Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
File: nzcg6XD6oOB_UKY4nnrlOvpDnas.mft (raw, json)
Hash identifier: aAMm17bsTsfJWP118rNRmJjIIWmivE3i+7iarqznEB4=
Subject key identifier: 98:FE:02:D1:9F:DF:5D:CE:5C:E2:61:0F:2F:AB:AA:AB:3A:21:97:AE
Authority key identifier: 9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
Certificate issuer: /CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Certificate serial: 019EB76ACF3C82F32574CE389E1F6B05B78B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
Manifest number: 195B
Signing time: Thu 11 Jun 2026 16:01:30 +0000
Manifest this update: Thu 11 Jun 2026 16:01:30 +0000
Manifest next update: Fri 12 Jun 2026 16:01:30 +0000
Files and hashes: 1: DwjBds5b0bny3-dZb3jOPo6oE6o.roa (hash: Rkq+xz9kCRAZI1zfzUNT6Gu5M/oAmAXmbyM5y+/YH1I=)
2: nzcg6XD6oOB_UKY4nnrlOvpDnas.crl (hash: s5ao5pbyA56dDF3SupCl1Gcl7ILlRvRIkm6DjapwRyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:6a:cf:3c:82:f3:25:74:ce:38:9e:1f:6b:05:b7:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Validity
Not Before: Jun 11 16:01:30 2026 GMT
Not After : Jun 12 16:01:30 2026 GMT
Subject: CN=98fe02d19fdf5dce5ce2610f2fabaaab3a2197ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c4:ea:ac:9e:75:8a:3b:b4:4f:94:a2:77:5f:
9e:08:8f:ec:4b:9d:9d:0a:19:0c:66:2a:a7:c5:87:
cc:ea:9e:53:41:78:1e:0f:67:78:d4:cd:92:d1:05:
d8:fc:77:a5:45:48:30:4c:d6:c7:15:f8:95:61:ad:
d9:c3:00:7a:a1:1f:2d:9e:a1:c0:96:33:14:e0:60:
3d:10:46:de:8e:d0:02:34:24:80:a4:dc:44:14:1c:
30:8c:d5:ab:21:34:b4:b7:06:52:3f:fe:db:ad:ea:
54:9d:39:81:16:e2:45:18:f8:f6:04:69:c1:d9:37:
e3:ae:ea:c1:be:92:69:43:a2:d8:a6:b3:8e:e3:ab:
55:54:51:06:28:ca:95:bc:d6:a0:27:76:f7:c5:f1:
b7:96:bf:18:11:5f:76:7b:c7:8d:e9:95:cd:08:79:
18:3f:61:51:3a:05:34:bf:14:8c:aa:37:ca:8f:77:
a6:f4:4f:a5:92:ef:07:39:ec:8c:30:72:2c:da:b3:
58:0b:c2:da:e4:55:f5:14:a9:39:d4:6b:03:82:ca:
1a:e9:c2:b1:30:b8:07:00:4b:84:78:90:fb:f0:be:
bc:3f:30:ac:5f:a4:47:fb:ba:75:21:7f:37:46:24:
fb:80:ce:59:ef:3f:62:25:7e:0d:ef:16:9e:02:8b:
d9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:FE:02:D1:9F:DF:5D:CE:5C:E2:61:0F:2F:AB:AA:AB:3A:21:97:AE
X509v3 Authority Key Identifier:
keyid:9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:4a:98:c5:ec:f1:2a:46:cc:80:18:8f:34:31:75:c3:b5:c3:
11:49:d6:88:69:65:30:69:5e:7d:7e:7a:e3:30:51:71:61:d1:
82:ee:f7:6d:ec:e9:2a:fd:99:c8:d4:77:87:fa:26:14:5a:d0:
21:64:c3:a2:36:c0:62:21:cb:de:8a:7d:5d:1d:95:71:e8:98:
c7:22:58:b8:f0:8c:ac:0f:a7:61:d8:bd:32:96:48:bf:dc:0a:
79:b7:10:80:ac:bc:23:db:10:d2:62:83:e5:9a:16:db:5e:5a:
94:44:f7:ea:79:3e:50:77:fe:09:99:e9:de:ac:9e:be:ed:a0:
6d:c7:46:ed:c4:59:96:f3:7e:d9:55:e2:96:59:a4:1d:57:6a:
b4:04:48:74:a3:57:fc:af:4d:96:58:40:57:e6:d8:51:3b:55:
27:74:00:b6:96:3a:3a:a9:46:5c:90:d9:7a:36:55:b9:7f:da:
ac:c8:9f:ae:0c:e4:fa:ce:41:be:47:cc:06:91:c7:31:ff:b6:
42:7d:cc:d7:5e:90:48:36:f0:f5:0c:0e:9c:22:bf:d5:57:5e:
ba:3d:bf:84:6f:82:db:14:9f:c2:7a:a7:72:a8:be:43:7d:70:
0a:92:6e:e6:66:fd:65:94:ce:5f:62:cc:64:cd:f0:21:2b:00:
dd:a3:27:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:53:38 2026 by rpki-client