Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
File: nSAoCNH5FFVeG9WcFncof_mztZA.mft (raw, json)
Hash identifier: QRntv0P6+eNJjaHeP+lLYvJK1vrtV/8J0gCj/jlBnR4=
Subject key identifier: 26:A7:B7:A7:E4:C7:FB:93:F6:07:21:D4:3D:C2:F8:20:DC:B3:A4:67
Authority key identifier: 9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
Certificate issuer: /CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Certificate serial: 019EC1B6AF21F48EFC8C8B85D7A0F2E1FDAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
Manifest number: 1365
Signing time: Sat 13 Jun 2026 16:00:35 +0000
Manifest this update: Sat 13 Jun 2026 16:00:35 +0000
Manifest next update: Sun 14 Jun 2026 16:00:35 +0000
Files and hashes: 1: 8hQk0KTYs3g5ZR66-EC5Vv0X6G8.roa (hash: xP2My60JlMvvPw+zYTcbdyBWhfmdlTseIN2HIlpIMRY=)
2: nSAoCNH5FFVeG9WcFncof_mztZA.crl (hash: RQfPWbm1EsSwFuNIVTuzvktOIsbMQ49673cyiMFBjkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:af:21:f4:8e:fc:8c:8b:85:d7:a0:f2:e1:fd:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d202808d1f914555e1bd59c1677287ff9b3b590
Validity
Not Before: Jun 13 16:00:35 2026 GMT
Not After : Jun 14 16:00:35 2026 GMT
Subject: CN=26a7b7a7e4c7fb93f60721d43dc2f820dcb3a467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ba:7d:a4:10:bb:6f:36:28:ab:3c:da:67:1d:
55:31:31:c5:94:a9:2e:2b:08:b8:bd:c9:01:79:23:
db:5c:f1:14:46:99:04:e5:12:98:bb:3d:9b:b4:f9:
ff:69:54:c7:b0:83:42:81:97:8f:f4:69:e6:a5:d2:
5f:68:50:5a:9a:8e:b0:41:3f:77:36:74:55:cf:b2:
a7:34:69:36:f1:9d:ca:ec:05:df:8b:e8:24:d1:c4:
37:6d:f2:77:c3:34:ed:08:e0:f3:24:df:05:9d:e7:
12:58:b2:c9:bc:21:ae:50:da:b6:8b:00:0a:5d:b8:
5c:52:1a:fc:aa:cf:da:53:4c:78:28:e1:69:b3:37:
df:27:7e:38:4c:4e:f5:68:33:3a:02:ee:df:c8:82:
d4:6c:c1:19:5f:2a:25:88:4c:3e:a5:6a:9e:c9:20:
62:e1:90:19:0d:d5:47:1a:ee:0b:83:2e:ae:c3:33:
b5:20:cb:b1:cf:ef:14:cd:3e:12:40:f1:8b:5c:4f:
77:21:2b:8a:cf:e9:93:fb:aa:1e:f3:cc:96:fa:9b:
56:85:3e:55:31:8d:d3:86:a8:e2:b3:0e:d0:80:9c:
cc:96:57:dd:3d:4a:f7:1a:95:2f:72:92:ce:ff:f6:
e3:e8:2d:24:28:5a:a7:18:dd:4b:73:3a:de:53:a0:
2e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A7:B7:A7:E4:C7:FB:93:F6:07:21:D4:3D:C2:F8:20:DC:B3:A4:67
X509v3 Authority Key Identifier:
keyid:9D:20:28:08:D1:F9:14:55:5E:1B:D5:9C:16:77:28:7F:F9:B3:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSAoCNH5FFVeG9WcFncof_mztZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/a5c069-8061-4dee-9568-880b2df57f25/1/nSAoCNH5FFVeG9WcFncof_mztZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:dc:7a:b5:e2:b0:1a:4c:00:60:4f:11:4b:1a:99:5f:75:e2:
34:26:ca:15:1f:39:ae:ed:d6:64:44:96:1f:f9:2a:a0:41:44:
9d:36:df:56:8c:e0:53:4b:24:4d:98:4a:6a:f4:08:8a:84:d3:
f3:8e:96:29:c6:13:b4:97:ad:6f:7b:b6:30:42:ca:dc:30:36:
75:5e:eb:03:55:e3:da:0c:9f:31:06:99:4a:11:f6:6b:10:de:
58:97:49:11:b2:42:86:e0:44:91:68:2e:1b:4b:ad:7f:d7:6a:
f7:b9:a8:6c:c5:65:83:9b:d5:a0:41:91:6d:49:fc:a3:97:5d:
91:04:89:0c:9f:a9:2a:58:37:6e:68:b8:af:09:16:eb:34:3b:
92:cd:7a:27:5c:c7:b2:88:2f:5c:70:0c:c5:8a:2f:55:44:79:
8d:77:15:ff:d5:df:f0:9a:8c:22:a9:e5:2f:4b:f2:b6:1c:0b:
d7:e8:49:53:3e:69:fc:dc:a9:ab:04:f1:ca:3a:4d:da:87:66:
08:d4:fc:03:87:e1:1f:ff:52:c7:02:92:ce:8b:8b:e1:a3:84:
69:f1:68:aa:51:e3:96:8e:51:dd:50:c4:d1:c9:f6:ee:4f:a8:
10:f7:7e:ad:df:33:e4:a6:cc:91:ea:b9:23:66:0f:69:75:cf:
e8:08:0a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:15:34 2026 by rpki-client