Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
File: nxFouFcXoUZmABtbL2yQgBmX3gY.mft (raw, json)
Hash identifier: rlnPb3RdJY8n+8DAzfptFyaFTA4Q/+oiJzWdFQD0pNQ=
Subject key identifier: 78:8C:3D:8B:9B:2D:E9:B5:FE:EB:CF:89:7E:EF:5C:B2:89:65:BC:8B
Authority key identifier: 9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
Certificate issuer: /CN=9f1168b85717a14666001b5b2f6c90801997de06
Certificate serial: 019D9AE330E24A4BAFD363B0FBE0F9FED59E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
Manifest number: 0674
Signing time: Fri 17 Apr 2026 10:01:13 +0000
Manifest this update: Fri 17 Apr 2026 10:01:13 +0000
Manifest next update: Sat 18 Apr 2026 10:01:13 +0000
Files and hashes: 1: 4mcjlfKQeAXTF7xGEKQ2QAqMI50.roa (hash: JOKnaNGFem+HWwH7PdEKl79mLEfLJaQb9H34d4OS4AM=)
2: nxFouFcXoUZmABtbL2yQgBmX3gY.crl (hash: wq9b+4ycNcA/rRPc6zEOf0NJZZhQFaaZUKR4Rjz43H0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:30:e2:4a:4b:af:d3:63:b0:fb:e0:f9:fe:d5:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f1168b85717a14666001b5b2f6c90801997de06
Validity
Not Before: Apr 17 10:01:13 2026 GMT
Not After : Apr 18 10:01:13 2026 GMT
Subject: CN=788c3d8b9b2de9b5feebcf897eef5cb28965bc8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6a:56:4f:00:0b:da:f5:80:15:02:da:f7:f5:
c8:9a:aa:51:1b:1c:5a:31:3c:36:c3:f7:f0:08:05:
ec:62:de:d0:af:93:ad:29:48:ca:39:80:81:db:38:
d9:a2:23:47:db:4e:b1:b8:7c:73:92:5e:d8:f4:00:
f5:56:86:9b:ca:48:c4:7f:c4:d8:f7:df:ef:45:5b:
13:22:0e:52:60:a7:d5:24:aa:c7:29:93:a7:c9:c3:
56:ca:5a:24:d6:6d:25:3b:82:a5:b6:de:38:fe:a8:
bf:b3:e0:eb:4d:b3:e7:c0:8b:6b:b7:07:d3:c1:99:
af:c3:9b:6d:91:7a:d5:43:7a:75:4f:46:f3:69:6f:
30:31:89:97:38:97:cb:20:b4:3c:1c:23:94:70:33:
c0:ec:e6:f9:65:40:92:fc:91:9e:55:a1:ac:2b:20:
27:83:00:52:ea:fc:4d:3d:3c:1b:e0:c8:5d:5a:28:
53:6e:a8:67:fc:28:c7:94:7a:c0:ca:82:f7:c2:38:
4d:22:cb:57:25:83:e0:41:b3:a6:9c:ee:5d:0d:64:
32:9b:5e:2b:d4:26:e1:a2:a6:19:ac:a7:98:87:8c:
96:e0:c2:d7:30:66:c2:72:7b:dd:23:c0:c7:49:5c:
56:a0:25:d6:d2:bb:b9:06:e2:dc:10:ff:a0:a9:21:
49:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:8C:3D:8B:9B:2D:E9:B5:FE:EB:CF:89:7E:EF:5C:B2:89:65:BC:8B
X509v3 Authority Key Identifier:
keyid:9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:d0:06:14:8e:04:82:f9:dc:3a:30:92:07:0d:92:21:b8:9b:
41:75:c0:ac:12:57:42:07:02:b4:a7:98:a8:9d:8f:d1:de:3d:
cc:30:2e:02:87:e4:27:83:f0:59:49:8c:40:ba:e7:e7:53:80:
9a:5c:0a:a8:5b:48:cb:59:59:e7:20:d5:5c:42:59:6a:ea:16:
74:79:83:ab:81:1b:0e:33:ab:d9:3e:dc:69:d1:84:33:91:b5:
bc:b6:61:1c:8c:de:9f:67:52:2d:a1:5a:ae:da:d1:b9:70:89:
b8:b0:97:38:2e:27:b0:93:a6:a4:80:91:bf:c2:80:2d:27:d8:
02:7a:85:46:0c:24:ed:0f:d3:e2:91:f3:a7:49:e5:b8:3a:10:
19:71:6e:ca:b7:59:6a:23:2c:91:8e:2b:c0:c8:85:b2:46:9a:
30:41:9f:cb:e3:cc:ae:fb:c1:5e:42:1c:72:d0:ce:99:99:94:
24:e7:34:0f:30:7d:85:63:ec:49:b6:40:7d:d7:c0:14:f0:26:
e0:2d:83:24:3d:b1:88:a7:e3:76:16:69:e2:c3:c1:95:14:94:
b9:11:01:4f:34:45:f0:52:02:f7:fb:bb:46:6e:0c:a5:b9:31:
21:63:10:cc:82:2b:cb:d0:c1:b8:59:48:b8:b5:fd:2b:90:63:
54:a1:33:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:23:51 2026 by rpki-client