Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: fSFc0qPpgQljGE9Rfu8OFZ6Ve7uSvaBskXtK+TzdVDw=
Subject key identifier: 6C:EC:1C:5A:31:72:30:D0:A2:09:EC:63:13:1A:00:3D:E8:04:D4:90
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 019DD61C30E54012FED39CE5E0C4454EA8E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 12EB
Signing time: Tue 28 Apr 2026 22:01:04 +0000
Manifest this update: Tue 28 Apr 2026 22:01:04 +0000
Manifest next update: Wed 29 Apr 2026 22:01:04 +0000
Files and hashes: 1: 8hQk0KTYs3g5ZR66-EC5Vv0X6G8.roa (hash: xP2My60JlMvvPw+zYTcbdyBWhfmdlTseIN2HIlpIMRY=)
2: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: yi/NzwkHd2HjNGUqkOB/Dr+dsZGHke4l5WipI3DpQ1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Apr 2026 14:21:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d6:1c:30:e5:40:12:fe:d3:9c:e5:e0:c4:45:4e:a8:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Apr 28 22:01:04 2026 GMT
Not After : Apr 29 22:01:04 2026 GMT
Subject: CN=6cec1c5a317230d0a209ec63131a003de804d490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cd:1f:7e:e5:f2:12:fd:f1:b9:51:56:a5:89:
c3:4f:d0:1b:12:b5:78:0d:9f:4b:6a:f5:d3:70:5c:
cb:1e:76:a7:a8:50:66:53:97:bd:ac:ea:ef:c2:d6:
21:48:b8:63:7e:e6:9e:fb:77:2e:37:25:8c:42:b4:
35:ae:74:55:3e:8e:9f:71:6d:4d:2b:3b:7e:f8:1a:
62:e1:cd:d7:a8:52:36:ac:da:de:c7:7a:91:18:0b:
e9:ff:c9:96:49:ee:4e:1b:39:a8:71:4c:f8:53:68:
dd:fd:24:fc:be:05:db:a9:d4:3f:da:42:c0:c4:78:
5e:64:26:d9:2d:44:74:85:e9:a4:8f:c5:84:6b:32:
1b:d0:dd:25:1c:62:02:91:17:c0:79:c5:9c:4d:04:
d3:a0:9a:28:e9:d7:58:67:d5:ef:b0:b7:e3:91:c5:
a3:05:fc:a1:f6:d9:42:58:58:19:6c:ec:28:aa:5e:
af:95:02:6c:1c:03:de:24:18:85:76:77:2e:b0:da:
4e:e2:7c:6b:7b:46:41:7f:a7:7e:ae:95:a5:09:2a:
ea:31:2b:f8:0e:4a:92:bf:5b:af:8e:91:42:48:dd:
35:55:cf:b5:61:48:5b:4e:86:3e:06:d7:87:b7:92:
1d:2c:63:0b:6b:15:d4:aa:3f:37:e7:11:08:d4:17:
2b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:EC:1C:5A:31:72:30:D0:A2:09:EC:63:13:1A:00:3D:E8:04:D4:90
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:cc:25:fd:22:6c:61:39:69:c8:18:66:8b:3c:87:ec:02:07:
42:0b:02:2b:d0:a8:50:82:9d:d1:b6:c6:bc:60:b2:98:05:43:
db:34:82:3f:64:f7:b6:1c:b2:d6:04:3c:22:85:5e:8a:4a:f1:
ad:9f:58:a2:a6:ec:8c:bd:a8:0a:81:f0:b7:71:86:75:1e:74:
4e:b0:c2:d9:54:62:56:44:ad:42:02:3e:98:64:05:78:c7:6c:
46:27:52:89:a4:75:34:37:4e:54:73:95:1b:d6:33:58:af:71:
cd:5a:23:09:f6:ec:f5:7c:ec:b0:69:99:db:77:19:e1:bc:5c:
28:c9:4a:de:fa:c9:e4:e4:26:37:00:fa:86:e5:4f:8b:9a:31:
13:a1:02:8b:03:87:2f:a4:ca:fa:92:0c:04:01:d7:a9:6c:1e:
f6:ac:4f:c2:3c:41:bf:ad:24:fe:31:22:b4:ac:ae:c7:0f:82:
f0:06:6b:c1:02:c3:4b:6b:36:49:9a:cf:89:e3:d5:00:31:4f:
91:90:fe:7d:20:57:d1:00:8f:10:e6:cd:92:76:05:8b:66:f0:
f5:e2:2b:6f:b6:51:e6:6a:d8:72:93:72:41:e2:c3:3f:bf:ba:
bf:31:72:5a:bb:2d:b9:a7:bd:7d:e4:55:bb:81:ab:20:68:e4:
c8:84:db:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 29 00:00:43 2026 by rpki-client