Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json)
Hash identifier: dyQZrqFeZh+65xjJH6GgUNDDQFXF0p4na4cm+z3PvhU=
Subject key identifier: 1D:9E:06:93:E9:92:19:9B:AF:14:A3:D9:92:AB:40:94:E8:DA:D1:D0
Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Certificate serial: 019D38D3835773DE3570937B8D12321DF4B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
Manifest number: 08DC
Signing time: Sun 29 Mar 2026 09:01:18 +0000
Manifest this update: Sun 29 Mar 2026 09:01:18 +0000
Manifest next update: Mon 30 Mar 2026 09:01:18 +0000
Files and hashes: 1: AoPgCevjaet1nmHheuN6SeeL1kc.roa (hash: 6xkXeVfyM+lok9O6WIPuoQpZtpps9f90d+FFQVcYVr4=)
2: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: W5FtfrZOEJwda4lgP7IsZ9euwzq7QfyTsHiFPQ12QPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:83:57:73:de:35:70:93:7b:8d:12:32:1d:f4:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Validity
Not Before: Mar 29 09:01:18 2026 GMT
Not After : Mar 30 09:01:18 2026 GMT
Subject: CN=1d9e0693e992199baf14a3d992ab4094e8dad1d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:76:06:95:36:8c:e2:dd:f3:ae:ea:66:ac:03:
7b:76:6a:de:2c:b3:b4:3f:97:5c:34:55:8e:21:2f:
84:87:1f:12:76:41:69:9b:62:1c:a9:ae:3a:27:36:
dd:28:35:2a:1e:7f:66:e7:51:15:ea:51:8b:d2:b6:
04:88:1e:b8:2b:12:9a:71:de:f6:f0:20:94:57:b3:
6c:f1:c4:c9:23:75:dd:a3:0d:31:c8:5c:5d:ab:85:
aa:ac:5a:08:33:47:f5:c7:2f:62:34:e2:e2:bb:ae:
f6:60:5e:1b:7c:ea:29:59:75:c6:93:50:1e:83:7f:
de:59:dc:1c:e0:d9:46:7d:67:cc:aa:f0:cc:94:65:
33:8d:59:d2:1a:42:d6:bf:3e:3a:31:0e:a3:81:e8:
f8:d1:72:0f:6f:b7:8a:f6:3d:7a:d3:2c:19:cc:04:
c0:54:08:da:84:aa:14:0d:99:20:d0:7f:e5:fd:4e:
b0:3a:d5:a1:50:84:55:05:5e:42:81:4d:4d:17:94:
c4:d6:b6:4a:4d:a8:e7:8e:af:0c:5b:ca:06:d0:a7:
e9:28:f3:47:e5:45:cd:80:81:3f:6c:53:9f:88:0a:
6d:98:16:8e:49:ea:b8:68:24:61:e2:34:ec:b5:0c:
02:28:dd:3e:7b:83:a3:c3:7a:dd:f3:4e:a6:48:f4:
84:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:9E:06:93:E9:92:19:9B:AF:14:A3:D9:92:AB:40:94:E8:DA:D1:D0
X509v3 Authority Key Identifier:
keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:6d:07:35:1d:c2:8f:e7:a9:9e:0e:a0:ca:1e:3c:ab:f2:a4:
5d:75:d2:6b:66:35:56:a8:32:9c:94:67:d1:8f:e9:ee:ef:8a:
0c:72:c6:09:3e:ce:49:3c:5f:25:5a:43:bb:b1:a9:b8:5d:d2:
bd:84:85:0e:73:ae:b7:8b:bc:43:d6:cb:bc:04:5a:76:42:76:
b6:d1:be:5e:10:88:f3:87:27:07:46:57:54:0a:8c:59:65:f8:
56:1e:9a:68:5c:c5:54:63:43:67:e6:a9:70:c5:7a:12:ad:9a:
95:00:1c:69:f7:94:04:ab:87:a8:dd:3d:a4:fa:d8:0d:d2:fc:
67:43:26:c1:4e:8b:78:14:48:91:68:04:b6:1d:ca:fa:89:b6:
f7:1f:33:cc:e8:72:bb:a0:95:23:35:c0:05:59:d0:69:26:77:
65:31:7d:8f:16:9e:09:3f:52:34:9e:6b:a8:ba:e4:d6:01:bb:
df:2e:e0:18:31:bd:7c:eb:14:8e:7e:63:fe:c7:c6:ef:b5:28:
c8:37:97:b7:06:cf:5d:a3:6c:ff:fd:0b:5a:6b:74:20:37:9a:
79:3e:ef:b4:2e:b0:9e:48:f4:7c:37:10:41:c2:2e:45:ae:1b:
5d:bc:43:79:20:2a:71:04:ad:3b:da:59:e0:ea:e1:fc:fe:dd:
c7:d1:5b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:16 2026 by rpki-client