Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json)
Hash identifier: 1ameK22gUb6sr6xLmZIYi3JSQophi+fB9A8kX4K7tX4=
Subject key identifier: 0D:4D:0F:A4:6B:7B:73:75:B5:B2:2A:6A:F8:89:CD:7D:E8:EB:82:BE
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 019CAE6C4E6F03E6E9C0C4808069EC6D795B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 12:00:59 +0000
Manifest this update: Mon 02 Mar 2026 12:00:59 +0000
Manifest next update: Tue 03 Mar 2026 12:00:59 +0000
Files and hashes: 1: eypzd6poG3jDCG2V-Hkvi0h-uqk.roa (hash: a6MGVLLBIxQKSFoYyBfEEcE09ol5itCNEXdRhC5N+Ao=)
2: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: DuXpj/EUugeg2rrA6/Atl1HKDl2b7/OglVJr5hVxkQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 12:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:4e:6f:03:e6:e9:c0:c4:80:80:69:ec:6d:79:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Mar 2 12:00:59 2026 GMT
Not After : Mar 3 12:00:59 2026 GMT
Subject: CN=0d4d0fa46b7b7375b5b22a6af889cd7de8eb82be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:34:c1:6a:b6:2b:84:5f:35:5c:32:9b:82:46:
70:52:a3:52:db:ae:4d:45:81:d8:68:93:60:99:18:
98:f5:4c:9e:ea:d8:af:60:f5:97:a3:3d:29:2e:41:
b3:14:fa:e7:7e:d9:63:69:43:f5:d6:0f:2d:b5:cf:
17:20:0b:ab:1c:5d:7c:98:f5:f6:86:8b:8a:1c:a2:
bc:95:4f:6e:87:39:53:05:e2:86:9f:9d:8e:e3:b0:
41:d7:25:1d:33:aa:f1:29:7d:4a:ed:9e:fa:22:94:
b3:9a:88:58:5f:08:d9:e0:bf:4a:dc:af:cd:a4:3f:
23:1d:c0:06:75:31:e1:bc:f8:d8:74:88:cd:b6:93:
e5:21:56:3c:17:b9:a5:df:fd:6d:f9:77:24:6c:ab:
1a:f0:bc:e8:73:2a:67:7f:e8:8d:d5:4e:f0:f5:70:
62:a2:93:b1:ae:9b:45:7d:91:ff:1b:bb:6d:7c:ad:
dc:e1:1c:8c:ef:7a:59:cd:b7:07:d7:bd:cc:4e:b2:
6b:92:7b:58:52:07:de:f8:6e:17:56:25:22:08:90:
f8:61:4c:69:97:da:49:2a:68:ca:50:55:64:4c:a7:
9c:f6:d6:8f:1b:75:ee:1e:5b:05:97:45:ff:d0:8e:
41:f4:9a:96:e8:54:22:b9:2e:7c:7c:ba:57:b4:1d:
73:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:4D:0F:A4:6B:7B:73:75:B5:B2:2A:6A:F8:89:CD:7D:E8:EB:82:BE
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:26:e9:47:39:b5:ae:c8:9c:0f:5c:2b:ab:e3:e9:08:dd:33:
7e:90:ea:d5:d9:a4:25:d5:fb:b4:ff:43:ea:6c:aa:78:65:d9:
97:10:ed:c0:ed:d2:51:d5:bb:be:e8:34:e4:5e:90:99:77:d1:
1d:fb:63:c0:2c:fc:00:9f:dc:36:d8:a1:57:8a:e4:fd:45:ca:
15:a1:ea:35:72:f2:5d:9c:11:60:bc:fe:d7:90:c6:72:9c:3f:
ac:32:27:92:a9:23:12:2a:57:1e:4e:a0:73:c5:63:40:c1:9a:
c4:42:86:f4:66:d2:11:4f:8d:e5:96:61:73:b5:c3:a8:1a:26:
ca:0f:2a:e1:36:1a:ee:5e:86:36:6a:9a:03:b7:c5:43:4c:c2:
a8:18:29:61:b7:c1:d1:6e:8e:8d:cc:c5:15:fc:76:b5:e1:10:
f3:1a:55:a9:37:e3:91:e7:dc:9b:9a:67:cd:4a:1a:91:6e:0f:
16:44:9c:aa:7e:d0:b8:e6:5d:9d:61:3f:26:92:61:93:29:f9:
07:2e:d9:b8:06:1c:94:70:85:ba:5e:dc:8c:e2:a1:f4:d7:43:
b0:19:19:a9:f2:3a:86:87:21:25:50:97:c3:8e:05:58:ea:df:
69:da:95:00:95:e6:c0:e9:a0:ef:7b:e6:45:63:61:61:9f:00:
45:e6:7b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:30:56 2026 by rpki-client