Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
File: nzbQijzYpC9Goslt_XLtjO4nlHc.mft (raw, json)
Hash identifier: xKXlmgrfqW7x/DP8mgU5cTOfiFvoFexVWy++w0IZBe4=
Subject key identifier: 18:A8:43:B2:03:6C:8B:BE:56:0D:EA:A3:46:CC:A5:47:94:9F:40:7E
Authority key identifier: 9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
Certificate issuer: /CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Certificate serial: 019D39408D09522148E3078733739D0BE301
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
Manifest number: 0E97
Signing time: Sun 29 Mar 2026 11:00:24 +0000
Manifest this update: Sun 29 Mar 2026 11:00:24 +0000
Manifest next update: Mon 30 Mar 2026 11:00:24 +0000
Files and hashes: 1: 5u7r-95wuuMX-2fZHuvG2UHWlXU.roa (hash: tBKl8/BRqmf50ldsgxKlxVMabmpWuazrAadJJugrD/I=)
2: nzbQijzYpC9Goslt_XLtjO4nlHc.crl (hash: YvRPFgC2e/fFNzkWjf/s3RSmewSUbL/Gd+kZMKYv/Io=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:8d:09:52:21:48:e3:07:87:33:73:9d:0b:e3:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477
Validity
Not Before: Mar 29 11:00:24 2026 GMT
Not After : Mar 30 11:00:24 2026 GMT
Subject: CN=18a843b2036c8bbe560deaa346cca547949f407e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:73:c2:f7:83:e9:5a:cd:55:d8:69:b2:34:48:
95:20:ad:cf:29:4b:47:8e:a1:ea:11:17:85:89:4d:
33:67:aa:3f:38:d8:87:24:c9:5e:1c:a4:2a:51:6f:
03:93:1e:8f:28:6e:3a:ac:31:a6:97:9c:ec:41:e4:
fe:0b:aa:26:31:63:87:48:f8:58:9d:95:49:da:bc:
ee:f1:3a:4f:c7:d9:28:ae:1b:99:b5:e8:59:73:43:
68:1c:e9:c7:f3:69:1f:d6:d1:52:f3:e3:a0:da:9f:
6d:cc:e3:be:32:ed:93:34:63:71:9b:24:94:8c:c9:
60:4b:46:66:8e:31:9d:82:fd:99:68:bc:ef:60:e3:
c3:81:93:ee:94:f7:d0:a2:2b:00:9b:f8:62:73:b9:
e3:94:24:c1:8b:b1:e7:a3:6d:ff:1e:3c:53:73:68:
9c:d7:09:65:8a:07:c0:ac:14:b8:ef:27:42:db:e0:
07:f9:c3:38:c6:f6:7a:18:24:b7:5b:85:c0:91:fb:
fa:fa:42:02:f5:01:20:6c:48:cc:cc:11:ec:96:5f:
8b:da:e4:12:ec:0b:0c:3e:af:ec:1c:e4:22:21:b8:
28:52:6b:8d:e4:08:db:76:b7:da:eb:1e:53:37:80:
17:aa:77:35:df:2f:1d:15:cd:6e:83:5e:4b:a4:4f:
dd:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A8:43:B2:03:6C:8B:BE:56:0D:EA:A3:46:CC:A5:47:94:9F:40:7E
X509v3 Authority Key Identifier:
keyid:9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:b3:b3:ef:96:6a:46:bf:52:de:f5:de:c4:63:b0:3a:d2:e1:
2a:b8:0b:ab:60:cc:bc:ec:f5:8f:a9:87:6e:38:1d:83:4b:74:
99:ab:d4:b1:3d:3d:f2:65:f5:be:7e:c6:e1:a1:51:7c:5a:1d:
2b:06:9a:4f:04:c7:9c:c9:38:38:38:de:3e:50:2f:04:b1:87:
86:d3:2a:59:2c:56:20:3a:3c:ec:98:f3:af:01:5b:dd:7a:70:
19:86:19:f6:e9:a1:bf:e5:49:33:3c:fc:fd:5b:93:3d:9a:ed:
52:48:05:12:f0:96:5a:7b:90:04:c0:9e:88:f4:e1:38:5a:bf:
ac:51:c9:b4:8e:60:7c:12:00:7b:28:0c:02:4d:5c:1f:ba:7f:
0d:43:e3:a2:9b:57:42:0f:48:00:81:73:3a:fe:70:07:2b:88:
00:ef:f7:23:ba:05:e3:63:42:d1:09:e0:8b:2f:06:85:d5:18:
f2:d2:8c:d7:42:9e:0b:70:38:1a:38:f0:24:90:1d:e8:15:b1:
1c:72:64:89:72:56:e3:92:3f:61:e3:69:22:ef:43:7c:26:c3:
9c:36:d3:88:0e:5c:f5:8a:68:48:5a:25:cb:2c:a2:6e:89:98:
1a:28:af:61:81:70:d1:c6:de:0c:18:63:8f:d8:82:4d:46:2d:
1d:7e:b7:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:03:33 2026 by rpki-client