Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
File: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft (raw, json)
Hash identifier: zHxOtSGqvrSbapqxa31tPg+tbt8M1rqFZ14akF+eJ5U=
Subject key identifier: C2:53:7E:F8:40:9D:01:27:5C:4A:55:69:35:6A:6C:1D:20:2C:7F:78
Authority key identifier: 9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
Certificate issuer: /CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Certificate serial: 019D98868DC363316F2ED8B670A11A890790
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
Manifest number: 0A55
Signing time: Thu 16 Apr 2026 23:00:48 +0000
Manifest this update: Thu 16 Apr 2026 23:00:48 +0000
Manifest next update: Fri 17 Apr 2026 23:00:48 +0000
Files and hashes: 1: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl (hash: 8EUGOVNScHV12yKevQWWTrLMLdwzLtbtLT0Qobqph8w=)
2: sao4QdKJ2zOtzhzLqEmuNyMN0as.roa (hash: PzIbh0KTO1J4efJaWw/Rzl0kAt4CC7fNxs+1iCoN+dg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:8d:c3:63:31:6f:2e:d8:b6:70:a1:1a:89:07:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2
Validity
Not Before: Apr 16 23:00:48 2026 GMT
Not After : Apr 17 23:00:48 2026 GMT
Subject: CN=c2537ef8409d01275c4a5569356a6c1d202c7f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ff:2f:16:26:b5:08:2e:b4:41:0f:c6:c4:96:
7a:3c:d8:9e:93:fc:c3:25:ad:4a:2c:d1:93:af:a3:
22:c8:ef:7a:75:41:27:16:a7:fb:70:80:a2:e6:8a:
53:a6:be:58:6d:c8:93:d7:aa:3e:ee:d6:ae:b9:d2:
43:e0:57:f8:4e:e7:54:d5:5b:a6:fd:2a:51:78:52:
ea:64:e9:e2:95:a9:d7:90:07:66:72:81:0a:4e:53:
a5:d5:02:6b:80:5c:ce:eb:93:1e:b0:7f:00:27:98:
54:24:99:68:b2:5f:fe:36:1a:16:1c:5e:2e:92:9e:
6f:70:2e:05:4e:ae:3f:2e:31:3c:9e:4b:f8:c7:07:
8a:6f:8b:c7:87:e4:f4:8c:df:58:21:f6:b6:16:3a:
c3:6a:30:f0:8a:ec:ff:ed:a8:fa:6b:ed:75:95:27:
f6:9c:0c:32:52:32:89:79:43:11:0b:cb:5b:8d:cb:
c7:6f:97:36:e7:5e:4a:20:97:bc:57:0b:b4:c3:36:
06:13:96:99:fb:5d:d3:30:ac:5d:3f:7f:43:6b:99:
50:23:a4:ca:77:c0:6c:de:bc:1f:2b:57:db:07:14:
66:07:8a:54:d2:18:31:b1:5d:95:f4:29:f4:30:93:
62:7a:c6:cc:93:37:c0:26:55:8c:9c:4a:0b:ee:c2:
91:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:53:7E:F8:40:9D:01:27:5C:4A:55:69:35:6A:6C:1D:20:2C:7F:78
X509v3 Authority Key Identifier:
keyid:9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:3d:72:d5:64:59:2f:de:49:63:74:64:d7:cd:fc:c3:ef:b7:
5f:c9:9f:31:dd:b4:f0:5e:95:24:ee:a1:f7:12:cb:1a:ea:c2:
e8:e4:9c:25:04:4d:3b:f0:7b:73:93:6c:7a:78:61:11:7c:6e:
c5:b6:77:9e:77:98:1d:9e:17:7f:54:bd:28:d1:eb:0b:e4:6d:
0e:c5:bc:2f:59:f3:9a:22:c4:f7:0d:2b:aa:88:03:7d:6f:39:
1f:f6:74:95:25:b1:9a:83:7a:77:38:f7:9a:0e:ac:4a:04:33:
dc:74:3c:58:42:de:d6:c0:97:eb:25:5e:6a:7b:46:99:b6:a4:
25:0d:ab:8d:fc:cc:26:a0:15:d5:1b:86:0f:6f:26:fe:3a:af:
44:bb:6f:ec:3c:70:e3:de:e7:95:eb:0e:0b:ca:e6:ac:e8:b3:
f2:0b:7c:44:93:44:6b:0b:ed:ff:c3:60:c9:6d:4d:d9:1a:a7:
39:1e:56:4e:8b:c1:18:f1:87:f7:32:bd:2a:5b:c0:62:d2:2b:
7a:b7:1e:1f:a2:af:3f:4e:c8:30:40:77:dc:c2:f5:08:34:2d:
3b:e8:a7:a6:e4:ed:66:e7:93:b5:c1:3e:17:24:20:46:1b:8b:
6c:d8:a9:e1:ff:44:9b:ba:ee:eb:cf:d0:f0:ae:31:4d:e2:a6:
0b:bc:cf:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:49:20 2026 by rpki-client