Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: cbqbIxeWoFdnV3W8qz3MtVPzbOJvf/I1r2ZVrNEir7w=
Subject key identifier: 55:53:3B:01:76:7A:3B:59:B3:EE:84:86:D0:9C:54:64:EF:C3:9F:DE
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 019CAAFD7006E2114E59C2B754002A3CA72E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 0AF9
Signing time: Sun 01 Mar 2026 20:01:01 +0000
Manifest this update: Sun 01 Mar 2026 20:01:01 +0000
Manifest next update: Mon 02 Mar 2026 20:01:01 +0000
Files and hashes: 1: D6BGr-5dJZvETpMbA__Q61SK3f4.roa (hash: zOFmPuRjAmwk6FKGKP0FAzMgJQg9lT91lc24vYQHaUc=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: uNI/0WugNrz3s3CqWRJfhsIQa3FdjSpJYoODaTZrdgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:70:06:e2:11:4e:59:c2:b7:54:00:2a:3c:a7:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: Mar 1 20:01:01 2026 GMT
Not After : Mar 2 20:01:01 2026 GMT
Subject: CN=55533b01767a3b59b3ee8486d09c5464efc39fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:67:b1:8b:73:63:6c:65:97:b2:15:e2:ef:10:
f3:39:0d:48:56:f9:69:ba:6e:74:c9:3f:cb:f7:74:
90:4e:a8:8d:96:08:34:b5:b2:9c:ed:a5:ef:3d:bf:
39:0c:f8:3f:12:d7:0f:0a:fb:5a:7f:28:1d:12:ad:
d7:eb:03:e9:e0:f1:04:d8:cf:e5:7d:ac:db:3a:04:
fe:76:97:f8:0f:c0:cd:6c:a2:37:ad:02:ce:0e:37:
7a:8a:7c:0b:04:9a:41:60:90:f0:df:78:c0:8c:e1:
43:34:8e:f9:1a:b3:5f:ee:e2:95:de:29:1b:a8:5a:
90:c1:73:83:4e:ae:19:02:ad:b8:a1:ff:74:fb:c4:
a0:76:23:00:36:cc:06:51:d6:b5:cc:3d:53:1e:0c:
85:9f:14:3b:69:e4:81:32:23:77:5b:eb:84:19:ac:
66:61:0b:a6:7a:1a:90:16:5a:04:7b:50:de:51:86:
04:e7:40:91:8c:bc:54:f0:68:59:df:af:98:de:8c:
d5:88:9f:48:c4:fe:f3:20:0f:dd:7c:85:4f:ce:ba:
87:69:57:7e:4a:78:ac:b4:fb:2a:2d:44:c8:a2:4d:
cb:5a:da:21:b9:aa:e3:e2:1f:fe:07:27:81:58:25:
a7:db:c4:87:a2:51:57:b5:1c:d1:04:bb:9b:ac:f3:
95:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:53:3B:01:76:7A:3B:59:B3:EE:84:86:D0:9C:54:64:EF:C3:9F:DE
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:1b:dc:9d:73:74:0e:d5:9e:09:c4:73:a6:e7:31:de:1c:fe:
41:43:c3:70:f7:63:dd:7a:63:6b:b8:c8:f6:d6:36:32:6d:41:
ed:68:fb:cc:ce:2b:bf:f9:f7:1a:68:5d:65:c7:1d:48:bc:30:
0f:22:c2:89:29:63:fd:da:d7:5f:b6:d2:c9:c0:75:94:7d:33:
af:ce:df:0b:ec:6a:11:71:db:e0:a4:50:59:db:3f:e2:35:66:
a1:67:a4:c2:1c:21:a6:61:2a:bb:90:96:30:09:79:4a:30:f8:
08:34:b2:17:da:d5:11:56:71:b6:46:e6:f7:99:96:84:0d:c3:
c5:86:d4:a9:63:5f:33:7f:fc:55:98:ca:50:eb:a9:2d:fd:c2:
ec:db:b0:1f:fa:26:f4:a1:05:bd:be:b5:77:21:d9:af:a3:fc:
7d:bd:86:aa:10:78:76:04:22:92:39:94:7e:1a:31:6c:41:0c:
9e:b3:c6:11:56:e6:bc:84:48:b8:23:a8:f3:a9:6a:00:44:61:
1b:0a:de:8c:8b:61:6a:04:fb:5c:cd:54:cb:d1:99:46:87:8a:
62:7c:75:1f:c4:29:2b:67:cb:5b:5b:af:30:55:e6:e2:0c:c0:
db:0b:14:2d:cf:2a:d7:17:3d:0d:c4:75:60:4b:5e:34:9e:77:
99:c3:eb:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:21:25 2026 by rpki-client