Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
File: nxFouFcXoUZmABtbL2yQgBmX3gY.mft (raw, json)
Hash identifier: hq6UEVU6ZxGBNFuEK0dB9x2VDEpWzVjDRScx1aoGmzg=
Subject key identifier: 7E:89:29:7D:07:C1:FB:C5:1D:62:A6:33:5A:C2:00:C2:9A:F5:43:7C
Authority key identifier: 9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
Certificate issuer: /CN=9f1168b85717a14666001b5b2f6c90801997de06
Certificate serial: 019E20240BF4837C95CF749E3AF7547F202A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
Manifest number: 06B9
Signing time: Wed 13 May 2026 07:01:33 +0000
Manifest this update: Wed 13 May 2026 07:01:33 +0000
Manifest next update: Thu 14 May 2026 07:01:33 +0000
Files and hashes: 1: 4mcjlfKQeAXTF7xGEKQ2QAqMI50.roa (hash: JOKnaNGFem+HWwH7PdEKl79mLEfLJaQb9H34d4OS4AM=)
2: nxFouFcXoUZmABtbL2yQgBmX3gY.crl (hash: 6NUllw+I9FcHJ+YFoxkQetJkS3FhhqrFQP+tC7DHR4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:24:0b:f4:83:7c:95:cf:74:9e:3a:f7:54:7f:20:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f1168b85717a14666001b5b2f6c90801997de06
Validity
Not Before: May 13 07:01:33 2026 GMT
Not After : May 14 07:01:33 2026 GMT
Subject: CN=7e89297d07c1fbc51d62a6335ac200c29af5437c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9c:ad:25:9d:28:0d:b9:43:9b:0d:6c:6c:04:
d4:b7:d5:b1:96:eb:4d:fe:87:4a:cb:4c:22:10:48:
9f:64:6a:cb:46:e9:4a:85:e8:21:2d:53:a7:88:bf:
89:77:14:9a:5f:c2:1e:22:e6:4a:07:aa:25:e0:a3:
77:ed:f3:b7:37:22:49:3e:54:b3:22:9e:0d:81:39:
10:81:63:48:3d:6c:50:e1:44:19:27:78:2c:d9:38:
dc:c0:47:40:52:d9:ba:18:65:bd:4c:9b:d8:b2:f8:
73:fa:b4:58:76:5f:15:30:81:0f:0e:52:a1:10:34:
70:f3:53:3f:d2:c2:0d:5a:f3:eb:56:51:28:53:a2:
1a:91:4b:02:84:87:0c:3e:7c:b4:28:ed:f8:03:5d:
22:ab:02:6d:5a:98:32:ab:a7:25:61:98:10:e9:85:
32:14:c1:78:80:56:25:36:58:89:83:73:5e:40:f6:
2a:fa:e9:ab:08:cb:d5:83:f8:79:f4:80:9a:f5:b7:
05:97:ae:6b:15:a8:7c:27:07:c6:d9:43:58:1f:13:
8c:df:ee:22:90:69:6c:53:7b:58:43:79:f1:1c:4f:
59:bf:f9:3c:c9:e9:73:9f:64:99:13:6f:53:4e:dd:
89:cd:63:d9:40:b1:ad:dc:c0:af:98:ee:78:36:e8:
b7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:89:29:7D:07:C1:FB:C5:1D:62:A6:33:5A:C2:00:C2:9A:F5:43:7C
X509v3 Authority Key Identifier:
keyid:9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:65:c7:c4:7f:6c:af:52:9f:33:ba:28:f6:9a:75:24:29:a0:
af:45:09:d1:8d:0a:49:7b:ac:55:72:2c:d3:79:64:9c:e3:48:
92:e0:a1:7f:f5:fe:e5:90:81:15:bc:33:c1:06:44:ed:76:36:
2c:d0:14:39:03:42:5b:8d:fd:75:cf:db:f3:60:4d:f3:b7:fb:
49:29:09:92:9b:91:f1:43:8b:e6:f5:19:e6:40:71:48:32:0a:
6f:0e:a9:58:4c:2b:cc:13:9b:ed:5c:f8:dc:40:ec:e0:39:d2:
c9:66:21:10:ab:a6:bf:36:3f:b7:c1:c8:28:a2:73:ad:a2:17:
3a:da:1d:d9:18:38:82:a6:c3:25:da:40:3e:a4:67:a8:64:97:
86:41:13:4e:48:ec:7d:3b:88:5c:88:38:2d:be:64:b6:06:34:
cc:96:80:47:c2:c2:67:77:20:aa:f7:3a:55:ab:68:f5:3b:ea:
68:b6:a3:b6:4f:05:c7:db:33:38:e4:63:8d:18:c5:2f:ac:cf:
2b:10:4d:88:ce:72:11:f6:41:9a:78:2f:c3:aa:72:5c:fc:a1:
40:15:88:1c:33:16:b1:40:cc:1d:86:f8:42:73:91:6d:5d:95:
86:c4:19:7e:3a:99:27:34:61:a9:84:9a:01:aa:b4:64:2c:59:
1b:19:e2:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:34:18 2026 by rpki-client