Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
File: nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft (raw, json)
Hash identifier: pDL7L93OJaBUNMo0CAgmtnmmEpIEH2kKxx+KKRwD8CY=
Subject key identifier: 8E:70:91:51:3B:F6:72:AF:7E:1C:C7:6F:8A:43:E8:04:F7:AE:ED:F5
Authority key identifier: 9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
Certificate issuer: /CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Certificate serial: 019CC7BEF9335EC2338B1CC247C27BB1B943
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
Manifest number: 1855
Signing time: Sat 07 Mar 2026 10:01:47 +0000
Manifest this update: Sat 07 Mar 2026 10:01:47 +0000
Manifest next update: Sun 08 Mar 2026 10:01:47 +0000
Files and hashes: 1: Q7VU1IAhmqh6QnPsRjKtqye9cFY.roa (hash: 5hCbvviVC6DjaUoU7fXbjYQV9Lo078pPrQ3MKFzmu/U=)
2: UMRm0dtRz3FJANd_M4r6isxg5pc.roa (hash: hL7WSRr8WKYlMsBe+yWHzd7U1Dc511hpxbpyKw8/AI8=)
3: cwpueJkAgwR--N1HcP66vBFBfHs.roa (hash: e4Ux6XpWYsR7DA/nLXViGlPPyLLw1PTyAUYLhKKvKpY=)
4: nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl (hash: xYcMHu0nOROH8bpoU2iyQmZDZKPkOm+NXmUlPRihu/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 10:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c7:be:f9:33:5e:c2:33:8b:1c:c2:47:c2:7b:b1:b9:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Validity
Not Before: Mar 7 10:01:47 2026 GMT
Not After : Mar 8 10:01:47 2026 GMT
Subject: CN=8e7091513bf672af7e1cc76f8a43e804f7aeedf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1e:42:76:17:a5:32:e1:1b:76:7c:47:14:44:
e3:98:78:c7:f0:29:06:88:ac:d5:72:ad:b7:6b:32:
25:6d:96:63:03:9e:d2:67:be:78:ea:a0:2b:8e:d0:
4c:cf:ef:00:e0:82:10:fe:14:28:ab:c0:65:1e:9d:
e6:4f:de:1f:42:e5:e3:73:f6:d8:14:3e:0a:e4:ac:
76:c3:f5:5d:e5:12:22:87:32:3d:ad:80:db:83:00:
17:13:49:e5:97:3c:3b:a0:a5:8d:3d:9f:50:a7:7d:
c0:c2:38:f4:84:d5:5e:e3:37:64:5a:c6:63:d1:60:
5e:40:fa:95:f0:d0:3b:af:ba:09:4f:83:0a:93:06:
50:2a:e1:83:c2:18:94:0b:e2:85:3a:bf:5d:91:eb:
34:04:49:72:eb:91:5f:0b:f6:a8:c7:2f:68:e0:1f:
64:9d:ac:84:e8:33:22:79:1c:77:e8:8c:75:2d:c3:
a3:51:2f:fb:1a:52:a5:f3:fd:27:4d:79:e9:9d:dd:
e6:e9:c4:cc:c3:22:5b:07:f4:dc:1b:78:0f:de:57:
39:d9:03:2b:90:66:0d:4e:f1:64:43:0e:1b:e0:8d:
8c:de:38:81:2a:d5:4b:21:50:49:16:86:25:e0:c2:
97:1e:3f:ca:60:50:1e:17:18:47:a1:cb:be:31:e8:
3b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:70:91:51:3B:F6:72:AF:7E:1C:C7:6F:8A:43:E8:04:F7:AE:ED:F5
X509v3 Authority Key Identifier:
keyid:9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:00:e5:81:78:41:1c:cb:bf:7c:09:4e:fe:63:9f:2e:46:f3:
18:2e:45:c3:d9:04:0c:82:31:ec:f3:6d:ba:0b:14:d9:81:08:
31:8a:d3:69:46:6e:de:6c:58:4e:32:67:0f:35:b1:19:45:cc:
54:ae:41:48:1a:13:94:ba:f8:09:6a:4a:7f:c1:22:57:b4:88:
6b:c5:38:21:0f:6e:12:55:fe:08:8f:08:1c:b5:24:87:26:1a:
96:85:c5:31:ee:81:27:40:47:b6:b7:e2:f7:e5:b6:02:44:ca:
06:ff:10:f3:fb:11:9b:12:7f:89:3d:93:e1:34:b9:96:b0:8c:
26:fe:f2:a8:73:4f:9b:80:4b:fd:82:94:8d:b8:fc:73:15:df:
5f:d0:4c:ae:6b:5b:fd:2d:3e:5a:89:c2:cd:3f:88:4e:92:d8:
87:b4:2a:79:dd:31:5f:27:f7:9a:e1:45:6f:4b:12:8e:59:e9:
8a:07:fc:fb:1e:cc:71:43:63:a8:98:c2:ae:34:58:20:20:7c:
1e:41:dc:a3:8b:f6:dc:cb:47:2f:8d:46:3c:40:c8:f4:43:de:
af:fd:9e:25:7f:d9:dc:fa:61:cd:2f:e2:1e:f5:ae:b6:21:77:
30:8b:d4:74:cf:62:03:47:fa:8f:69:86:5e:55:62:d3:4f:b9:
61:20:6a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 17:59:08 2026 by rpki-client