Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: CqLNwdSL/60ejAKQfa4GQ62OYONMu4R1p68aV9H7xCk=
Subject key identifier: 69:C2:80:AD:C3:E9:A1:E2:5F:FF:3B:C4:BB:B1:BC:85:07:47:86:EB
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 019EB6FBF806BEF4A1E96F45CD1B6EB93F6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 0BCE
Signing time: Thu 11 Jun 2026 14:00:26 +0000
Manifest this update: Thu 11 Jun 2026 14:00:26 +0000
Manifest next update: Fri 12 Jun 2026 14:00:26 +0000
Files and hashes: 1: KggeSoYJuTH0OsCrW287o_IBVIU.roa (hash: 3X9Kd87JdDMTWZvK8kLFjDZVe2SDW7wiUWXk0sGtCM8=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: CNAVy+6ONiGZU2+coYlm1w1WnBCZQPkiaKVM0+aXYI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:fb:f8:06:be:f4:a1:e9:6f:45:cd:1b:6e:b9:3f:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: Jun 11 14:00:26 2026 GMT
Not After : Jun 12 14:00:26 2026 GMT
Subject: CN=69c280adc3e9a1e25fff3bc4bbb1bc85074786eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8d:91:d9:03:e3:ee:21:5c:b8:ff:71:5c:bb:
3c:90:1e:c1:5e:a6:35:81:01:60:f7:ce:10:b9:2b:
1c:ff:2e:2a:d9:85:9c:eb:48:3b:68:95:6f:01:53:
ad:21:46:b1:fd:82:60:11:28:1f:7d:03:1b:98:78:
ab:9a:34:ec:f2:d1:ec:78:f8:38:6c:7f:1b:7f:bb:
53:57:f4:2c:1e:e8:7a:70:07:93:13:d5:b0:28:a8:
f4:76:f3:0c:c9:4c:34:a8:52:58:04:61:47:93:79:
a9:72:a2:2e:35:f5:e9:10:96:1e:c1:e3:4d:b9:40:
9b:54:2b:87:0e:dd:b8:d6:5d:d8:bf:02:e7:d2:8e:
a6:ec:55:26:ee:17:56:2b:01:d3:d9:2b:da:04:fe:
96:1c:ba:ac:d6:78:d0:1b:21:80:83:1f:93:82:a4:
8d:f4:1e:c6:97:77:66:03:00:d4:08:a0:83:58:d6:
7b:de:57:04:42:86:8c:72:02:62:2f:bf:3c:3c:67:
ea:c7:ea:16:52:52:b5:f5:32:5a:2a:f0:f3:84:12:
29:f6:92:31:07:b9:59:7d:01:6d:49:eb:2e:67:14:
39:36:07:84:d9:2f:d9:5c:09:12:1b:1d:a6:50:bb:
8a:56:0e:ee:71:bd:94:63:2d:f9:9e:14:74:42:96:
47:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C2:80:AD:C3:E9:A1:E2:5F:FF:3B:C4:BB:B1:BC:85:07:47:86:EB
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:06:40:8c:f7:5b:47:ea:77:82:cd:9d:90:62:f0:77:2c:dc:
be:c0:b9:54:27:f7:b6:b0:3a:8c:75:93:71:9c:d9:97:9a:fd:
ab:91:08:90:c0:90:c7:3f:2f:97:b9:9b:24:8a:86:68:d4:31:
6e:ac:b6:5f:6e:08:91:68:fb:21:c4:f1:ff:2a:e0:de:0d:00:
8b:41:7c:cb:b0:b6:93:7d:a2:ae:4a:3f:b4:9b:50:cc:4a:2e:
a3:cf:47:a4:3b:9a:8c:83:57:36:7d:33:06:23:83:e6:6c:05:
eb:ba:3a:92:94:21:07:fd:8b:64:73:0d:2a:cd:0d:70:ba:a2:
8c:88:53:31:f3:61:bb:8e:5a:5f:53:56:11:73:f6:19:93:d8:
7f:82:88:6a:82:0e:10:3f:85:cf:87:99:32:55:9d:85:46:74:
ca:1f:70:df:dc:af:19:7e:9d:e8:ee:4d:0f:ab:f6:ec:cc:1d:
56:db:1a:a8:52:c5:26:0c:35:c5:19:8d:db:2a:9b:31:13:e4:
f7:3c:7b:d8:23:a4:74:ac:78:95:a4:33:d2:9d:3d:a7:10:e4:
77:57:c6:37:ac:64:d5:95:63:0e:e1:a3:87:85:4f:71:80:ab:
bb:e3:bb:27:8c:d3:9b:79:cb:14:f1:14:e5:c5:1c:98:f2:dc:
b0:54:28:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:21:21 2026 by rpki-client