Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
File: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft (raw, json)
Hash identifier: cRHOI/XXyAMtygCPJnJvppHN2Gcfzlf0YO2OAtqs/Kw=
Subject key identifier: F3:16:D4:4C:F0:79:F7:1E:B6:2F:1F:4F:D9:F9:04:13:82:01:58:5A
Authority key identifier: 9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
Certificate issuer: /CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Certificate serial: 019CAED9CF3D9BFB5E0F29805359D87E75CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
Manifest number: 09DC
Signing time: Mon 02 Mar 2026 14:00:35 +0000
Manifest this update: Mon 02 Mar 2026 14:00:35 +0000
Manifest next update: Tue 03 Mar 2026 14:00:35 +0000
Files and hashes: 1: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl (hash: +rS2q+HwtiEsKOmfKIcGDwJfLuWJRj1QtXT/fwwXMMg=)
2: sao4QdKJ2zOtzhzLqEmuNyMN0as.roa (hash: PzIbh0KTO1J4efJaWw/Rzl0kAt4CC7fNxs+1iCoN+dg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:50:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:d9:cf:3d:9b:fb:5e:0f:29:80:53:59:d8:7e:75:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Validity
Not Before: Mar 2 14:00:35 2026 GMT
Not After : Mar 3 14:00:35 2026 GMT
Subject: CN=f316d44cf079f71eb62f1f4fd9f904138201585a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2e:ac:55:2d:06:07:1c:4e:1d:c3:c0:70:2c:
d0:cb:9e:87:84:c5:5b:47:b3:ae:a5:ae:d8:83:86:
90:6d:5b:4f:b9:2f:94:26:8d:ce:65:b8:ea:a0:06:
4b:84:46:d9:17:3e:21:f4:db:f7:e1:6d:be:4a:0b:
2c:0d:ed:6b:a9:c4:f5:d5:15:0b:f8:e7:77:a1:26:
ce:fd:a7:72:27:80:67:5a:83:43:b7:6f:ed:6b:e5:
7c:31:9d:fe:9f:4f:67:ec:4d:64:76:c6:26:86:da:
82:41:45:48:b2:a6:36:b6:c0:f8:18:ed:fb:80:bd:
9d:a8:a8:28:d3:b4:25:96:9a:f4:8a:a4:5a:fa:1a:
52:8b:a8:71:78:77:b4:f8:c3:1a:56:88:02:e5:27:
2c:26:04:f5:97:57:d2:91:ae:ab:17:5c:a9:f9:03:
3e:c7:1f:c1:b4:69:44:d1:1e:d2:6f:19:27:45:04:
e1:1d:70:12:67:4f:0a:b2:f1:74:f7:13:e9:01:bc:
47:d6:92:f7:b2:31:fa:ed:e9:10:81:18:e9:79:1a:
01:19:9a:c3:74:2c:f7:e7:0d:c4:4e:36:7e:0c:ed:
0b:26:f0:31:0d:44:30:24:2c:aa:b1:af:72:c7:f7:
b8:74:3d:35:a8:b4:4a:71:38:dd:99:fc:8d:fd:6a:
37:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:16:D4:4C:F0:79:F7:1E:B6:2F:1F:4F:D9:F9:04:13:82:01:58:5A
X509v3 Authority Key Identifier:
keyid:9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:ef:e8:52:75:e0:ac:ec:b0:9b:53:36:74:a2:86:c9:72:ad:
46:bf:38:82:20:e9:6d:a4:4b:12:27:35:d9:67:5c:1b:7c:59:
6e:6c:fb:17:6a:a7:1f:de:12:e2:8d:a3:3a:ed:6e:8a:8d:c8:
71:f4:d4:07:1c:a8:82:a5:8f:80:d6:2a:ab:f2:17:04:69:3c:
d3:1d:62:16:00:27:b9:db:51:b6:36:62:79:6d:23:e6:03:b0:
07:7d:91:44:e7:45:f5:7c:1b:40:06:a4:40:5b:11:04:f3:ae:
79:24:09:00:64:4e:8a:79:42:6f:d3:c6:f7:0a:68:4a:95:15:
85:33:d3:67:0e:0c:c5:7a:8f:d0:12:48:ac:99:4d:79:f9:ff:
9f:a7:b2:6b:ac:68:97:35:a8:c1:16:55:ae:c8:ad:1e:cf:f4:
15:73:6a:42:a2:c4:a7:3e:0f:9f:97:9e:90:95:37:fa:37:32:
c4:6a:d8:f3:7a:b7:cb:e8:38:28:ea:a2:bd:44:eb:4a:73:3a:
a4:29:c9:20:79:29:a0:d6:c7:a4:70:33:04:bb:2c:74:c7:ae:
d8:1c:3c:38:3b:90:6e:6c:47:e8:3d:b2:79:89:60:a0:1a:6a:
c3:09:92:36:e9:9d:90:16:e7:53:33:44:f6:53:27:ed:4a:19:
84:a6:b8:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:47:24 2026 by rpki-client