Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier: +qg7qO55uE3GfS9tpFfEo5Z9w8dv9/bS3INPD+GN9rU=
Subject key identifier: A8:D0:59:E2:DD:F5:A9:FD:0C:3C:BE:6A:42:36:9C:57:1A:93:9A:E2
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial: 019D389BC677027322A433682D2D07511390
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number: 0B08
Signing time: Sun 29 Mar 2026 08:00:26 +0000
Manifest this update: Sun 29 Mar 2026 08:00:26 +0000
Manifest next update: Mon 30 Mar 2026 08:00:26 +0000
Files and hashes: 1: KggeSoYJuTH0OsCrW287o_IBVIU.roa (hash: 3X9Kd87JdDMTWZvK8kLFjDZVe2SDW7wiUWXk0sGtCM8=)
2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: DS+GX3Iu16SIfTzfA9XIC+uegNOaaRvVqUqJx0yeIh4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:c6:77:02:73:22:a4:33:68:2d:2d:07:51:13:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Validity
Not Before: Mar 29 08:00:26 2026 GMT
Not After : Mar 30 08:00:26 2026 GMT
Subject: CN=a8d059e2ddf5a9fd0c3cbe6a42369c571a939ae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5b:e5:46:a1:2b:09:b1:12:ac:32:db:90:5a:
7d:09:8e:a6:99:7a:41:e3:13:aa:ad:46:2d:bd:a9:
f7:19:7e:e7:63:48:39:7d:f6:1c:18:33:7a:e9:70:
60:0f:c6:90:6c:3c:61:59:be:8a:59:6f:c2:3e:00:
b2:29:f5:50:a0:c5:1f:15:e8:70:ca:32:b7:32:59:
4e:95:88:eb:2c:34:ac:57:de:5c:a4:a9:04:12:dd:
9e:f5:02:57:c7:b7:bd:4a:5a:43:a1:96:d3:0e:33:
d7:3a:2a:0c:dc:42:fc:b6:66:a1:29:1f:3f:94:1d:
a3:88:18:fd:b0:d8:b2:e6:2e:0f:ec:70:e0:a0:28:
d5:12:16:ed:d4:8f:cf:37:17:b0:bf:ba:fb:c7:d2:
60:5c:8f:0e:8d:6b:8e:4c:1b:d0:79:de:e8:b2:6e:
6d:ea:bc:09:66:b2:8d:a5:58:ae:2f:fb:47:71:69:
cf:0c:b6:88:cd:27:76:d4:0b:45:35:08:3f:f0:0d:
e0:d4:57:47:43:51:a3:67:6b:9e:76:8b:5f:9b:85:
c0:93:d6:c9:49:41:28:33:b4:28:d0:f5:e3:8d:de:
09:d4:18:c4:47:24:4c:f9:7d:63:d1:b7:a4:e9:54:
02:9d:51:20:9d:2a:68:f1:31:21:ca:98:69:32:be:
95:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:D0:59:E2:DD:F5:A9:FD:0C:3C:BE:6A:42:36:9C:57:1A:93:9A:E2
X509v3 Authority Key Identifier:
keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:18:4b:59:db:6f:06:e7:97:3c:72:b6:7f:8c:6e:fb:cb:d5:
f1:4d:01:3f:b1:a3:da:ea:dd:a6:2e:67:49:13:06:c5:79:0f:
37:48:06:1b:d1:48:41:a8:44:01:8c:36:01:91:a0:de:59:57:
66:29:8f:dd:ea:2f:f7:5b:2d:00:26:c4:c8:b3:5b:fe:57:10:
55:9e:6c:97:c8:f9:b5:f4:05:69:11:a0:5f:2f:8e:9e:bf:a8:
61:22:45:33:35:f4:0d:73:dc:91:9d:94:6f:84:80:ee:00:38:
79:6b:1e:1a:83:41:d0:78:1a:5d:1c:f8:9e:46:33:07:a6:87:
d9:23:75:84:29:71:2e:f7:49:f5:88:ef:d1:3f:03:c6:af:d9:
56:74:fe:30:3b:c5:de:83:86:67:e9:5c:8e:e0:7b:04:85:2d:
82:09:84:63:8f:f4:e3:f7:89:ac:f9:62:07:f6:b4:9f:37:5a:
64:c7:1d:8a:88:5e:c4:8d:59:98:92:fa:e2:a9:91:e6:fc:77:
13:36:99:c3:a6:0a:16:5c:f3:14:46:15:a2:ee:4a:3a:62:14:
4b:9c:66:23:21:aa:53:a7:96:34:8d:b7:07:6f:31:af:5a:a1:
67:a9:bb:ce:24:26:20:c7:1f:24:ba:6c:54:ea:0b:a5:b6:4d:
02:a6:08:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04m8Z3AnMipDNoLS0HUROQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllMWJhMTY1M2ZjYTdjODAxNzIzY2E0NmZmNDQyZTZiYWMx
ZTkxYTAwHhcNMjYwMzI5MDgwMDI2WhcNMjYwMzMwMDgwMDI2WjAzMTEwLwYDVQQD
EyhhOGQwNTllMmRkZjVhOWZkMGMzY2JlNmE0MjM2OWM1NzFhOTM5YWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFvlRqErCbESrDLbkFp9CY6mmXpB
4xOqrUYtvan3GX7nY0g5ffYcGDN66XBgD8aQbDxhWb6KWW/CPgCyKfVQoMUfFehw
yjK3MllOlYjrLDSsV95cpKkEEt2e9QJXx7e9SlpDoZbTDjPXOioM3EL8tmahKR8/
lB2jiBj9sNiy5i4P7HDgoCjVEhbt1I/PNxewv7r7x9JgXI8OjWuOTBvQed7osm5t
6rwJZrKNpViuL/tHcWnPDLaIzSd21AtFNQg/8A3g1FdHQ1GjZ2uedotfm4XAk9bJ
SUEoM7Qo0PXjjd4J1BjERyRM+X1j0bek6VQCnVEgnSpo8TEhyphpMr6VywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKjQWeLd9an9DDy+akI2nFcak5riMB8GA1UdIwQY
MBaAFJ4boWU/ynyAFyPKRv9ELmusHpGgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEt
ZmNiNDNkNGY2NzE0LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEtZmNiNDNkNGY2NzE0
LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxRhLWdtv
BueXPHK2f4xu+8vV8U0BP7Gj2urdpi5nSRMGxXkPN0gGG9FIQahEAYw2AZGg3llX
ZimP3eov91stACbEyLNb/lcQVZ5sl8j5tfQFaRGgXy+Onr+oYSJFMzX0DXPckZ2U
b4SA7gA4eWseGoNB0HgaXRz4nkYzB6aH2SN1hClxLvdJ9Yjv0T8Dxq/ZVnT+MDvF
3oOGZ+lcjuB7BIUtggmEY4/04/eJrPliB/a0nzdaZMcdiohexI1ZmJL64qmR5vx3
EzaZw6YKFlzzFEYVou5KOmIUS5xmIyGqU6eWNI23B28xr1qhZ6m7ziQmIMcfJLps
VOoLpbZNAqYI2g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:39:50 2026 by rpki-client