Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json)
Hash identifier: K6JC5Rmi4fPW5zL2fdjRwBmcYlVeva+amUZAi/nJN1o=
Subject key identifier: 19:7B:4A:BE:BD:5A:E4:BC:AD:DC:7E:B9:EC:CC:76:C7:5B:64:0D:9E
Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479
Certificate serial: 019D9A74DDB42A54B88CF6E024B5A44D0E88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
Manifest number: 0D84
Signing time: Fri 17 Apr 2026 08:00:43 +0000
Manifest this update: Fri 17 Apr 2026 08:00:43 +0000
Manifest next update: Sat 18 Apr 2026 08:00:43 +0000
Files and hashes: 1: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: +A8o1x5dxYaXZDAeRAKrOH84NKqKbTG/DQqIFOg94FY=)
2: uoPZT_uIWtt1y75pLuVRiaAOCA8.roa (hash: 9YrNpBfyPkS8WM22E6fKQ7KTx+jlfiKDKpzF0Ults2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:dd:b4:2a:54:b8:8c:f6:e0:24:b5:a4:4d:0e:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479
Validity
Not Before: Apr 17 08:00:43 2026 GMT
Not After : Apr 18 08:00:43 2026 GMT
Subject: CN=197b4abebd5ae4bcaddc7eb9eccc76c75b640d9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:33:94:76:bc:1a:6e:27:23:b0:68:31:d9:27:
5b:61:9a:59:c5:d3:bc:4e:88:0d:ab:06:59:b1:7e:
01:a8:34:a6:61:bd:1d:bd:44:96:a9:2e:b0:80:7e:
33:0c:d5:a0:92:88:65:fe:ac:6d:5a:6d:57:05:f4:
c1:42:9f:01:6a:4d:3f:d7:93:02:de:f5:8a:df:eb:
89:02:32:d6:b3:e4:27:79:a1:5a:09:8f:1d:d8:39:
7a:86:93:6c:d5:80:21:d9:ae:c3:c0:e5:0a:31:20:
47:a8:2e:47:74:d3:49:6c:54:c3:1f:9a:4d:e8:c9:
e4:64:a0:0f:a8:4b:b0:6d:26:c7:5b:72:cc:4a:b4:
1b:e4:bf:40:a6:25:73:46:b3:fe:7a:0a:be:56:7c:
48:44:ab:41:dd:61:af:29:50:4c:e5:66:47:ab:18:
31:86:7c:11:e7:ce:fb:96:5a:e0:e9:68:8d:99:dc:
a7:27:dd:91:6d:a2:14:38:1d:4c:f5:c2:65:eb:12:
19:e9:89:c7:d3:89:8c:88:02:70:80:10:61:8c:58:
86:fd:87:fd:24:0a:99:39:76:ed:c0:cb:bf:e8:74:
3e:25:5e:fa:3a:50:ee:4f:11:ba:74:2b:be:c0:88:
8e:29:bd:c3:3d:b6:65:2c:07:34:d5:56:b1:59:f1:
2d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:7B:4A:BE:BD:5A:E4:BC:AD:DC:7E:B9:EC:CC:76:C7:5B:64:0D:9E
X509v3 Authority Key Identifier:
keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:2d:21:f3:a1:22:4e:db:df:85:16:e8:0e:1a:41:d9:b6:0e:
5b:20:78:10:82:21:ce:7b:ba:c9:d5:48:3b:c0:bb:05:76:b2:
b9:87:c6:90:d3:2e:99:f5:77:af:37:37:90:00:94:32:0e:22:
e7:7a:ab:a0:a0:f7:ca:bb:ff:e1:6c:41:f3:6b:2b:52:59:f8:
af:bf:34:2d:fc:60:5d:fb:e0:ad:2c:64:72:c8:f9:8f:50:42:
a6:4b:ea:ff:74:9c:7c:bc:60:7a:22:1f:fa:06:0d:46:c4:5c:
27:31:58:cc:4b:52:5c:78:5f:88:3e:8e:47:27:07:08:9d:34:
a4:c9:bf:dd:64:48:aa:b7:74:a9:fe:0d:3f:78:92:91:95:3a:
b5:aa:3f:31:31:7d:43:e8:25:98:88:a1:5e:4e:59:aa:ee:21:
86:be:1c:38:c6:f5:27:f6:a9:29:3d:06:2b:33:f8:0c:63:83:
85:83:5e:7f:39:85:13:f7:ba:b1:3d:58:89:3b:7f:21:fc:a6:
65:01:7e:45:12:82:ea:3b:24:8c:71:d0:69:22:7b:b8:ca:4c:
64:2b:ca:cf:0d:58:ce:87:c9:5e:13:2b:7c:3e:f9:44:76:ea:
98:5e:48:fa:fc:fc:90:04:23:44:29:7e:1a:ce:a0:4f:db:fb:
9f:13:d5:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2adN20KlS4jPbgJLWkTQ6IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNTYzYzQyNmQxYWFlNGVkMWU3ZjU5NTM2NzQ5MDIyMDg5
ZTg0NzkwHhcNMjYwNDE3MDgwMDQzWhcNMjYwNDE4MDgwMDQzWjAzMTEwLwYDVQQD
EygxOTdiNGFiZWJkNWFlNGJjYWRkYzdlYjllY2NjNzZjNzViNjQwZDllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzOUdrwabicjsGgx2SdbYZpZxdO8
TogNqwZZsX4BqDSmYb0dvUSWqS6wgH4zDNWgkohl/qxtWm1XBfTBQp8Bak0/15MC
3vWK3+uJAjLWs+QneaFaCY8d2Dl6hpNs1YAh2a7DwOUKMSBHqC5HdNNJbFTDH5pN
6MnkZKAPqEuwbSbHW3LMSrQb5L9ApiVzRrP+egq+VnxIRKtB3WGvKVBM5WZHqxgx
hnwR5877llrg6WiNmdynJ92RbaIUOB1M9cJl6xIZ6YnH04mMiAJwgBBhjFiG/Yf9
JAqZOXbtwMu/6HQ+JV76OlDuTxG6dCu+wIiOKb3DPbZlLAc01VaxWfEtRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBl7Sr69WuS8rdx+uezMdsdbZA2eMB8GA1UdIwQY
MBaAFJ5WPEJtGq5O0ef1lTZ0kCIInoR5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmxZOFFtMGFyazdSNV9XVk5uU1FJZ2llaEhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi81NWQ1OTUtZDBiYy00YmEyLTgwYTAt
YWZiY2YzNjZiYjA3LzEvbmxZOFFtMGFyazdSNV9XVk5uU1FJZ2llaEhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi81NWQ1OTUtZDBiYy00YmEyLTgwYTAtYWZiY2YzNjZiYjA3
LzEvbmxZOFFtMGFyazdSNV9XVk5uU1FJZ2llaEhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAay0h86Ei
TtvfhRboDhpB2bYOWyB4EIIhznu6ydVIO8C7BXayuYfGkNMumfV3rzc3kACUMg4i
53qroKD3yrv/4WxB82srUln4r780LfxgXfvgrSxkcsj5j1BCpkvq/3ScfLxgeiIf
+gYNRsRcJzFYzEtSXHhfiD6ORycHCJ00pMm/3WRIqrd0qf4NP3iSkZU6tao/MTF9
Q+glmIihXk5Zqu4hhr4cOMb1J/apKT0GKzP4DGODhYNefzmFE/e6sT1YiTt/Ifym
ZQF+RRKC6jskjHHQaSJ7uMpMZCvKzw1YzofJXhMrfD75RHbqmF5I+vz8kAQjRCl+
Gs6gT9v7nxPV/A==
-----END CERTIFICATE-----
Generated at Fri Apr 17 09:46:36 2026 by rpki-client