Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
File: nSh1M866BkWhSM8QyMJ-qachoJ0.mft (raw, json)
Hash identifier: 3tnXc5KdCoGjWJMj2cq4JSSZdPVixPlJi7ng36IyLcE=
Subject key identifier: 36:9E:E2:B3:BA:BB:63:94:B6:1F:5F:46:39:39:A5:0F:98:DD:1E:D8
Authority key identifier: 9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
Certificate issuer: /CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Certificate serial: 019CAEA3A113BD9158B20CA438511566B1F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 13:01:25 +0000
Manifest this update: Mon 02 Mar 2026 13:01:25 +0000
Manifest next update: Tue 03 Mar 2026 13:01:25 +0000
Files and hashes: 1: 54EH0AkM2oIGqv7eAmOmOB-xeho.roa (hash: NM/JAZ4ZRze3goIGV4nxJHsbs+egnPq8XUH12SQCKoo=)
2: dqQcATTiVDcYhuyOfiuaEN-dzH0.roa (hash: vdWyxZWoqaf18qoRAgHeLHy8Ubdk/kl3p3xQIpz4Who=)
3: nSh1M866BkWhSM8QyMJ-qachoJ0.crl (hash: Lk+wdcEmEzQ7wWnU5T85axeqUuvwMWPeesjHi2SZWS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a3:a1:13:bd:91:58:b2:0c:a4:38:51:15:66:b1:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d287533ceba0645a148cf10c8c27ea9a721a09d
Validity
Not Before: Mar 2 13:01:25 2026 GMT
Not After : Mar 3 13:01:25 2026 GMT
Subject: CN=369ee2b3babb6394b61f5f463939a50f98dd1ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:d8:b2:70:9b:83:57:d9:16:e5:a4:c0:59:44:
d3:6e:52:a5:01:a4:3c:ca:83:ee:6b:c6:71:75:b9:
ac:01:ef:09:2a:6f:91:97:03:5f:b0:55:71:ba:76:
c3:92:c6:8c:e2:20:d8:3e:03:3d:42:3e:37:2c:ea:
62:fa:26:d3:19:01:39:b8:98:75:3e:b4:80:ec:fa:
bf:3e:e9:3c:5d:0f:73:7c:b6:bf:cb:8a:25:42:58:
ec:71:d4:e1:c5:6e:13:60:29:c7:4a:d9:14:87:07:
6a:dc:52:cc:c9:2f:d2:cd:94:04:b3:1d:9c:37:45:
65:8e:2b:13:22:dc:1f:cd:0b:c3:cd:da:ff:d4:c3:
77:4b:ee:8c:72:5e:4c:b7:e7:d1:b2:3a:1f:c7:d9:
6a:1c:cd:c9:81:bf:08:6a:e4:94:d2:ed:96:6b:08:
58:3c:6d:88:ae:74:2e:c4:c9:9b:40:9e:1b:62:87:
c8:3c:94:62:f5:ca:49:0d:cd:23:fd:1d:51:a4:09:
38:43:73:4a:45:b0:28:e4:4b:a5:82:d8:2b:8c:5f:
ed:80:27:8d:be:9e:f4:29:6c:50:87:5b:23:5d:5c:
58:fc:2f:68:4a:da:09:0e:f0:2a:19:56:ca:4d:77:
47:bd:fc:21:19:a2:e1:2d:e6:44:75:9a:b3:17:78:
16:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:9E:E2:B3:BA:BB:63:94:B6:1F:5F:46:39:39:A5:0F:98:DD:1E:D8
X509v3 Authority Key Identifier:
keyid:9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:24:5a:da:d4:20:b6:29:68:31:88:56:1e:f2:e0:b6:c1:19:
d8:e8:aa:79:e0:33:51:69:4a:e4:fc:06:af:c5:82:92:dd:78:
fc:ec:ab:7f:5f:67:33:4d:64:99:8a:4d:f2:5f:2f:34:59:f1:
1c:d7:5d:7c:97:9f:a6:31:4c:69:94:64:14:1e:17:10:19:85:
1b:a0:f5:41:52:d7:ae:ee:de:8a:16:da:25:39:65:28:0a:da:
3b:ea:37:e5:94:2a:00:ed:e4:67:9c:1c:21:36:4c:7b:a3:8b:
2c:90:6c:48:de:79:26:91:ac:c0:04:fc:0d:7b:34:9e:fe:55:
da:45:f9:8b:5e:73:1c:8f:2b:0e:5b:04:e6:c4:97:ab:18:95:
59:82:e1:ef:32:04:98:fc:af:99:ef:1f:a5:5b:56:17:fd:b5:
59:7e:32:19:1d:48:8e:6b:48:ac:84:9f:54:52:0a:c6:2d:56:
6d:10:73:dd:21:3e:1c:bf:11:7f:32:ae:53:d0:2b:3b:13:9a:
53:74:1f:e9:0b:6b:30:0a:68:97:8e:89:b1:65:cb:e6:f5:54:
b4:1a:59:b1:1f:dd:c7:d6:4f:07:62:78:6b:c1:fc:f6:57:9e:
2d:a9:dd:6f:8f:6f:00:c2:f4:04:4c:1f:be:3d:86:eb:bd:fe:
de:4b:a7:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:10:51 2026 by rpki-client