Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: gDr7Igcs/nI3If0Nwxqp80bKTp7t8skZ9b2qhVnIwxs=
Subject key identifier: 0A:47:A6:65:AB:F0:B0:98:4B:E8:D6:2E:24:A2:08:2A:AA:1B:B6:05
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 019CE6A3C08A8F7EB2E483F143055D7CBA12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 126F
Signing time: Fri 13 Mar 2026 10:00:17 +0000
Manifest this update: Fri 13 Mar 2026 10:00:17 +0000
Manifest next update: Sat 14 Mar 2026 10:00:17 +0000
Files and hashes: 1: 8hQk0KTYs3g5ZR66-EC5Vv0X6G8.roa (hash: xP2My60JlMvvPw+zYTcbdyBWhfmdlTseIN2HIlpIMRY=)
2: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: yfj1WlNHxHDAUbPCYAY5/t3BE2bj5kJ1VyXKjMb/V4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:a3:c0:8a:8f:7e:b2:e4:83:f1:43:05:5d:7c:ba:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Mar 13 10:00:17 2026 GMT
Not After : Mar 14 10:00:17 2026 GMT
Subject: CN=0a47a665abf0b0984be8d62e24a2082aaa1bb605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ec:6d:80:37:18:81:6e:bb:55:51:fc:3e:81:
d4:c6:6a:55:a7:c6:de:4f:e2:af:65:62:b3:25:12:
95:29:fe:7f:c3:15:c8:65:37:f8:5a:30:3d:db:8a:
bc:70:5b:80:94:68:aa:65:3b:df:f7:81:f2:14:d6:
ff:86:9c:b2:0f:2c:27:cb:55:65:1f:43:8e:6d:41:
e6:0f:70:5c:37:16:5d:ff:3e:d4:9c:66:a4:39:56:
3a:7b:ea:c5:35:a3:07:28:88:88:08:ce:c0:80:61:
eb:e8:52:14:13:82:a2:9c:dc:2d:70:be:7d:27:4a:
b6:cf:2d:23:10:58:4f:29:2b:ea:12:71:59:87:fd:
af:ee:e3:9b:a9:0b:67:ed:37:b5:a7:73:ac:8b:ab:
06:54:86:43:61:80:87:39:c6:45:67:c8:34:0d:03:
2f:ab:d4:25:49:5b:af:66:bf:89:b8:2b:57:2d:62:
fa:54:e8:d3:ef:f8:35:94:bb:13:d2:aa:92:73:01:
d2:f3:00:c5:0b:ee:f1:77:c7:5d:82:d4:18:5c:16:
50:01:df:f2:11:8f:95:21:f3:ad:69:f8:a3:1c:1d:
23:81:a7:83:97:a3:cf:76:ef:49:3e:e8:8b:5c:41:
cc:8c:b1:29:6d:52:8d:a3:1d:8f:6f:45:eb:cc:87:
36:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:47:A6:65:AB:F0:B0:98:4B:E8:D6:2E:24:A2:08:2A:AA:1B:B6:05
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:77:8f:31:77:65:cc:83:a4:6d:b6:d9:ee:67:ce:e2:91:48:
03:ed:c9:26:03:ca:33:e0:1f:c1:ad:62:2a:f4:85:6c:ac:d1:
2f:d8:77:bf:c5:e5:79:bc:a4:41:ce:56:1f:40:5a:05:96:b1:
4f:c1:ba:36:ef:13:fb:45:12:1c:7d:fe:7d:0b:5d:fe:68:38:
20:00:89:7a:ad:75:7f:db:a4:87:24:fd:9c:da:06:c3:1c:bf:
77:98:16:88:1d:df:c0:69:2b:ea:0d:9e:a3:e5:e5:b7:bb:17:
d1:39:62:0f:e5:bb:92:11:a9:16:08:97:a0:20:74:bc:88:a5:
5b:48:29:8f:92:3b:85:da:2f:41:da:44:bf:96:4c:c1:fd:c9:
dc:5e:cd:26:ee:d8:ed:66:e9:82:c5:cb:5a:e1:52:23:24:41:
ba:8b:56:1e:f4:30:18:1e:55:0d:48:a0:39:56:50:66:80:77:
77:7b:c9:61:9b:70:42:7f:57:ca:e7:57:2b:de:07:70:ca:ea:
1e:a0:83:83:66:0b:ec:04:5f:a6:b8:cc:f0:36:4f:a1:bb:75:
2f:5f:5b:10:c1:fd:b2:47:de:e5:5e:83:f2:c0:8f:70:76:a4:
08:7e:33:db:f1:45:37:66:ed:e9:e3:fc:5a:33:f2:fc:6a:6b:
91:12:4a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 13:14:23 2026 by rpki-client