Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: nI2ziM+1099wEeUL3Qp9yEdUsICTT+IQnByre4TE4SY=
Subject key identifier: BE:29:55:0A:F8:AC:37:39:CE:84:3D:24:6E:68:97:47:37:0C:96:08
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 019EC1EE39F5DC22FC09D856EB1075870B0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 0C0E
Signing time: Sat 13 Jun 2026 17:01:15 +0000
Manifest this update: Sat 13 Jun 2026 17:01:15 +0000
Manifest next update: Sun 14 Jun 2026 17:01:15 +0000
Files and hashes: 1: D6BGr-5dJZvETpMbA__Q61SK3f4.roa (hash: zOFmPuRjAmwk6FKGKP0FAzMgJQg9lT91lc24vYQHaUc=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: YV/Ewchv3r4F2Oogv31GdRWKDuDz6hVBFjZstlgRPUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:39:f5:dc:22:fc:09:d8:56:eb:10:75:87:0b:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: Jun 13 17:01:15 2026 GMT
Not After : Jun 14 17:01:15 2026 GMT
Subject: CN=be29550af8ac3739ce843d246e689747370c9608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:aa:d9:02:3b:51:7e:04:90:84:73:50:36:39:
85:43:b3:cf:dc:3e:0d:4d:a7:e5:9e:3c:11:19:0e:
92:32:7d:bf:35:94:fb:4b:3e:92:06:ba:7f:09:f1:
3c:be:9b:59:af:62:b9:f4:6b:36:3d:8f:62:d0:45:
5b:33:02:f5:2e:43:5c:62:59:f5:46:a5:95:95:06:
80:3b:6a:46:f8:83:f2:4e:78:3b:48:65:52:27:04:
c5:b8:2e:a9:ac:3b:b5:6d:91:a5:02:b2:98:6d:1a:
25:f2:20:20:f7:09:19:93:a8:7f:56:ef:55:df:2c:
0f:b6:c7:1c:ed:c4:d7:b2:a4:3c:5b:6c:7b:af:46:
20:34:ae:04:a6:97:eb:fc:5a:e3:fb:cd:03:2d:dd:
f6:52:c3:78:2b:b7:80:82:64:b4:57:6d:56:84:99:
bc:19:7f:d5:fd:fb:40:dc:7d:ad:0f:c2:01:ff:76:
24:07:8d:92:fd:fc:a1:d8:bb:b5:b5:63:cf:84:62:
a2:92:13:6e:27:0b:b1:60:03:b8:04:ae:17:48:87:
e9:78:8c:0d:c3:73:c3:d7:04:ff:1e:a1:47:8e:81:
ac:92:ad:3c:42:6a:ed:88:95:58:57:e6:dc:3a:f7:
fb:ee:49:c2:02:e9:ae:ea:c3:b3:49:b6:3c:61:1a:
d6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:29:55:0A:F8:AC:37:39:CE:84:3D:24:6E:68:97:47:37:0C:96:08
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:ae:f9:f1:ae:41:1f:c0:23:68:1c:f3:f3:0c:2e:5c:d7:1a:
be:33:40:de:e8:4c:31:44:a0:99:00:48:11:ca:69:15:14:fa:
91:20:13:ef:1e:65:ae:9c:26:f2:0c:d0:af:69:46:48:f6:fd:
6c:16:8f:52:ac:c6:3c:f9:dd:c3:d5:04:bc:0d:2a:de:bf:af:
dd:2d:ae:8f:79:32:6f:73:b9:30:e1:0c:22:df:73:7d:ce:96:
28:ce:f1:54:d6:4d:5f:b6:43:9d:9a:8a:c9:bd:c4:0b:98:dd:
d9:45:65:f1:d8:b3:d0:7e:69:80:97:8d:95:c8:80:85:1e:9f:
16:b9:dc:ba:f5:76:bd:1f:b6:c0:a5:81:3d:a2:e1:44:37:c7:
25:d7:bb:19:ce:25:47:6d:10:6e:94:7d:24:57:c0:07:a4:7c:
f8:7c:78:15:f6:4c:a1:43:b3:e9:6d:90:0a:ba:39:fb:c4:eb:
92:76:ab:66:dc:db:33:e3:96:84:d4:e9:ee:8c:c8:c3:fc:fc:
43:e3:29:78:1f:a4:ee:ef:22:c1:2f:d7:da:34:05:50:3a:90:
44:ea:80:fd:4e:d5:1a:6e:ea:9e:b5:10:1e:99:bd:d6:4b:cb:
71:3d:e8:2b:aa:d9:e1:1c:d2:6e:cb:75:95:e9:2b:24:f5:9a:
1d:31:e8:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:56:50 2026 by rpki-client