Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
File: nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft (raw, json)
Hash identifier: Y/g1+2uHlk+QLUa/HjOcBdnN19XxLK5c9dQuW/pw6+Y=
Subject key identifier: E1:6F:BA:6F:34:A2:35:55:53:B3:EF:D9:2F:81:E9:3D:DF:FE:7C:66
Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Certificate serial: 019D9A0768021B96AE3E738FE9B85ED126B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 06:01:09 +0000
Manifest this update: Fri 17 Apr 2026 06:01:09 +0000
Manifest next update: Sat 18 Apr 2026 06:01:09 +0000
Files and hashes: 1: nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl (hash: nuFga3kM2WM8A6XQoKYMtnhYzcOn2/vRwyZFEFDiU8Q=)
2: y-zEWENgwx72wpr508JalcWFTv4.roa (hash: lajXJ6uXrG4EqEaAIKyHAOUfK3kTua3b1kFfBGNqDqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:68:02:1b:96:ae:3e:73:8f:e9:b8:5e:d1:26:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Validity
Not Before: Apr 17 06:01:09 2026 GMT
Not After : Apr 18 06:01:09 2026 GMT
Subject: CN=e16fba6f34a2355553b3efd92f81e93ddffe7c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8d:e5:29:60:45:bb:d8:ee:07:07:c6:35:42:
17:09:04:08:db:42:a2:e4:f1:be:9b:e2:5b:0c:23:
d7:63:7f:a3:2e:4f:2a:07:15:cf:d9:cf:31:58:04:
35:48:2a:a8:c4:84:55:06:3e:59:20:38:7a:0c:84:
2e:ca:ea:60:8d:67:ff:59:0a:5e:b5:32:79:ed:fa:
34:8b:aa:6f:34:e4:78:84:89:6a:ed:b9:08:97:7c:
61:89:32:e7:d8:e9:44:0c:5a:2d:ae:00:48:77:f5:
71:34:80:e5:1c:3b:dd:ad:3c:dd:8f:cc:67:ec:26:
5b:1e:1e:c4:ef:36:a6:76:94:63:a5:07:4d:85:1c:
ee:e7:0a:a6:09:b2:04:11:64:b6:23:8b:a7:94:78:
24:12:9f:94:f1:ad:f5:c4:2a:16:68:e1:1f:21:12:
fa:b3:9d:c3:69:0f:3a:76:ef:35:68:70:3c:60:34:
43:dc:18:45:c8:f8:d6:2b:ec:a8:36:69:d8:b1:28:
0a:de:23:54:00:ab:66:5c:fa:7c:4c:cf:3d:a3:12:
5b:bf:53:48:f1:93:62:67:2e:9b:a3:8d:bd:ac:9e:
a2:d9:c5:99:c4:4f:e8:98:ef:5e:7f:89:d9:e9:65:
6b:72:49:b5:fd:fe:6c:f7:e8:95:d3:cc:f7:9f:29:
a9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:6F:BA:6F:34:A2:35:55:53:B3:EF:D9:2F:81:E9:3D:DF:FE:7C:66
X509v3 Authority Key Identifier:
keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:c5:49:2c:ed:22:29:78:fb:43:e9:10:76:2b:08:75:bc:dd:
be:91:98:18:84:c2:a9:94:e1:ef:bf:0b:db:1e:08:25:14:07:
5d:5f:90:c7:c5:c2:02:68:4d:e1:f9:f8:c2:6f:8b:0e:32:3f:
b5:ab:83:99:cf:31:ca:cb:63:5c:d6:a2:21:f5:f5:17:b2:60:
65:2f:f5:f7:88:81:04:7c:25:c0:64:f2:59:03:92:58:9a:b6:
c1:c2:3c:a2:1c:88:cc:22:47:4b:de:e1:9d:f2:29:50:f1:72:
34:91:c1:37:75:4b:76:1b:13:bc:f7:63:66:aa:99:04:e3:ab:
b3:4d:a4:c5:43:23:69:a6:4e:f4:12:d1:00:31:4e:18:a3:cb:
68:0b:18:34:65:40:76:b8:d7:f1:f9:9b:3f:e5:05:f6:2e:51:
fc:21:30:95:a6:23:81:39:2a:f3:fc:e2:9a:af:49:cf:21:39:
9b:ad:a8:03:9d:98:74:4e:95:1c:b1:ec:cb:a4:dd:ed:a8:f0:
d4:75:93:52:f3:80:6a:b7:cb:f1:d0:29:17:ad:c7:9f:1c:3f:
88:ee:88:cb:81:e5:67:0e:f8:2c:32:97:86:56:44:34:1d:ed:
bf:31:ec:a5:1c:21:08:b3:8f:5b:55:0d:7b:2c:93:db:4c:3f:
0f:e8:00:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aB2gCG5auPnOP6bhe0Sa5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMjM5YzA4ZWFkOTRiYjA0ZmMzZTZiNGE2NWU2ZTFjN2Rj
ZjM4ZjQwHhcNMjYwNDE3MDYwMTA5WhcNMjYwNDE4MDYwMTA5WjAzMTEwLwYDVQQD
EyhlMTZmYmE2ZjM0YTIzNTU1NTNiM2VmZDkyZjgxZTkzZGRmZmU3YzY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtY3lKWBFu9juBwfGNUIXCQQI20Ki
5PG+m+JbDCPXY3+jLk8qBxXP2c8xWAQ1SCqoxIRVBj5ZIDh6DIQuyupgjWf/WQpe
tTJ57fo0i6pvNOR4hIlq7bkIl3xhiTLn2OlEDFotrgBId/VxNIDlHDvdrTzdj8xn
7CZbHh7E7zamdpRjpQdNhRzu5wqmCbIEEWS2I4unlHgkEp+U8a31xCoWaOEfIRL6
s53DaQ86du81aHA8YDRD3BhFyPjWK+yoNmnYsSgK3iNUAKtmXPp8TM89oxJbv1NI
8ZNiZy6bo429rJ6i2cWZxE/omO9ef4nZ6WVrckm1/f5s9+iV08z3nympWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOFvum80ojVVU7Pv2S+B6T3f/nxmMB8GA1UdIwQY
MBaAFJ0jnAjq2UuwT8PmtKZebhx9zzj0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAt
ZGJiMjkzMWEwZjY0LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAtZGJiMjkzMWEwZjY0
LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQcVJLO0i
KXj7Q+kQdisIdbzdvpGYGITCqZTh778L2x4IJRQHXV+Qx8XCAmhN4fn4wm+LDjI/
tauDmc8xystjXNaiIfX1F7JgZS/194iBBHwlwGTyWQOSWJq2wcI8ohyIzCJHS97h
nfIpUPFyNJHBN3VLdhsTvPdjZqqZBOOrs02kxUMjaaZO9BLRADFOGKPLaAsYNGVA
drjX8fmbP+UF9i5R/CEwlaYjgTkq8/zimq9JzyE5m62oA52YdE6VHLHsy6Td7ajw
1HWTUvOAarfL8dApF63Hnxw/iO6Iy4HlZw74LDKXhlZENB3tvzHspRwhCLOPW1UN
eyyT20w/D+gAbw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:09:05 2026 by rpki-client