Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
File: nxFouFcXoUZmABtbL2yQgBmX3gY.mft (raw, json)
Hash identifier: ffMh48Qy67dnTrXUtrI9UL1vZIfKsmAgnB4G0x+sg9k=
Subject key identifier: D2:A9:DE:D0:96:C3:66:44:A3:A1:D1:51:BF:16:93:F8:40:42:20:90
Authority key identifier: 9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
Certificate issuer: /CN=9f1168b85717a14666001b5b2f6c90801997de06
Certificate serial: 019EC25B87DD724BA9C38FE2FE3E64510121
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
Manifest number: 070D
Signing time: Sat 13 Jun 2026 19:00:38 +0000
Manifest this update: Sat 13 Jun 2026 19:00:38 +0000
Manifest next update: Sun 14 Jun 2026 19:00:38 +0000
Files and hashes: 1: 4mcjlfKQeAXTF7xGEKQ2QAqMI50.roa (hash: JOKnaNGFem+HWwH7PdEKl79mLEfLJaQb9H34d4OS4AM=)
2: nxFouFcXoUZmABtbL2yQgBmX3gY.crl (hash: BNP0SJaY2IO5uz/ewZM8mE1WSkxOA9hwJE93iczCzb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5b:87:dd:72:4b:a9:c3:8f:e2:fe:3e:64:51:01:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f1168b85717a14666001b5b2f6c90801997de06
Validity
Not Before: Jun 13 19:00:38 2026 GMT
Not After : Jun 14 19:00:38 2026 GMT
Subject: CN=d2a9ded096c36644a3a1d151bf1693f840422090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c8:ac:09:0e:9f:b9:3a:35:dd:b4:8d:33:8a:
f1:53:25:0b:b2:01:60:e2:78:43:7b:7a:b4:2f:2f:
09:97:76:21:ca:14:c3:80:0d:52:21:d5:22:14:34:
bb:d1:6b:b2:dc:6f:e9:d3:66:99:85:28:33:0f:f6:
2a:f8:d9:3b:c0:fb:5e:b3:3e:e3:24:82:f9:09:3c:
e8:5c:92:c7:d1:22:95:18:2f:67:f7:af:55:e6:5d:
7e:90:b1:f2:9f:bf:65:a6:b4:71:da:dc:c4:ac:1b:
f9:fe:c3:a1:da:63:03:28:8b:fe:e2:1c:80:cd:60:
9f:34:cc:0b:5a:59:b2:7a:f2:c5:79:a1:8b:70:bf:
83:ff:ff:30:7c:f9:ea:a9:fa:d2:31:35:58:3d:6a:
b7:a6:b0:bd:6c:bf:35:8b:80:b9:10:b0:f5:9f:e7:
c5:6d:f0:b7:c5:bf:da:22:ca:d8:e6:79:0b:82:ef:
8c:26:0b:bb:1f:82:b9:f6:bf:ab:fa:08:81:eb:2e:
8f:b6:b2:d6:bf:21:a5:29:d0:14:df:76:80:c5:17:
47:20:d2:8e:97:ab:c8:12:d6:28:4d:75:61:de:f4:
cf:74:9f:01:8b:41:d1:d2:62:a7:a2:17:3a:62:f0:
63:45:5f:fa:fb:b5:26:d5:2e:6b:84:36:c0:46:71:
48:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A9:DE:D0:96:C3:66:44:A3:A1:D1:51:BF:16:93:F8:40:42:20:90
X509v3 Authority Key Identifier:
keyid:9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:c0:15:76:a8:e5:c3:c0:6f:73:2e:4e:77:eb:94:eb:fc:9f:
bc:52:d7:ce:f3:c3:c7:a5:15:7b:f5:55:b6:f1:85:98:07:b8:
0f:f2:c7:b7:4c:89:bc:cd:89:8b:a5:65:ce:1b:54:84:96:7c:
32:74:05:22:95:01:d8:ae:0f:5f:1a:6e:5b:98:9b:f9:24:64:
29:81:bd:c9:09:22:36:60:1a:85:44:6b:16:d8:6d:d1:74:0e:
fa:1b:9e:0e:2e:ba:dc:38:06:73:dd:3f:1f:58:b3:ae:32:73:
db:f3:ac:be:62:46:d9:9c:19:8d:32:1f:7e:8d:30:5b:7c:1e:
0b:43:1b:99:7c:82:08:3e:56:8f:02:87:4a:8c:09:61:51:cd:
08:43:33:be:27:b9:6c:a3:85:2b:be:6b:68:ba:b8:52:29:a6:
c2:3d:65:d6:7e:ec:ff:46:e4:52:53:91:21:58:6e:cd:c5:13:
1e:e0:3e:83:e8:df:bf:04:43:84:cb:ce:48:a2:7a:28:26:60:
f5:c8:68:ba:d4:fb:dd:c2:f4:61:df:87:5a:dd:1f:85:2a:16:
35:9f:1b:28:ce:76:49:a1:1e:00:50:b5:16:f0:cc:00:81:c0:
1f:86:7a:7e:b9:bc:a3:86:61:a0:28:ea:4f:66:f7:73:57:d3:
a6:ca:67:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:29:47 2026 by rpki-client