Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json)
Hash identifier: 9ftx10z0pjTdGP3lKN1MYYeVGJo3qJx+bFMfZkOL1hg=
Subject key identifier: CD:32:3D:DC:67:A9:19:B0:97:F8:3B:28:FF:43:F4:5C:6D:39:EB:3B
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 019D9BF5CDE69035E085F5C7C2D034EFA881
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 15:01:10 +0000
Manifest this update: Fri 17 Apr 2026 15:01:10 +0000
Manifest next update: Sat 18 Apr 2026 15:01:10 +0000
Files and hashes: 1: eypzd6poG3jDCG2V-Hkvi0h-uqk.roa (hash: a6MGVLLBIxQKSFoYyBfEEcE09ol5itCNEXdRhC5N+Ao=)
2: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: 6U9Aveb/ly6mfwsqEZkNJbzAcsgMrpAwH6RBDtFJQ/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:cd:e6:90:35:e0:85:f5:c7:c2:d0:34:ef:a8:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Apr 17 15:01:10 2026 GMT
Not After : Apr 18 15:01:10 2026 GMT
Subject: CN=cd323ddc67a919b097f83b28ff43f45c6d39eb3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:59:69:95:38:e8:dc:12:9b:d9:82:4d:5b:10:
86:c4:0a:7c:52:e6:a1:d6:f6:cb:cc:b5:4f:25:80:
a3:ec:55:1b:d9:8f:b8:63:2e:79:0a:d5:52:90:28:
83:48:93:66:88:7b:11:e8:43:c0:9e:9c:3d:23:c2:
68:7d:97:6a:9a:01:f5:8f:f7:d8:db:68:f6:3b:12:
d6:5c:51:6f:d2:1e:8d:00:a0:78:22:6b:42:30:f2:
e8:15:bd:53:2f:32:de:f1:e9:be:29:27:a4:a0:47:
13:ff:31:35:fe:f7:38:2c:d6:0d:6f:1e:37:38:68:
1f:63:3c:60:8e:cf:31:aa:32:36:0e:10:6e:b3:d9:
29:a6:8e:d4:88:db:ca:02:17:24:26:df:fe:8c:f7:
b2:ad:00:57:b3:f3:e1:b9:cc:25:ef:63:17:87:7a:
c5:59:5f:e3:a1:e8:fb:eb:44:64:95:1d:24:42:a3:
e3:6d:e5:d0:9a:32:8c:75:d8:36:a1:99:40:6a:aa:
97:33:93:a5:89:05:c0:92:09:77:51:b5:e1:26:90:
10:7d:67:0a:93:8f:45:27:84:59:a3:4a:93:29:0a:
5b:be:b1:b0:64:e2:08:bd:24:cb:8a:c2:e4:75:98:
99:ba:94:8d:c4:15:e8:2c:3a:37:8c:44:5f:27:bf:
f0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:32:3D:DC:67:A9:19:B0:97:F8:3B:28:FF:43:F4:5C:6D:39:EB:3B
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:1e:e0:39:92:9a:d5:2f:d8:fa:f4:23:f5:95:65:90:8c:8d:
56:ea:8f:2a:12:d6:d3:ba:ba:ef:ff:9e:68:e9:d8:e9:0f:97:
65:cb:ac:97:15:86:1a:1a:50:61:e0:a0:d8:9f:e7:60:4f:84:
06:74:a4:c0:45:9a:5d:1d:fa:dd:6a:c9:de:b8:0c:4e:69:cd:
a3:8a:a9:ef:67:18:a9:eb:ea:9d:e3:5c:7f:f5:57:22:4c:aa:
73:fe:25:c4:f8:24:42:9d:8d:15:6f:6f:44:fe:3b:52:f5:ab:
3f:d9:e3:06:4a:2b:ab:18:c8:b5:1b:e5:d0:8e:12:00:ae:57:
51:b5:f3:c6:f8:ad:ed:6c:c5:dc:5f:ec:a7:fe:ff:3b:fa:11:
b3:c3:76:87:a1:df:14:a8:12:56:23:0d:d2:07:6e:59:b7:d8:
5c:1c:fa:0a:79:ed:58:9a:e8:42:90:d5:49:8b:4c:1a:f7:38:
35:16:08:1f:c7:98:1b:2a:ba:85:74:e3:c2:83:e5:74:1d:bf:
27:18:06:1a:39:dc:70:60:6c:87:34:f7:3e:f1:ea:26:f2:7a:
72:9f:12:00:86:3e:42:0a:1a:2d:4f:db:8a:55:04:3b:9a:b3:
80:ce:40:b9:94:1b:95:69:9e:11:70:e9:31:d5:bc:fe:3b:9b:
a3:68:f4:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:48:24 2026 by rpki-client