Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: KzWkPGryWxDXoEb6kxpRF2VLwNZYGIeGDSIsx/YxfKc=
Subject key identifier: C3:B6:7C:6C:A5:B0:DF:BC:EA:3E:53:74:C8:2D:B6:F3:88:FD:78:F5
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 019D9A3EB14B9AD174CD99EC9F0A2FF2EB3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 12CC
Signing time: Fri 17 Apr 2026 07:01:32 +0000
Manifest this update: Fri 17 Apr 2026 07:01:32 +0000
Manifest next update: Sat 18 Apr 2026 07:01:32 +0000
Files and hashes: 1: 8hQk0KTYs3g5ZR66-EC5Vv0X6G8.roa (hash: xP2My60JlMvvPw+zYTcbdyBWhfmdlTseIN2HIlpIMRY=)
2: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: h1YlzxQXczyfPPBryXGx2Mm1KFH70I5ClokYm2/VUpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:b1:4b:9a:d1:74:cd:99:ec:9f:0a:2f:f2:eb:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Apr 17 07:01:32 2026 GMT
Not After : Apr 18 07:01:32 2026 GMT
Subject: CN=c3b67c6ca5b0dfbcea3e5374c82db6f388fd78f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ce:60:b4:12:15:09:02:56:be:d5:82:d7:f2:
18:2c:46:0f:22:9d:4e:17:27:41:87:e8:19:bc:97:
7c:ce:69:70:bf:a8:c0:7b:38:8c:24:f1:63:f1:ea:
a5:46:9f:92:c7:41:45:cd:8d:e6:29:ba:1b:62:67:
b0:64:3b:ad:48:b0:2a:db:a1:69:09:60:53:3c:80:
f0:3f:c8:e1:38:cc:db:b9:89:d8:ae:aa:6b:2f:49:
9a:88:f1:04:9e:a4:5a:3d:ed:25:44:20:2b:1e:bc:
d9:c4:af:82:af:cf:21:4b:11:9a:33:74:fe:10:ee:
9c:a1:8d:3f:d9:20:53:db:d9:a7:ce:ca:33:15:81:
80:15:f6:84:7d:0e:64:9f:49:1c:7c:4e:a8:e6:c0:
dd:e7:7e:f7:59:57:d7:37:0d:22:b7:30:cf:f1:74:
ee:1e:8f:fd:fa:fc:ca:6c:0b:b0:94:28:7b:e1:1c:
82:d8:3a:58:31:55:21:7e:10:f6:1d:a3:ee:ba:e5:
3b:74:cc:db:15:b9:3c:93:50:b4:79:32:86:ec:44:
51:f9:54:03:a0:31:6e:15:5e:d7:67:06:9e:5e:21:
6f:7c:35:29:65:3f:de:74:8e:4b:13:4c:c3:09:cb:
58:c6:aa:62:52:4d:30:be:99:c7:0d:33:f3:c5:bc:
2e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B6:7C:6C:A5:B0:DF:BC:EA:3E:53:74:C8:2D:B6:F3:88:FD:78:F5
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:d6:db:af:d2:2f:8d:cd:a5:17:5b:47:92:75:d6:f2:b7:b9:
1d:1e:af:5a:0f:1b:db:78:c5:ed:2c:85:45:b0:67:bb:05:48:
d2:15:a6:1a:74:a0:f5:e0:36:25:c1:e0:e2:f2:15:90:00:04:
8d:a9:aa:81:30:14:14:e4:24:30:5b:b4:2c:49:eb:0a:1d:92:
42:a6:33:be:4d:36:47:bc:ec:b3:5c:7c:5a:8d:16:87:88:a2:
76:da:00:d5:be:27:3c:79:dc:59:68:f2:1b:1d:b6:f4:c9:c6:
5f:6a:05:ac:6c:9f:eb:8c:6c:67:0d:65:fa:9c:10:90:ab:90:
4c:fd:46:cc:d5:ed:30:cd:44:dc:e3:9d:d2:a8:dc:00:39:7c:
36:3d:9b:34:7a:65:f4:3a:bf:ff:f8:44:92:fe:6b:f5:d4:c4:
15:f9:d1:b1:13:d2:94:7b:28:e7:7f:71:a5:73:fe:72:20:44:
39:e4:0f:0e:40:5d:81:71:4b:e1:a4:1c:f5:df:b1:f6:f6:1d:
a8:9c:d5:63:b0:16:dc:69:64:a2:d5:2a:9a:f4:04:70:9a:63:
cd:2f:1f:84:83:08:0d:26:85:c6:84:d2:f0:7c:0b:78:41:78:
f8:4e:33:2e:bb:b1:c6:90:39:56:0d:00:ea:30:82:4f:e9:d7:
ac:b6:a7:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPrFLmtF0zZnsnwov8us+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMjAyODA4ZDFmOTE0NTU1ZTFiZDU5YzE2NzcyODdmZjli
M2I1OTAwHhcNMjYwNDE3MDcwMTMyWhcNMjYwNDE4MDcwMTMyWjAzMTEwLwYDVQQD
EyhjM2I2N2M2Y2E1YjBkZmJjZWEzZTUzNzRjODJkYjZmMzg4ZmQ3OGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6s5gtBIVCQJWvtWC1/IYLEYPIp1O
FydBh+gZvJd8zmlwv6jAeziMJPFj8eqlRp+Sx0FFzY3mKbobYmewZDutSLAq26Fp
CWBTPIDwP8jhOMzbuYnYrqprL0maiPEEnqRaPe0lRCArHrzZxK+Cr88hSxGaM3T+
EO6coY0/2SBT29mnzsozFYGAFfaEfQ5kn0kcfE6o5sDd5373WVfXNw0itzDP8XTu
Ho/9+vzKbAuwlCh74RyC2DpYMVUhfhD2HaPuuuU7dMzbFbk8k1C0eTKG7ERR+VQD
oDFuFV7XZwaeXiFvfDUpZT/edI5LE0zDCctYxqpiUk0wvpnHDTPzxbwudwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMO2fGylsN+86j5TdMgttvOI/Xj1MB8GA1UdIwQY
MBaAFJ0gKAjR+RRVXhvVnBZ3KH/5s7WQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNBb0NOSDVGRlZlRzlXY0ZuY29mX216dFpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9hNWMwNjktODA2MS00ZGVlLTk1Njgt
ODgwYjJkZjU3ZjI1LzEvblNBb0NOSDVGRlZlRzlXY0ZuY29mX216dFpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9hNWMwNjktODA2MS00ZGVlLTk1NjgtODgwYjJkZjU3ZjI1
LzEvblNBb0NOSDVGRlZlRzlXY0ZuY29mX216dFpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG9bbr9Iv
jc2lF1tHknXW8re5HR6vWg8b23jF7SyFRbBnuwVI0hWmGnSg9eA2JcHg4vIVkAAE
jamqgTAUFOQkMFu0LEnrCh2SQqYzvk02R7zss1x8Wo0Wh4iidtoA1b4nPHncWWjy
Gx229MnGX2oFrGyf64xsZw1l+pwQkKuQTP1GzNXtMM1E3OOd0qjcADl8Nj2bNHpl
9Dq///hEkv5r9dTEFfnRsRPSlHso539xpXP+ciBEOeQPDkBdgXFL4aQc9d+x9vYd
qJzVY7AW3GlkotUqmvQEcJpjzS8fhIMIDSaFxoTS8HwLeEF4+E4zLruxxpA5Vg0A
6jCCT+nXrLan7Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:20:00 2026 by rpki-client