Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
File: NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft (raw, json)
Hash identifier: BT9F3xlv70yVkGdx80D9cgBDHQ58+6RGtFGD364sWro=
Subject key identifier: BA:AB:DC:C1:72:EB:E0:9C:8D:24:48:68:29:88:45:4C:C0:9F:8B:3F
Authority key identifier: 35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
Certificate issuer: /CN=35d2929f1652f958812d099a233f33ad3445bbfb
Certificate serial: 019D996311BB059889A46CF302CF0687F831
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
Manifest number: 1881
Signing time: Fri 17 Apr 2026 03:01:39 +0000
Manifest this update: Fri 17 Apr 2026 03:01:39 +0000
Manifest next update: Sat 18 Apr 2026 03:01:39 +0000
Files and hashes: 1: NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl (hash: IGMq7sMUSeA1jjOfPGZMaYrW1e2RRa9A5XmbWSZeQxk=)
2: YgtG-eXPQuYp4oVS-PRtPNrxxe4.roa (hash: RWCfa29kamid4Jj9pOqOGZ7EXsOuYoZh2w0x+4VeWGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:63:11:bb:05:98:89:a4:6c:f3:02:cf:06:87:f8:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d2929f1652f958812d099a233f33ad3445bbfb
Validity
Not Before: Apr 17 03:01:39 2026 GMT
Not After : Apr 18 03:01:39 2026 GMT
Subject: CN=baabdcc172ebe09c8d2448682988454cc09f8b3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e5:79:3c:39:a0:d6:30:7c:1c:0e:63:82:eb:
a4:3f:83:2d:90:48:fc:3e:9a:b6:31:b0:1c:84:00:
94:62:bf:c9:e0:9b:63:2e:51:d8:90:4a:d8:60:2a:
25:16:32:69:35:5d:9d:3e:aa:a4:fd:03:bb:33:7f:
23:ba:a4:56:ce:27:2c:21:d1:7b:ad:a8:c6:24:01:
74:7b:93:f6:ad:55:35:78:72:dd:1b:d8:d4:b8:96:
6e:c4:cb:c6:10:6d:94:6d:44:ea:fc:45:6f:ee:b5:
47:e9:a4:a9:af:81:e0:1d:98:fd:5c:54:a8:67:c1:
2d:da:e5:9d:72:49:a1:f2:d5:3a:a4:81:82:17:db:
a5:64:12:b7:f4:f7:77:41:2e:0e:a3:30:c6:45:e0:
1d:a5:53:7c:fa:7d:f5:7d:5b:b2:10:2d:cd:19:a2:
ff:b0:d9:0a:fc:7f:d4:8d:9c:13:4a:8d:07:15:10:
be:4d:c0:96:4f:be:ce:9c:4e:0b:17:71:8e:af:23:
5e:20:26:57:15:0d:8f:cd:8b:93:55:82:61:82:0e:
40:b9:9c:30:62:4c:dd:22:c8:7d:1e:66:30:c5:db:
2d:a1:3e:8b:fb:14:aa:b4:70:0b:41:87:62:76:83:
c3:83:e3:4e:4c:5f:ee:6d:05:71:2d:ab:ea:b3:e0:
76:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:AB:DC:C1:72:EB:E0:9C:8D:24:48:68:29:88:45:4C:C0:9F:8B:3F
X509v3 Authority Key Identifier:
keyid:35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:77:fc:cc:89:39:61:34:46:58:ef:a5:cc:99:41:cc:eb:eb:
9e:01:f0:fa:7f:b2:b2:64:64:b6:12:31:81:d7:a3:ce:38:eb:
fe:ac:8e:34:c6:2c:61:b7:46:14:25:f4:b3:d9:35:92:ef:ba:
2b:fc:aa:4a:56:17:76:c5:e5:ce:d2:7a:55:d9:7f:69:9c:b4:
2d:cd:18:3d:d2:b9:07:31:62:9c:99:fe:3a:6d:22:a0:c3:a1:
4c:88:75:fd:3f:76:73:9c:8b:f9:b9:99:73:41:53:b0:87:28:
07:f8:f8:e4:85:f2:5c:69:b3:e8:12:21:68:d9:b8:af:5c:33:
a5:0d:d3:24:ee:50:1e:18:51:5b:16:69:e6:0b:0c:43:5b:01:
f6:89:8e:cd:c9:1c:a8:2d:ce:f5:ff:ac:1f:fb:68:a8:88:a9:
35:45:bf:5b:cd:57:ee:70:32:7f:b0:78:3b:04:03:e2:7d:a6:
aa:e2:e2:44:bc:12:b2:c3:70:bb:bf:4f:d9:18:8b:27:12:c7:
81:68:50:b1:8e:72:05:6c:9f:58:94:01:e5:09:f4:4a:34:2c:
82:c1:46:67:c6:ce:1d:71:d4:12:73:b8:f8:03:93:93:97:5d:
dc:ec:7c:2a:68:9d:10:a7:88:d6:2d:f8:4c:56:17:63:a1:a0:
42:b4:74:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:25:46 2026 by rpki-client