Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
File: nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft (raw, json)
Hash identifier: jRyMmsKNSOlJW0GRHqtgAlPYChTf73iZa/6cjDtI1tk=
Subject key identifier: 8E:18:48:C5:D7:9A:49:75:C5:BF:49:2D:A3:E5:26:B0:EF:6E:8E:92
Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Certificate serial: 019F189E50E49A32FA450EA03851C5695EE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
Manifest number: 198C
Signing time: Tue 30 Jun 2026 13:00:56 +0000
Manifest this update: Tue 30 Jun 2026 13:00:56 +0000
Manifest next update: Wed 01 Jul 2026 13:00:56 +0000
Files and hashes: 1: 3VLY5D5jY6Fg74P9CPwHLDDacBs.roa (hash: 6wXFx6QNzRp4ziQbCTHhGbk3alt7Zu9izUtYs34c2K0=)
2: M8HxuDTjeppXENHYtsmDwzIxfqg.roa (hash: ehN4HCrYdAsRJz9J+AoM/g7LUsIA+10CKLm98CDchvI=)
3: nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl (hash: moUDXf4Yb/cdC4/RQYLDQwUwWIfMtDLtU7J8oJPnz6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:50:e4:9a:32:fa:45:0e:a0:38:51:c5:69:5e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Validity
Not Before: Jun 30 13:00:56 2026 GMT
Not After : Jul 1 13:00:56 2026 GMT
Subject: CN=8e1848c5d79a4975c5bf492da3e526b0ef6e8e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c7:47:fb:1d:8a:82:02:78:bb:55:54:22:39:
68:33:b0:94:6c:1d:cc:10:ff:bf:ec:1d:9f:3d:a9:
0f:a1:bf:7f:d4:77:de:47:bb:1b:e6:21:10:f3:96:
81:d3:ff:df:5c:f9:09:0e:0a:d6:06:4d:0f:28:42:
d6:95:0d:72:3d:30:05:e7:83:40:98:bd:cb:5c:7f:
fd:5e:5b:1a:df:33:da:16:80:96:0e:f3:8d:28:12:
09:ca:b5:9b:6c:d2:8d:d4:ba:81:75:d5:92:76:0a:
cd:ad:39:8d:0f:d5:89:74:9d:b5:6c:77:d8:d7:d7:
a4:23:f6:af:18:49:37:43:34:9a:d1:13:28:ee:ff:
7d:15:a1:0f:0d:d6:ed:58:bd:9e:ed:5a:df:f8:76:
b9:47:34:c1:59:22:d1:76:f7:3b:20:48:c5:d3:90:
c7:fa:c9:77:a4:b2:49:8c:05:ef:85:34:88:6a:dd:
46:b7:0c:16:bc:83:a9:7f:d3:e7:49:8a:da:84:57:
ef:a9:b7:c7:c1:42:cc:27:d8:e2:a2:1e:8b:94:1a:
6f:72:a3:72:ca:c9:e9:4e:e5:86:c6:a3:c7:8e:ee:
48:ec:03:be:8d:41:da:9e:9d:a9:bc:a9:e0:d4:cc:
ff:29:51:80:29:a0:a1:30:6c:ba:23:5a:af:35:ab:
0b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:18:48:C5:D7:9A:49:75:C5:BF:49:2D:A3:E5:26:B0:EF:6E:8E:92
X509v3 Authority Key Identifier:
keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:d5:b4:d6:42:dd:15:a2:7e:cd:b4:02:27:a3:85:62:c5:a7:
a5:0e:e4:44:9d:0b:ad:cc:f0:22:2f:ac:76:da:86:4f:55:2c:
e4:75:32:bb:9e:60:f9:44:17:5a:b1:eb:85:13:b5:43:6b:54:
c8:df:63:d9:b7:3c:02:4e:ca:11:2e:7a:fb:ce:4f:47:98:0e:
f5:56:ab:8e:4d:ca:28:2b:80:56:2e:5a:dd:5d:b5:d3:df:9e:
4e:9f:1f:3d:45:8d:c6:8b:1f:a0:4d:4e:e1:99:f6:e7:9c:79:
78:7d:9c:e2:cf:29:86:ea:bf:d8:f7:0a:fb:41:50:1d:40:d1:
63:ef:f9:5b:04:01:45:a4:ca:69:e8:0f:63:d4:63:66:42:a4:
de:a8:e8:4b:59:c4:7f:be:cf:56:d4:bd:fb:e8:f8:1b:b4:62:
2e:d5:ff:53:31:4f:4f:ce:ea:7c:81:0f:3d:d6:f2:bf:38:be:
6d:3b:7b:cb:3b:66:6d:81:0f:2a:21:ca:d0:41:9f:a4:3c:09:
d7:3a:77:ec:91:1e:9d:81:b3:12:f6:0e:b9:f2:5a:7c:3c:8e:
2d:87:ff:02:b4:59:43:ef:f8:c9:4c:c8:d2:39:ee:cb:1c:e2:
51:68:3a:ec:7e:b2:2a:22:be:60:64:c8:d4:69:64:9f:00:ec:
35:6e:97:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:36:39 2026 by rpki-client