Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
File: NZ8eO4BVHpihb8K7y33YfJoO_iU.mft (raw, json)
Hash identifier: 8n/LgzpVP6DNepUfoqN+y6ASX1ArMeu3uClUuLb+8xY=
Subject key identifier: EB:BC:A3:8C:6E:6A:3D:11:F6:6F:01:63:BD:99:9A:54:F7:21:31:74
Authority key identifier: 35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
Certificate issuer: /CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Certificate serial: 019E1DFEB6D6A4FB0F9D5ABAB5C8B6DE2E41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
Manifest number: 1035
Signing time: Tue 12 May 2026 21:01:32 +0000
Manifest this update: Tue 12 May 2026 21:01:32 +0000
Manifest next update: Wed 13 May 2026 21:01:32 +0000
Files and hashes: 1: 1GFF-lq3xv_z5Laz8N8tP9NoFH0.roa (hash: a9i0fGKabjqKLT5yhxSy3PgCaJI26jiufuEnDd1W9OI=)
2: MyTkgN8HXkjrp-kxigqAegjklMQ.roa (hash: pFPPNvby+G9WZLBUBJIB4xiTS6SkjYoIs0G/Wb+5n8s=)
3: NZ8eO4BVHpihb8K7y33YfJoO_iU.crl (hash: 6VL1EViBK/9iRZnsAQCo14KLS8ySbyXgvby4W9YVnL8=)
4: TO6nqQhnOsZjFu2as_fLfCF9jiU.asa (hash: AzlXqDoRzTdGdaGKF/7T/k6tmAW/64eypKY9s/31aeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:b6:d6:a4:fb:0f:9d:5a:ba:b5:c8:b6:de:2e:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Validity
Not Before: May 12 21:01:32 2026 GMT
Not After : May 13 21:01:32 2026 GMT
Subject: CN=ebbca38c6e6a3d11f66f0163bd999a54f7213174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:14:db:52:22:ec:54:a6:fb:1a:32:62:d8:8d:
e2:38:86:15:19:dd:bc:74:a3:38:ca:c8:65:fb:9d:
e0:8a:d5:30:bb:3e:fc:f0:47:fd:a1:5f:08:3f:9e:
fc:1d:8c:20:19:60:e9:6b:19:2d:b7:c5:e6:d4:cf:
07:04:43:7c:b8:cb:ca:41:7d:52:3e:5b:51:a7:8e:
8c:fd:6f:06:c9:90:d7:09:c8:d3:37:cb:a0:b1:2c:
5d:2a:3b:ad:1a:c4:35:e2:2c:70:b5:3a:23:fc:ae:
e0:10:2e:47:2c:23:fd:61:db:ef:ad:b9:9f:61:9d:
92:59:7e:0e:d1:56:96:0c:9b:11:a9:b4:50:a8:0f:
0f:e3:89:ac:9d:6d:a9:cf:7d:72:49:da:e3:e6:d7:
29:8c:3a:ed:28:c1:eb:f2:33:49:8b:18:a7:05:66:
8b:00:f3:47:dd:b0:29:da:9d:64:c5:de:92:45:e5:
b6:89:18:5c:cf:5c:44:2b:40:98:9a:8e:c5:1f:09:
9d:57:59:4c:1b:16:96:08:63:bf:cc:cc:59:38:29:
b9:50:6b:d5:3d:85:c1:0f:f6:df:58:84:99:fd:8b:
7d:15:e8:22:e8:d5:29:b1:09:8a:6c:3b:df:1f:ee:
ff:b7:37:ed:91:e4:7f:bf:29:8e:a7:53:23:55:33:
33:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:BC:A3:8C:6E:6A:3D:11:F6:6F:01:63:BD:99:9A:54:F7:21:31:74
X509v3 Authority Key Identifier:
keyid:35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:94:f7:aa:7d:e5:c8:30:82:e6:ed:08:2f:d1:7a:13:3d:42:
e9:4f:b7:d1:7a:26:e1:2a:31:bb:07:da:b9:f5:c9:ac:46:ac:
18:54:b1:5e:66:14:f6:00:8d:ee:6a:09:3f:35:92:29:b8:04:
00:21:ec:0e:c3:df:f3:23:24:f4:f5:83:b0:54:8a:bb:97:c8:
6b:6d:e9:1f:8d:1c:3e:a3:8b:ba:68:38:23:53:c3:ce:19:85:
b8:30:28:aa:67:19:f4:45:c9:e2:a0:a7:ac:a6:d3:a3:cf:7c:
15:21:16:38:72:88:03:41:6e:d0:b5:92:58:15:75:f5:1f:2b:
d4:fb:51:95:c1:72:98:e5:2d:d3:be:93:d1:94:07:94:39:0d:
18:2a:af:ee:c8:c5:73:91:a7:73:11:01:60:95:29:76:23:e9:
25:a5:1d:da:2b:91:fe:2f:4e:3c:5c:2e:aa:9d:6d:1d:a4:71:
c3:bd:61:99:ea:07:30:3e:47:d4:87:ad:05:50:3a:27:61:96:
30:fc:11:f5:30:9c:ac:fa:be:6f:2e:31:68:33:37:4e:86:af:
11:4b:60:29:6e:6f:06:cb:a8:4d:a8:1b:a3:e8:16:b8:d6:75:
df:b6:fc:8d:bc:51:44:98:ea:76:98:14:6c:f2:bc:4e:b8:e7:
60:ba:69:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:06:16 2026 by rpki-client