Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
File: nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft (raw, json)
Hash identifier: dQ+xEaocFIPpEghKFttgpbKoNXbSU0gI4ubilMTergg=
Subject key identifier: 31:4B:BD:B6:D1:37:C2:99:91:82:7E:5C:31:CF:FE:DA:92:56:5A:41
Authority key identifier: 9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
Certificate issuer: /CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Certificate serial: 019DD61C74162E302CBAA4F7624AB8AF5876
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
Manifest number: 18E1
Signing time: Tue 28 Apr 2026 22:01:21 +0000
Manifest this update: Tue 28 Apr 2026 22:01:21 +0000
Manifest next update: Wed 29 Apr 2026 22:01:21 +0000
Files and hashes: 1: Q7VU1IAhmqh6QnPsRjKtqye9cFY.roa (hash: 5hCbvviVC6DjaUoU7fXbjYQV9Lo078pPrQ3MKFzmu/U=)
2: UMRm0dtRz3FJANd_M4r6isxg5pc.roa (hash: hL7WSRr8WKYlMsBe+yWHzd7U1Dc511hpxbpyKw8/AI8=)
3: cwpueJkAgwR--N1HcP66vBFBfHs.roa (hash: e4Ux6XpWYsR7DA/nLXViGlPPyLLw1PTyAUYLhKKvKpY=)
4: nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl (hash: 27mPCEsZvnaaSgmDLRFhLlNP/zZDwjjF2Qt8ohSAxrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Apr 2026 14:21:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d6:1c:74:16:2e:30:2c:ba:a4:f7:62:4a:b8:af:58:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Validity
Not Before: Apr 28 22:01:21 2026 GMT
Not After : Apr 29 22:01:21 2026 GMT
Subject: CN=314bbdb6d137c29991827e5c31cffeda92565a41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2e:b0:a4:0b:12:d0:f5:2b:27:6c:44:22:11:
1d:1f:55:0e:4c:19:aa:0f:cf:c5:0a:42:e2:06:87:
2d:28:44:a1:80:16:94:2c:67:2a:8e:5c:ef:4b:cb:
47:07:be:42:05:ff:c4:28:39:10:dd:63:c9:2d:14:
18:ed:66:ff:9d:e2:84:b3:97:6b:cd:16:fd:2f:3e:
da:06:bf:47:41:6f:56:c6:48:86:80:ac:7b:2b:ec:
45:e4:bf:03:2b:6b:76:05:ec:67:ac:f0:2b:5e:a1:
e4:9f:eb:e1:fa:f1:09:ca:89:c5:79:3c:4f:08:0e:
95:44:4f:16:50:9a:48:70:df:32:da:90:5e:c0:5d:
12:9a:69:f4:fa:32:3a:60:fd:f8:83:6a:ee:1e:2b:
ac:f4:35:21:3e:9d:2d:7a:02:51:95:a6:9c:ec:66:
b7:99:5c:17:8a:b7:aa:ca:dd:3c:a7:27:8d:d3:8d:
84:56:25:f5:18:d5:81:41:eb:41:33:bc:6c:d9:97:
ba:18:24:9b:0d:57:86:98:44:ca:98:a7:a6:cb:1e:
c1:b7:bd:ce:61:2c:f6:be:d8:4a:ee:23:68:cd:e9:
c4:36:63:ab:aa:48:b8:26:f8:48:81:98:14:04:40:
e8:68:82:2a:c1:d5:10:3c:c8:6d:ca:da:b7:40:0e:
43:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:4B:BD:B6:D1:37:C2:99:91:82:7E:5C:31:CF:FE:DA:92:56:5A:41
X509v3 Authority Key Identifier:
keyid:9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:6c:19:19:e9:d9:65:08:0b:8d:c3:42:74:a4:1a:ea:eb:39:
83:32:1f:95:57:e9:f8:94:2c:84:dd:f4:5d:15:86:e6:8d:4f:
e6:bc:87:8b:3f:91:90:57:58:5d:ea:a4:9b:ca:16:af:ca:06:
49:ae:8d:04:ee:89:39:82:4f:e6:f7:07:48:7d:1d:f7:db:e1:
bc:71:c2:89:2d:58:60:03:57:ee:0d:e1:e0:c9:a8:8a:cc:52:
7b:80:3d:4d:e7:49:47:45:27:8a:df:a0:43:8f:fd:a0:bc:1b:
b7:23:a0:a5:d7:b4:4c:7a:36:6d:4e:f4:e6:57:a8:a7:7e:4b:
3f:27:e0:7a:a2:a9:b4:23:0e:a1:c3:c4:9a:db:e9:28:cb:51:
2d:b3:72:21:bf:a1:38:27:1f:3f:a2:30:31:92:70:e8:20:d7:
2d:b5:af:f5:d6:5d:91:15:7a:9b:fa:e2:ec:32:be:24:38:42:
44:22:3a:8b:74:7d:f1:1d:73:d0:f4:08:34:9c:af:ed:e4:56:
43:ab:43:15:9f:88:80:14:44:ac:b7:0e:bb:56:b9:eb:37:41:
c3:c0:91:a7:7d:7c:c7:39:8e:d3:5e:84:05:ea:77:fc:14:00:
b8:6d:20:a0:8a:ff:6d:2f:a0:43:d1:fa:ef:66:d4:b5:a9:cf:
b6:01:5a:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 23:59:16 2026 by rpki-client