Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
File: NZ8eO4BVHpihb8K7y33YfJoO_iU.mft (raw, json)
Hash identifier: g15TzD3Ej9NgiOag0orvW7jpLIJiEvv6QQF0C2qqZmc=
Subject key identifier: D9:18:12:67:DC:C3:98:BE:6D:A2:7D:74:61:D4:DD:12:34:E5:67:B1
Authority key identifier: 35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
Certificate issuer: /CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Certificate serial: 019D24DEEDA487326B98A661A3E6340AD7DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
Manifest number: 0FB4
Signing time: Wed 25 Mar 2026 12:01:22 +0000
Manifest this update: Wed 25 Mar 2026 12:01:22 +0000
Manifest next update: Thu 26 Mar 2026 12:01:22 +0000
Files and hashes: 1: 1GFF-lq3xv_z5Laz8N8tP9NoFH0.roa (hash: a9i0fGKabjqKLT5yhxSy3PgCaJI26jiufuEnDd1W9OI=)
2: MyTkgN8HXkjrp-kxigqAegjklMQ.roa (hash: pFPPNvby+G9WZLBUBJIB4xiTS6SkjYoIs0G/Wb+5n8s=)
3: NZ8eO4BVHpihb8K7y33YfJoO_iU.crl (hash: /2m50WCoxFM4hFfp4IZWqigrJfkSzjgzHq4GAgwf3Fw=)
4: TO6nqQhnOsZjFu2as_fLfCF9jiU.asa (hash: AzlXqDoRzTdGdaGKF/7T/k6tmAW/64eypKY9s/31aeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 12:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:de:ed:a4:87:32:6b:98:a6:61:a3:e6:34:0a:d7:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Validity
Not Before: Mar 25 12:01:22 2026 GMT
Not After : Mar 26 12:01:22 2026 GMT
Subject: CN=d9181267dcc398be6da27d7461d4dd1234e567b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2a:9d:dc:20:92:82:45:58:a0:95:cc:a3:07:
19:1e:c9:95:31:47:dc:55:d5:03:b7:21:11:ab:2c:
ee:4d:ef:75:c3:52:21:8f:3d:07:ae:8d:c8:ef:de:
24:19:51:a7:e8:7e:c1:1a:35:59:29:c7:ae:28:7e:
5a:c8:4d:85:44:4c:82:8d:64:81:ea:1e:11:5e:9c:
20:d4:1b:98:57:9b:a5:c2:11:66:79:b1:ae:d7:ae:
e3:a2:20:42:35:cf:ac:db:d4:39:4a:05:30:04:34:
76:4f:76:83:c3:b2:02:e4:5b:a1:da:ce:17:9e:e8:
6f:11:17:f5:0c:b3:76:eb:c8:c5:89:b9:84:1f:88:
71:5d:41:7b:22:9b:47:1a:ef:e4:00:78:6d:64:8f:
a5:89:7f:ff:0c:ba:93:d5:e5:95:c5:8d:77:56:80:
06:39:89:65:2a:ef:aa:e1:1b:2c:22:46:a5:ad:24:
8a:07:3d:7a:d0:b9:64:af:cf:c9:d7:58:83:6e:8f:
57:7e:bc:eb:0f:c7:ca:5a:52:9c:23:b5:f8:1e:bb:
83:a6:67:2f:8d:1c:e4:de:e1:14:bd:91:cc:39:b9:
0f:86:aa:d3:3a:b6:b1:e3:82:25:c3:69:7e:b3:66:
10:12:81:aa:07:57:01:a7:68:64:ce:4a:01:17:ff:
d9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:18:12:67:DC:C3:98:BE:6D:A2:7D:74:61:D4:DD:12:34:E5:67:B1
X509v3 Authority Key Identifier:
keyid:35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:66:ff:7a:9c:f2:3d:93:a7:6a:bd:e4:ed:c9:d3:09:5a:f6:
64:52:aa:27:2a:d2:e7:5a:a5:42:4b:0f:59:04:89:87:73:b2:
18:cf:08:ad:de:eb:69:17:98:c6:16:d6:89:60:d6:c6:77:7a:
00:9c:3e:a2:71:6f:c2:22:3d:9a:cc:f0:e6:b5:e4:fb:ee:3d:
7a:ae:15:b0:5d:73:7e:f7:37:a8:5f:f9:bf:10:1d:fd:98:87:
21:5d:77:9d:12:c7:1e:ec:2e:a1:72:a3:3c:ee:ab:fe:5e:70:
6c:56:ed:97:02:35:1f:f2:58:5e:e6:e6:9a:7a:27:56:89:8d:
b7:75:63:75:41:64:46:05:7f:b9:71:e8:14:58:85:06:e1:95:
e1:6d:44:e6:0f:9c:19:34:49:03:be:90:da:7f:2a:59:88:ad:
59:8d:23:f7:1e:bc:d9:39:6f:e1:4e:8b:68:b2:d6:85:0d:ce:
f3:2e:a8:b6:07:8c:e4:53:9e:23:76:71:1e:5e:ae:0a:db:a0:
5a:6f:b9:a3:2a:a3:b6:2f:f1:3b:c4:5a:a4:2e:92:b0:0d:3e:
00:a1:d2:bf:0d:69:a5:d5:70:65:4c:89:20:28:19:38:bf:d9:
5e:af:37:6f:9c:7f:a1:6b:6b:d5:f7:5f:e0:b3:11:71:dc:63:
76:40:94:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 22:40:46 2026 by rpki-client