Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: MWSMT/QOTzGSTiWpVu6SVtu+TKpc03jt1ju9jc5Htps=
Subject key identifier: 13:04:EF:B9:A7:C7:AE:81:DA:F1:C1:BF:E3:27:F3:FB:EE:22:09:17
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 019E311786C6ED69DFF88B3B9DA1EDDC1FBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 0BC3
Signing time: Sat 16 May 2026 14:01:25 +0000
Manifest this update: Sat 16 May 2026 14:01:25 +0000
Manifest next update: Sun 17 May 2026 14:01:25 +0000
Files and hashes: 1: D6BGr-5dJZvETpMbA__Q61SK3f4.roa (hash: zOFmPuRjAmwk6FKGKP0FAzMgJQg9lT91lc24vYQHaUc=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: yxo1Fybrf3AqU+Fqz7KNTQ80DGBG9Tvv0gMOr6QTMa4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:86:c6:ed:69:df:f8:8b:3b:9d:a1:ed:dc:1f:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: May 16 14:01:25 2026 GMT
Not After : May 17 14:01:25 2026 GMT
Subject: CN=1304efb9a7c7ae81daf1c1bfe327f3fbee220917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2f:e8:66:e7:b6:8d:a5:7c:3a:09:1b:a4:a4:
b5:64:78:5d:15:aa:8c:8e:21:a2:23:21:53:e9:77:
9e:db:c4:17:d0:c9:0f:10:62:a0:f5:1f:64:c4:74:
48:b4:41:ac:bb:54:8a:24:98:67:b6:41:04:54:f1:
0c:4e:17:3c:8a:7f:e7:92:db:f6:0d:2c:9e:99:5a:
a1:bf:f1:44:02:1b:7f:d2:04:60:51:14:63:f9:8e:
06:9c:f8:ae:65:de:ba:e6:06:0e:4d:84:33:98:c7:
1a:93:0e:d6:89:e2:10:23:11:98:54:22:f7:ad:8b:
38:69:82:c7:f6:54:e4:c0:fd:9b:6e:7a:81:46:df:
d7:f8:e7:03:4b:ee:07:53:4d:27:34:65:0f:b3:fc:
fe:07:d0:e9:7a:3f:43:c0:23:9e:7c:fb:23:3f:8b:
00:3c:ac:a9:ba:f4:9c:44:27:60:b1:27:38:14:fb:
f2:6a:18:d3:65:dd:dc:ca:1d:00:d6:02:dc:2a:17:
ee:d2:1b:e3:b7:fe:79:d3:b9:78:a7:59:33:cb:fa:
ac:eb:81:d7:90:7a:10:23:bd:81:91:d8:24:f0:4e:
36:90:81:68:2f:fb:d0:a1:15:a2:d4:c1:f0:12:81:
79:ea:18:ed:08:0f:7e:1a:ed:56:5a:c7:dd:bb:36:
c3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:04:EF:B9:A7:C7:AE:81:DA:F1:C1:BF:E3:27:F3:FB:EE:22:09:17
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:50:59:b0:60:c9:4b:e4:24:72:71:5a:34:21:52:14:41:39:
78:41:be:89:9c:bb:87:0e:1c:86:aa:da:17:a3:a4:3f:87:d5:
28:50:18:21:f7:50:05:90:ff:3c:58:a8:96:1c:0c:66:b2:68:
1c:84:a4:01:44:9a:03:ab:4e:90:2f:22:b8:43:3f:55:98:63:
e0:0d:3f:e7:f6:9b:d4:43:3b:98:ce:a2:ca:1a:4b:07:c1:3f:
60:2b:ab:df:6e:ca:91:30:de:c5:d8:42:6d:51:06:14:05:03:
53:f6:2a:2a:a5:e7:97:10:69:75:45:96:1d:be:34:bf:b3:8a:
75:47:f1:75:3f:4f:f7:aa:b8:46:28:f9:9d:35:0d:c5:e8:83:
b3:a5:6c:42:d5:42:18:94:98:ed:ad:86:8f:10:13:e5:fb:43:
e8:8d:a4:d1:cd:47:4c:38:d5:12:b9:e6:18:0d:e4:af:5f:14:
29:ff:92:af:1e:4f:dd:bd:01:e2:f2:f6:91:97:12:27:c3:c7:
ce:e4:15:7a:30:e9:c7:ca:4c:94:54:3a:8d:dc:33:e2:d4:c6:
10:2c:b9:2a:b3:7d:2d:3a:cd:45:51:05:1f:dc:39:0f:a6:ff:
f6:e2:e0:78:7c:cf:a7:d5:78:7f:bb:91:98:ae:46:97:d1:73:
30:b5:19:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 23:29:56 2026 by rpki-client