Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
File: N1_CEWNZalFHLA_xhKZJkdyDpsE.mft (raw, json)
Hash identifier: OkE1prgneT5YKnXLym4ozU4/38sS5dBdFwbAvyZiWvU=
Subject key identifier: 7D:26:24:87:8A:17:6D:A0:3E:68:02:69:8E:6D:1A:09:51:C4:06:BF
Authority key identifier: 37:5F:C2:11:63:59:6A:51:47:2C:0F:F1:84:A6:49:91:DC:83:A6:C1
Certificate issuer: /CN=375fc21163596a51472c0ff184a64991dc83a6c1
Certificate serial: 019D98BE143111652CD9004D252F9A5BAA33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
Manifest number: 1094
Signing time: Fri 17 Apr 2026 00:01:26 +0000
Manifest this update: Fri 17 Apr 2026 00:01:26 +0000
Manifest next update: Sat 18 Apr 2026 00:01:26 +0000
Files and hashes: 1: N1_CEWNZalFHLA_xhKZJkdyDpsE.crl (hash: S2SJCOKjhhiGx4nmn5BhMDF3u92x5OZIb0/XhiG5vC4=)
2: YLBXJ11mEGO5PlbXThO83EcE_Ns.roa (hash: 35AN0IfH7ydkQxRJiaol/kYL6o8B/ZFyI8+hr+xzEtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:be:14:31:11:65:2c:d9:00:4d:25:2f:9a:5b:aa:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375fc21163596a51472c0ff184a64991dc83a6c1
Validity
Not Before: Apr 17 00:01:26 2026 GMT
Not After : Apr 18 00:01:26 2026 GMT
Subject: CN=7d2624878a176da03e6802698e6d1a0951c406bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:40:ba:bc:fc:7e:6f:cb:ff:cb:eb:28:c8:db:
66:6b:5c:d2:43:8e:06:77:ac:08:0d:75:15:03:e7:
aa:0f:43:d2:03:62:dd:15:9e:6e:0f:fd:c2:4a:fc:
02:af:a4:7b:9b:1d:0a:21:16:71:e0:af:7a:40:9d:
3f:a3:a8:70:68:50:ab:57:32:74:68:e4:eb:30:dc:
67:8c:5c:0a:d0:e8:7b:7f:bf:7d:e5:d3:30:c2:92:
48:39:ad:2b:b0:0e:10:79:1d:c2:f2:d1:54:d6:47:
32:c2:c7:e5:7c:02:11:a2:04:7c:de:7c:4f:1b:46:
c8:4c:20:22:ed:ea:d0:dd:a7:1a:53:e9:13:16:90:
1c:a7:ad:e9:45:75:d6:68:07:bf:8b:9f:07:68:fb:
8c:90:ab:47:35:fd:2a:ae:16:55:09:05:87:e4:5e:
ce:1f:06:71:da:83:2e:b0:ac:c8:7e:7f:ec:4b:64:
1a:04:43:67:07:04:cb:ac:83:64:92:72:f9:dc:5d:
37:07:b9:c4:96:c3:a6:bc:4c:33:eb:a7:07:6a:46:
72:19:5b:3a:fa:dd:bf:81:e8:db:b2:9d:f0:02:52:
89:66:a3:d1:8e:41:7c:b0:bb:3f:d1:a3:c3:f9:83:
02:5d:b1:bf:30:44:33:16:90:b4:af:27:b7:bb:2e:
91:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:26:24:87:8A:17:6D:A0:3E:68:02:69:8E:6D:1A:09:51:C4:06:BF
X509v3 Authority Key Identifier:
keyid:37:5F:C2:11:63:59:6A:51:47:2C:0F:F1:84:A6:49:91:DC:83:A6:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1_CEWNZalFHLA_xhKZJkdyDpsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a2d47e-d114-43a1-bdca-59005b2981d3/1/N1_CEWNZalFHLA_xhKZJkdyDpsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:ab:06:24:7b:95:2f:99:52:93:08:8f:92:1b:e7:ba:b8:77:
f7:93:3c:c9:1b:4f:b9:67:d1:4c:d8:e9:fe:9c:5e:0d:10:2e:
b4:96:0f:3c:bb:7d:79:e4:b6:bb:9c:0d:b2:77:1a:c2:2d:68:
9e:6e:ef:f9:86:ab:bd:2b:66:3c:16:da:1d:6c:83:58:32:6a:
7d:7f:cb:2d:08:d3:3b:e9:71:f8:48:16:1e:a8:fb:53:20:6e:
90:cb:d5:94:48:22:d3:f9:88:b4:03:df:2f:40:5c:dd:f6:34:
ee:5d:df:09:17:70:54:10:0b:00:81:47:c1:c1:99:68:5e:1a:
70:13:b9:06:70:1e:f7:bf:0a:20:02:12:01:36:89:62:ee:30:
c3:63:e6:02:26:4e:1d:17:0b:f2:4c:92:77:b0:47:7d:ba:4e:
2f:11:6b:62:7c:9d:88:1d:10:4f:9f:e9:e8:b5:30:85:95:fb:
5c:95:be:d6:58:2b:cb:d4:69:50:ac:7c:ad:ac:5e:48:f2:54:
9a:38:2b:18:c9:2e:83:a4:20:30:a5:47:ed:54:f1:ca:71:97:
96:0a:c1:fa:84:b5:5f:07:ba:fd:2a:4c:2b:90:82:87:a6:a9:
f3:eb:ec:04:12:fb:34:04:e9:5c:f4:ab:26:39:7c:58:9c:ca:
5b:96:3f:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:36:43 2026 by rpki-client