Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
File: nlaYDUienFO8gp8-jWPTg_ONDeM.mft (raw, json)
Hash identifier: UGDgvw+adcLlBi1DePrYisnUbnLsbkbuZHfgmXeJyxk=
Subject key identifier: DC:EF:4A:7D:33:AE:4A:C9:40:2F:EB:DC:A0:52:78:D2:57:90:82:A7
Authority key identifier: 9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
Certificate issuer: /CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Certificate serial: 019D9B506C56F0C285160EFECBD3C1927BED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
Manifest number: 181F
Signing time: Fri 17 Apr 2026 12:00:32 +0000
Manifest this update: Fri 17 Apr 2026 12:00:32 +0000
Manifest next update: Sat 18 Apr 2026 12:00:32 +0000
Files and hashes: 1: Ty0AHGlJ9RoCTN7szHoodFNrVgY.roa (hash: CDSZ7X9fhOdv3vxjKS4CoPN0JEb8cRxrZ3+xOxMLrhk=)
2: nlaYDUienFO8gp8-jWPTg_ONDeM.crl (hash: 5gSEC3LXSP1/YE9lU+LwKMchtYtIVzQn4DMsomH+qGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:6c:56:f0:c2:85:16:0e:fe:cb:d3:c1:92:7b:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3
Validity
Not Before: Apr 17 12:00:32 2026 GMT
Not After : Apr 18 12:00:32 2026 GMT
Subject: CN=dcef4a7d33ae4ac9402febdca05278d2579082a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ba:8d:d0:be:d6:fb:a0:94:1e:f4:80:d5:0b:
17:b4:f8:37:c1:3f:97:b2:13:a1:6a:b7:58:8f:49:
ef:be:0c:51:94:89:c2:9d:5e:4e:57:b0:66:64:da:
69:e5:4f:68:33:ab:4d:40:eb:cc:a7:e1:43:64:2f:
7f:a9:7e:83:68:b1:89:36:c7:fd:81:70:9b:62:59:
84:5f:57:20:35:6b:ae:b8:ab:e8:04:b9:b5:8b:ee:
e5:23:3d:fa:b9:48:78:f5:2d:48:b3:b9:a4:06:40:
b8:69:13:1c:8e:4f:99:c6:61:73:66:4d:f1:c7:2b:
cf:40:ec:3c:cf:1b:76:03:ca:c8:35:5f:07:18:78:
c7:fe:10:0c:4d:f3:bf:74:d6:e7:1f:75:bc:20:44:
da:18:fb:f8:bb:c5:28:79:59:79:b9:41:db:aa:57:
61:52:cb:9e:98:7e:4d:01:4e:85:d5:90:9f:72:d1:
ea:80:33:09:91:ed:96:c0:94:82:d1:09:0f:ae:fe:
6e:39:14:f4:93:73:3b:f1:e0:82:0a:3c:61:be:e1:
f8:13:a9:4a:68:92:92:ba:58:23:72:5a:3c:15:38:
d6:76:c7:11:0b:01:91:73:56:39:0c:14:8f:4c:4d:
f1:0c:67:ea:0a:37:f7:65:dd:e4:fc:1b:b6:04:9c:
5d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:EF:4A:7D:33:AE:4A:C9:40:2F:EB:DC:A0:52:78:D2:57:90:82:A7
X509v3 Authority Key Identifier:
keyid:9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:9e:55:b8:4f:48:95:d2:a8:99:25:d9:05:21:4c:bb:ca:26:
b4:74:f9:61:f2:59:73:28:17:7c:11:2f:7c:09:3b:ea:0f:de:
fb:12:a4:72:86:d0:c7:cb:5f:d1:45:a4:33:df:62:13:f9:64:
93:96:24:8c:76:5f:44:8b:a2:d1:20:7e:19:1e:4e:b8:d2:77:
ed:14:17:8b:f2:a5:ae:03:9e:c5:77:26:4e:7d:aa:7a:de:f3:
7f:78:cd:b7:11:b9:a7:3a:cf:68:0f:fb:f5:8f:bf:de:44:e5:
ba:ec:7f:b8:a2:00:f6:3a:70:40:c1:84:bd:cf:82:0d:1e:54:
42:95:cd:cd:c2:59:43:0b:eb:bb:88:2d:4d:8c:a6:7e:3c:3f:
0f:fc:a7:34:a3:f6:c2:26:88:94:1e:8a:ad:82:ee:0f:a8:f6:
71:fb:83:29:70:18:4d:fa:e3:98:16:e4:eb:91:f1:dc:4d:4f:
25:f2:fc:94:c6:55:65:2d:79:2b:a3:72:a1:3b:40:0d:22:e3:
82:c1:86:24:0a:a2:d1:a0:f3:60:63:52:59:d5:ce:d9:35:29:
16:f6:45:8a:ea:58:58:be:69:9f:47:5c:8b:50:a4:2d:ef:a2:
05:4b:8b:2b:a5:55:8b:0c:cf:89:9b:28:59:e8:06:a8:c8:53:
74:73:9c:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:21:29 2026 by rpki-client