Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
File: rN3HO1mh_N7iLiWCTUCswnKGqlI.mft (raw, json)
Hash identifier: ZLOh1M7WJBt/h5c0eVtuSaNwkFZveg0fpgxXDkvUidE=
Subject key identifier: ED:2B:67:A9:CA:C0:E7:2F:0E:EE:22:D6:95:42:89:2A:85:9D:6A:6C
Authority key identifier: AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
Certificate issuer: /CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Certificate serial: 019D9998F3528F619B11EE134D7977BF721B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
Manifest number: 051B
Signing time: Fri 17 Apr 2026 04:00:30 +0000
Manifest this update: Fri 17 Apr 2026 04:00:30 +0000
Manifest next update: Sat 18 Apr 2026 04:00:30 +0000
Files and hashes: 1: oMb2k7Oz9unm3siEKObsvSGOu5s.roa (hash: pGiHyUdRro6M/TUFejm603qJXDKgL9TMHqLZBCWVjz4=)
2: rN3HO1mh_N7iLiWCTUCswnKGqlI.crl (hash: aJabbRjmfSHWHI0SY71wAN+BE19AK95UEQd6i67N3xM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:f3:52:8f:61:9b:11:ee:13:4d:79:77:bf:72:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Validity
Not Before: Apr 17 04:00:30 2026 GMT
Not After : Apr 18 04:00:30 2026 GMT
Subject: CN=ed2b67a9cac0e72f0eee22d69542892a859d6a6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:70:94:d6:5a:95:b7:13:c6:04:21:3b:9d:61:
8c:a7:88:d3:ae:a8:3f:45:27:0d:fd:31:73:af:fb:
25:cf:22:a1:87:40:8a:39:ca:8f:78:53:f8:4e:60:
5d:77:91:2d:ef:44:66:0c:b5:ac:83:42:8c:c2:26:
4b:8b:2d:27:a8:f7:34:93:d3:db:23:86:4f:67:11:
3f:64:8c:84:25:bd:25:ea:44:ff:e8:c6:49:5c:b7:
03:2e:c9:44:68:dc:f4:99:e5:51:52:37:8b:75:84:
22:98:cd:40:54:ae:c8:29:0c:ee:dd:0f:da:b3:18:
1b:ea:9a:1a:76:3c:7f:2a:60:e8:35:bd:e0:33:9c:
e7:73:1b:ef:98:90:85:31:09:93:78:58:9a:0d:7c:
0e:0d:ad:5e:7e:e1:51:59:ee:4d:7e:67:47:2d:83:
68:5f:c9:43:21:f7:60:64:58:b7:38:31:31:72:f0:
0d:01:9f:64:0f:20:c1:ba:4c:e6:1c:e8:f1:7d:91:
4c:56:4f:82:f2:0b:27:92:b7:e5:5d:bc:62:a0:37:
b7:ff:da:c1:7d:43:a2:c9:81:8f:66:d6:71:5d:bf:
6c:59:bf:9e:2d:89:40:22:e3:91:98:d6:d5:59:7a:
e9:4c:d7:99:fb:b1:c5:fb:78:b9:b2:1d:2d:d6:d4:
39:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2B:67:A9:CA:C0:E7:2F:0E:EE:22:D6:95:42:89:2A:85:9D:6A:6C
X509v3 Authority Key Identifier:
keyid:AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:c5:95:66:ed:49:25:1b:78:36:05:f0:f1:ae:c8:32:6a:ea:
cd:0f:e1:27:04:0f:a8:e9:9e:3a:92:cc:d8:4e:16:b6:42:fa:
eb:b1:ec:d5:d1:d9:d3:48:33:24:ea:ed:e7:da:89:c4:8c:b7:
63:8a:49:48:fa:df:b5:8e:d3:99:4b:f5:72:80:af:61:cd:98:
16:2e:62:ca:7a:70:85:7b:5a:2e:fc:ab:8c:59:18:8a:d6:a0:
e9:85:b6:07:80:d0:77:b1:b6:04:81:70:c5:34:ff:79:6b:be:
a9:34:bb:f4:3f:66:a4:d4:6c:f3:b9:73:9d:df:10:b8:1b:a6:
ad:91:62:5e:39:ff:23:b6:26:59:5d:ab:ee:28:db:f9:b4:ea:
d7:ab:0d:f9:60:fc:c0:a5:d5:31:ed:13:d2:8d:c2:40:79:7f:
42:74:6c:b5:48:75:cc:09:93:a6:2b:8c:ad:12:d7:de:48:6a:
32:87:ea:70:15:b5:a6:e5:4a:f5:1d:e1:74:d0:eb:79:85:7b:
e0:27:70:ab:cf:46:8c:5a:73:be:d4:b8:b4:00:0b:34:2a:a8:
9b:35:5d:bd:6b:0e:17:5d:b0:e3:7d:86:94:c9:9f:84:ef:02:
28:83:23:10:51:d0:83:0c:05:7b:90:17:4d:20:cc:ed:0a:50:
3e:06:6b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:47:17 2026 by rpki-client