Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json)
Hash identifier: CR7N/x5naLBvUA4lxoiiTwK/sp1ozCH6WgXWW72fYJs=
Subject key identifier: 4B:7B:B6:9C:20:8B:8E:38:E2:82:FA:5B:65:E6:96:36:27:0C:AC:62
Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d
Certificate serial: 019D98BD9AA842F612EF1FEF215D0EC0779C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
Manifest number: 0FA6
Signing time: Fri 17 Apr 2026 00:00:55 +0000
Manifest this update: Fri 17 Apr 2026 00:00:55 +0000
Manifest next update: Sat 18 Apr 2026 00:00:55 +0000
Files and hashes: 1: 8QeOnl1jSGn4_0NxM6NuGpN-0Jo.roa (hash: J4omMw3D0N9tMXhiPZ3E3pOd7uQCU3TjcYrnPrhAQ04=)
2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: Kx4caeM+N/QWWzUwHIDmzjk4dAmKSRlTXYRYuCW8wa8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:9a:a8:42:f6:12:ef:1f:ef:21:5d:0e:c0:77:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d
Validity
Not Before: Apr 17 00:00:55 2026 GMT
Not After : Apr 18 00:00:55 2026 GMT
Subject: CN=4b7bb69c208b8e38e282fa5b65e69636270cac62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fc:23:9e:d9:aa:12:26:a0:63:a5:30:c6:b8:
47:10:f7:0f:10:c6:78:76:b1:c4:68:be:3c:a1:22:
54:da:2b:52:bb:84:4f:d5:e4:e2:44:53:98:ef:ec:
34:3b:25:75:15:d4:c2:18:50:8c:48:1b:94:f1:b0:
7e:84:20:e1:09:9a:97:79:9f:a3:0d:84:29:c9:69:
dc:89:1b:89:1c:51:32:a6:3e:bb:39:6f:6d:c9:d0:
a5:29:1a:c3:54:1d:2a:06:fd:0b:33:83:e8:24:0c:
c7:73:aa:a0:83:60:9e:d3:02:70:3d:e1:ba:0c:65:
2a:99:a7:59:5a:3c:22:c2:a1:6e:86:14:3a:1e:b9:
59:2f:26:9a:58:63:62:bd:0c:9a:9f:cc:32:1a:88:
69:f6:33:dd:2f:a6:41:d7:d3:5c:05:2d:ca:09:2c:
7e:af:05:27:46:78:f4:8e:cb:1a:de:73:56:1f:00:
3d:5c:02:3b:58:16:df:a0:f2:96:43:cb:6e:20:45:
34:87:7c:60:2f:a2:c2:32:7b:a8:a6:c1:71:e7:e9:
43:90:d7:ff:60:b8:99:e0:e1:9b:30:17:3a:f5:cf:
a6:47:9a:f6:fc:3a:19:94:da:2a:ab:97:40:31:3a:
4a:7d:59:f8:77:14:c1:7a:9a:b9:df:de:85:b6:c4:
83:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:7B:B6:9C:20:8B:8E:38:E2:82:FA:5B:65:E6:96:36:27:0C:AC:62
X509v3 Authority Key Identifier:
keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:13:aa:71:c2:3d:54:99:c3:0e:fe:b6:98:63:eb:0b:8c:ae:
ed:67:6c:e3:40:8e:c5:a7:e5:f0:1a:e8:83:bd:33:c1:a6:e5:
09:12:91:fa:50:3d:2d:21:50:4a:03:08:d0:1d:e2:17:52:d1:
e5:cb:1e:4e:9b:af:06:90:2d:07:06:8a:60:42:85:3a:cb:97:
e0:8c:dd:b3:c7:5a:5a:b6:4b:87:04:10:27:1b:a1:eb:5d:63:
1a:c9:99:c0:7a:c1:63:2c:96:79:68:1c:40:11:27:f3:6c:6f:
14:be:dd:1f:7c:67:37:24:c2:b1:70:01:74:38:7f:eb:f2:2e:
19:36:16:c7:05:1d:93:19:86:4b:2d:32:53:46:c9:fa:93:13:
b6:fe:54:18:01:85:6e:bb:02:35:ea:1e:c3:fe:e6:b1:dd:ff:
b4:da:02:ab:43:ec:81:f8:1f:3b:2b:81:f1:b0:0b:6e:2d:57:
8c:5b:b5:bb:3c:5a:a5:9b:e7:79:c9:bd:5c:ad:1c:db:40:be:
7e:5e:9a:d9:c9:98:3a:5f:14:f6:dd:2b:67:d7:4e:f1:8b:85:
61:c9:b2:eb:36:2e:ee:68:8c:c9:70:1e:04:15:8a:d4:bc:99:
46:67:4b:01:e1:1a:3d:6e:16:87:2b:b6:d8:d2:fb:f0:3c:a2:
b1:c8:d1:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:53:33 2026 by rpki-client