93:5a:d8:
68:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:4A:88:A8:10:71:5A:3E:69:EA:B5:75:22:18:F0:05:F2:9A:65:91
X509v3 Authority Key Identifier:
keyid:9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:60:c2:4a:4a:ca:f2:e6:35:90:28:75:3c:ab:90:64:db:83:
a4:24:69:c5:9d:99:df:54:a3:a5:a5:3f:1d:e9:eb:9d:7a:6c:
d3:c1:88:37:10:cc:b5:2e:3e:c4:6d:b1:bb:b3:c6:29:48:d9:
77:bc:cb:55:a9:29:76:80:c1:fb:74:7a:a8:b3:93:16:2e:12:
82:ed:42:6c:27:67:6b:d3:07:fa:5f:66:e7:4c:2d:fb:d7:ee:
df:fe:19:85:14:ca:cc:6a:38:db:d0:b8:62:ad:94:b1:d9:2f:
cf:5e:31:fc:40:00:86:b8:bc:75:03:7f:aa:10:a9:2b:03:f1:
13:45:2c:53:21:97:30:e6:70:81:90:d5:d1:fc:2a:77:19:2f:
0c:14:46:ea:71:c4:4d:12:7c:2b:c3:8b:8f:b5:82:ca:39:4e:
26:77:6e:d3:4e:d8:7d:7a:ec:ed:d3:0e:a6:a5:09:0e:e2:e5:
2d:3a:95:6d:23:68:4e:44:f2:71:53:e2:ef:9d:9f:fa:ab:10:
ce:bb:0e:8f:74:85:26:9b:08:ed:b3:81:79:05:71:a3:96:15:
8b:f4:bb:04:ad:be:e6:43:2a:ad:93:8b:95:05:a6:54:fc:0f:
9e:a1:bc:4d:ae:ec:08:f1:f3:9a:48:d3:83:19:dc:73:44:68:
4c:3e:df:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:21:56 2026 by rpki-client