Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
File: nY85NIPUicQp_Biwk0LXbQr-QkQ.mft (raw, json)
Hash identifier: 388DTPxBkk3s2J45vpqXYxC7o+3tJyg9o6ffB+jJiUU=
Subject key identifier: 00:37:38:19:97:80:68:70:1D:43:E8:DB:D1:D9:A8:52:F2:21:B1:8B
Authority key identifier: 9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
Certificate issuer: /CN=9d8f393483d489c429fc18b09342d76d0afe4244
Certificate serial: 019D2997115C481DE346D2B23BF717020F96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
Manifest number: 1471
Signing time: Thu 26 Mar 2026 10:00:59 +0000
Manifest this update: Thu 26 Mar 2026 10:00:59 +0000
Manifest next update: Fri 27 Mar 2026 10:00:59 +0000
Files and hashes: 1: PnOOh7fnmZFCfeOa_wMzgqjdxqA.roa (hash: ggogQletXZT21dYbTRV1SNWHwV2S6gHYiktJ4MjCyQI=)
2: nY85NIPUicQp_Biwk0LXbQr-QkQ.crl (hash: DW3hrFQU5QYj7fJNtJrq8QZ5gsKg5jQawMUE01MNGoA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:11:5c:48:1d:e3:46:d2:b2:3b:f7:17:02:0f:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8f393483d489c429fc18b09342d76d0afe4244
Validity
Not Before: Mar 26 10:00:59 2026 GMT
Not After : Mar 27 10:00:59 2026 GMT
Subject: CN=00373819978068701d43e8dbd1d9a852f221b18b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b0:1e:7f:0c:05:6a:9d:ff:a6:2d:14:a6:41:
75:f0:f8:06:75:fb:45:4a:d5:4a:f3:d3:45:26:a1:
dc:4b:cc:04:be:bf:f5:f4:a2:d7:e1:c7:84:36:29:
d6:27:df:2d:ea:c6:7f:d2:2a:a9:7a:9a:2f:88:0b:
70:0f:13:04:b3:aa:c3:69:60:d3:8e:a7:cf:1c:19:
cc:71:e6:cf:15:84:f2:c8:d1:e3:ad:1b:15:cc:ea:
18:1c:b4:83:8f:0d:60:11:53:38:1e:74:a6:fb:5c:
72:24:02:4c:a1:69:6f:3d:81:53:97:e7:e8:b6:8e:
8d:ed:0c:88:c2:80:76:89:48:d2:c1:1e:9c:b3:39:
be:47:51:bb:57:cf:c1:d6:de:c6:de:10:55:a5:e8:
6a:64:6d:ba:ed:61:34:75:f4:fb:58:a9:0b:21:db:
7d:52:44:85:a8:30:c1:a6:91:a9:d3:81:7c:6a:18:
d6:64:f1:98:f9:8e:10:8c:bf:67:78:f5:b3:03:6e:
55:63:75:9e:82:fe:0f:c2:f6:dd:c4:9e:21:39:ca:
04:26:17:d9:d4:db:83:8d:88:9f:ba:64:fc:72:9a:
b6:5d:f7:2f:22:ba:0b:f1:b0:6b:09:50:b0:1f:55:
44:7d:cf:af:d3:c5:d1:ed:9d:46:28:20:29:be:9c:
3e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:37:38:19:97:80:68:70:1D:43:E8:DB:D1:D9:A8:52:F2:21:B1:8B
X509v3 Authority Key Identifier:
keyid:9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:eb:0b:5e:3d:54:c7:45:9e:b9:43:fe:5c:6d:50:18:ca:21:
d7:16:e7:0a:ab:94:c3:5f:d1:0e:f3:8a:90:e0:83:f8:bb:28:
c6:d7:89:02:af:62:94:ce:1d:25:38:ca:09:95:53:26:d0:46:
4b:2c:e6:d8:64:03:1b:76:8c:98:bc:96:a6:8f:29:34:ad:81:
e9:96:65:57:dc:2b:fc:13:50:34:c2:02:01:3a:de:b2:b9:7a:
a6:bd:a7:8b:16:9a:1c:25:97:8e:28:f9:a4:23:a4:82:28:dc:
80:ce:55:6c:99:c9:20:58:8c:55:f6:ff:38:5d:61:f9:af:98:
56:25:2b:2c:13:c0:e7:b0:15:ab:10:f4:30:5f:1b:fe:f2:28:
35:af:c8:ee:06:46:a7:85:a6:8e:99:78:32:67:2d:6d:41:b7:
9d:8e:6c:7d:fe:20:87:31:d6:0d:7a:6a:71:ba:2e:3c:77:30:
23:44:8c:f3:65:e6:28:ed:b2:07:ff:df:9e:51:21:d3:39:9b:
2c:f1:fb:27:5c:37:b4:0f:00:3f:43:7b:4c:b0:fc:b0:9a:19:
85:fb:2d:bc:f9:b5:d8:c9:11:ee:5c:8c:13:c6:1d:8c:53:4d:
ad:df:2c:77:f8:d2:6e:7f:44:e0:bf:bb:08:e0:dd:85:d5:d8:
ad:52:f5:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:00:46 2026 by rpki-client