Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
File: nxFouFcXoUZmABtbL2yQgBmX3gY.mft (raw, json)
Hash identifier: d6S67pXTZA9K2R3asH5ItmA66zJoxPxLBGI4lriTby0=
Subject key identifier: F7:5C:95:27:00:4E:59:1B:EB:A7:5D:0C:8A:D9:24:5E:D4:69:5B:71
Authority key identifier: 9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
Certificate issuer: /CN=9f1168b85717a14666001b5b2f6c90801997de06
Certificate serial: 019D27043F8EBA74EE7BE964CD7C83871C50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
Manifest number: 0638
Signing time: Wed 25 Mar 2026 22:01:23 +0000
Manifest this update: Wed 25 Mar 2026 22:01:23 +0000
Manifest next update: Thu 26 Mar 2026 22:01:23 +0000
Files and hashes: 1: 4mcjlfKQeAXTF7xGEKQ2QAqMI50.roa (hash: JOKnaNGFem+HWwH7PdEKl79mLEfLJaQb9H34d4OS4AM=)
2: nxFouFcXoUZmABtbL2yQgBmX3gY.crl (hash: Z41aNtF/w8BiruQcuif+HUJHHFcdumSZ/lZDng0rAKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:3f:8e:ba:74:ee:7b:e9:64:cd:7c:83:87:1c:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f1168b85717a14666001b5b2f6c90801997de06
Validity
Not Before: Mar 25 22:01:23 2026 GMT
Not After : Mar 26 22:01:23 2026 GMT
Subject: CN=f75c9527004e591beba75d0c8ad9245ed4695b71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e9:81:10:81:9e:5d:df:e8:55:f7:2d:72:30:
ba:cb:a5:d6:c5:71:c0:aa:e4:85:c6:17:37:fe:06:
4f:ea:93:f7:8f:a2:09:3b:fd:7c:e0:46:6e:18:f7:
92:92:87:5b:5c:c8:22:bd:5d:3c:65:7d:42:a6:20:
23:2b:d9:ec:03:c2:f1:d0:6e:3e:8f:47:d4:d9:d7:
e2:c6:62:89:0e:8f:3f:e5:41:2b:5a:5e:de:9b:02:
34:91:ca:32:22:7f:97:e5:af:47:9f:05:49:8f:bc:
4e:67:2f:c6:33:6f:6a:64:34:fd:0e:47:78:85:c9:
60:64:06:9c:43:b0:7e:4b:65:7b:a1:5a:fd:f8:1a:
12:82:c5:9a:45:ff:89:9a:09:63:83:3a:28:73:b2:
b4:f3:d8:60:2c:44:39:f5:f1:88:cd:ab:92:90:67:
04:90:d2:78:06:fc:02:d6:94:03:62:98:ad:0f:6e:
15:5e:57:a2:5c:8a:c9:ab:ba:67:0d:c3:8b:af:25:
09:e6:42:98:b8:7f:b9:8c:8b:6a:9a:a2:65:d2:7d:
f1:49:61:c0:a6:c1:6e:ad:a5:56:62:35:7d:e0:72:
44:5a:2f:0d:f9:1e:b8:8e:38:95:af:65:29:d8:91:
01:4e:c1:c4:f8:2a:f3:dd:b8:d8:3d:05:6d:26:29:
13:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:5C:95:27:00:4E:59:1B:EB:A7:5D:0C:8A:D9:24:5E:D4:69:5B:71
X509v3 Authority Key Identifier:
keyid:9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:08:a8:1a:b9:24:2c:60:e8:a9:33:52:ae:bb:56:3d:0a:b4:
d2:45:6d:95:f5:c3:f6:d8:de:62:d1:f9:1e:bb:78:c4:b0:6d:
2e:6a:3b:36:62:a7:f8:91:e4:d5:7a:aa:d1:0f:07:74:e8:5e:
c3:71:d1:65:99:fa:d0:9a:48:45:25:15:cd:2f:74:a6:62:71:
98:72:c0:90:cf:74:f5:5c:ec:3d:3f:24:e7:69:fa:a3:dc:5f:
f5:6a:78:13:5b:d2:4f:f2:22:70:e0:ae:e5:49:ac:18:2e:07:
a6:c7:b5:48:50:68:77:88:4a:3d:4a:e5:c0:90:89:21:d7:b4:
a7:c4:c3:86:a7:db:7b:47:57:4a:34:55:82:e6:73:28:8b:df:
41:4c:cf:f8:cb:89:a9:04:34:30:c0:b3:31:71:22:9f:aa:a5:
eb:8d:be:bf:bb:21:87:36:3b:62:b1:ec:f6:8a:16:3b:5a:d1:
53:52:bb:96:b7:2a:3f:95:a8:94:3f:eb:ef:9d:a1:ee:b2:d0:
9b:27:8b:47:ea:c8:58:28:58:99:c7:c8:de:87:a1:86:da:c3:
6c:00:7e:92:45:8b:7c:a9:b2:42:4f:6e:a1:9e:8c:d4:9a:f2:
11:35:23:88:ae:cb:5b:0a:60:ce:8e:69:60:8b:ec:99:1d:07:
59:1b:1e:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:10:55 2026 by rpki-client