Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: OriYDBuMLWG1SajHFWbomdwP46pZRsxiCnceMWkkAF4=
Subject key identifier: EE:CE:12:59:EA:A0:27:7E:8C:1D:3B:02:75:EC:88:AE:0A:26:AF:B5
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 019D9886505566295AD1688E45F9FFD5E262
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 0B74
Signing time: Thu 16 Apr 2026 23:00:32 +0000
Manifest this update: Thu 16 Apr 2026 23:00:32 +0000
Manifest next update: Fri 17 Apr 2026 23:00:32 +0000
Files and hashes: 1: D6BGr-5dJZvETpMbA__Q61SK3f4.roa (hash: zOFmPuRjAmwk6FKGKP0FAzMgJQg9lT91lc24vYQHaUc=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: gPaUcMWOnPqN+l02FHcIkKnk6QnbwPtsjsA17CMA6v0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:50:55:66:29:5a:d1:68:8e:45:f9:ff:d5:e2:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: Apr 16 23:00:32 2026 GMT
Not After : Apr 17 23:00:32 2026 GMT
Subject: CN=eece1259eaa0277e8c1d3b0275ec88ae0a26afb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2b:d2:5b:5b:b8:11:2f:0e:ee:40:cf:90:3b:
8c:0f:05:08:82:77:31:ab:f3:7f:b8:0b:ad:c2:fb:
60:b3:c7:bf:a7:81:be:62:62:d7:ac:93:32:8a:a8:
38:82:c2:46:c9:77:a3:46:ae:dd:db:a1:82:8e:8f:
f3:9e:40:a0:b8:a8:03:c4:aa:59:7c:c6:47:59:4c:
32:08:67:1d:ca:0a:e5:40:34:62:05:9c:5f:36:89:
fb:8c:a4:a5:f9:90:20:76:7b:ef:1e:c0:e4:e7:63:
41:7e:c2:28:5e:cd:1a:b9:44:b0:32:b4:88:12:61:
b0:8e:48:2a:69:2e:e7:7b:7a:6f:8d:07:f7:6f:9b:
55:31:7b:fa:24:db:15:8c:fc:77:5b:7e:88:dd:1c:
6c:14:b8:7d:11:bf:ae:57:24:c2:d8:5e:b0:0c:19:
fb:ac:d6:e5:ed:fe:7c:bb:33:eb:07:34:1c:65:f9:
b6:6f:b2:e3:a8:5e:0d:26:b6:33:91:4a:6c:00:3c:
1a:76:a2:b0:da:3b:ff:f2:1b:a5:2c:67:8d:6f:51:
c8:c0:79:7d:dc:14:4d:d8:0f:75:22:3b:38:75:e3:
84:7a:0c:5b:a6:9c:4a:6a:6e:28:de:b5:78:49:0e:
73:c9:9b:95:65:0a:9f:a7:79:9d:bf:54:ca:e8:b9:
fe:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:CE:12:59:EA:A0:27:7E:8C:1D:3B:02:75:EC:88:AE:0A:26:AF:B5
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:41:94:2d:4c:c1:de:b6:5a:a1:62:b0:3d:91:c7:58:07:a9:
6e:0d:03:38:4e:66:9c:8a:10:fa:42:c9:63:cc:cf:27:7d:24:
60:70:01:8b:25:87:cf:e1:e6:e7:b8:4b:94:df:bb:19:b5:07:
f4:a0:d8:19:56:3b:8c:95:eb:9f:9a:f2:dc:d2:14:c1:21:c5:
c4:df:b0:61:b6:0a:4e:86:a3:c1:28:f1:ee:8b:6d:2e:5e:f6:
17:59:08:26:b7:39:cb:69:f3:cd:29:a1:67:68:0d:f9:3b:79:
6b:d5:83:74:68:46:48:49:e7:17:d7:b7:ef:f3:7c:9f:8b:16:
f9:04:86:63:9e:08:e5:6c:5d:e1:fd:62:82:0c:4a:c5:8c:a4:
99:01:a4:9c:dd:b5:fc:35:74:44:e2:9d:28:5c:9b:e9:2d:ae:
2f:fc:a1:f1:01:33:17:00:b6:9d:b2:7c:d5:c0:55:85:34:d5:
f9:de:dc:9a:2b:ee:fe:cd:30:e6:05:a4:a0:d5:79:ae:85:2e:
75:07:cc:10:5c:ae:65:83:ae:9e:8b:ae:79:66:ee:a4:0e:da:
85:1c:9d:92:76:25:50:5a:aa:f5:ba:5d:15:15:c0:b8:d6:24:
21:ca:15:71:2b:01:50:76:48:8c:1e:ca:f1:c5:01:9a:22:a6:
77:4e:16:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:59:56 2026 by rpki-client