Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
File: NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft (raw, json)
Hash identifier: NSEG/lezLOfnXxPBbL72h4muZY9yfJHy4P9AvUSjs1A=
Subject key identifier: 74:17:B3:05:89:CA:83:24:89:2D:47:CF:DE:64:1E:F1:80:B1:40:0D
Authority key identifier: 35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
Certificate issuer: /CN=35d2929f1652f958812d099a233f33ad3445bbfb
Certificate serial: 019CABD91390D7E7EC6E64563549F756D098
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
Manifest number: 1806
Signing time: Mon 02 Mar 2026 00:00:56 +0000
Manifest this update: Mon 02 Mar 2026 00:00:56 +0000
Manifest next update: Tue 03 Mar 2026 00:00:56 +0000
Files and hashes: 1: NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl (hash: QicGCFp0Qgj7chvv3lhQGFNuVyBu+sEcs0ufr2MIdDg=)
2: YgtG-eXPQuYp4oVS-PRtPNrxxe4.roa (hash: RWCfa29kamid4Jj9pOqOGZ7EXsOuYoZh2w0x+4VeWGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:13:90:d7:e7:ec:6e:64:56:35:49:f7:56:d0:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d2929f1652f958812d099a233f33ad3445bbfb
Validity
Not Before: Mar 2 00:00:56 2026 GMT
Not After : Mar 3 00:00:56 2026 GMT
Subject: CN=7417b30589ca8324892d47cfde641ef180b1400d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3c:bf:76:22:57:70:2d:81:8d:48:d4:35:9e:
b3:39:21:95:34:21:8c:32:c7:8c:e4:55:09:68:23:
c2:de:ef:ff:32:aa:99:ac:6e:7b:8a:e1:31:72:67:
0b:68:f3:70:d6:e1:c6:6e:d5:70:c4:85:70:33:75:
ae:28:7e:79:88:18:d0:f2:46:2a:30:07:47:61:cd:
dc:80:42:63:cc:5e:b4:2d:fc:aa:cd:b9:dc:6b:72:
b0:1b:a2:37:bf:c9:59:52:26:bd:67:3e:6f:ab:76:
2a:8c:00:b0:c9:0a:9b:c3:d0:f5:99:25:e7:00:c6:
d7:b4:84:c9:ec:8f:b8:99:f4:fc:30:27:01:22:d5:
60:c7:2e:3a:56:cd:e4:5c:ab:0a:a4:c2:90:73:63:
76:99:e5:6a:a0:5a:7b:1a:16:d3:1c:62:a1:d4:6a:
64:f5:34:91:1c:75:ca:c2:db:99:e1:e3:a7:c3:6e:
0f:ee:b7:6d:12:51:e4:85:21:c4:3b:d5:2b:25:e0:
77:b9:ae:81:7e:aa:82:24:09:1c:9f:2d:87:3b:2f:
e7:0b:1a:79:b6:b7:78:23:eb:d6:d6:14:50:62:88:
c7:ad:0f:43:75:93:d0:af:31:cb:54:60:e7:e2:a0:
b2:f3:b1:28:83:19:ac:2b:e6:17:f5:c4:97:e5:e1:
31:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:17:B3:05:89:CA:83:24:89:2D:47:CF:DE:64:1E:F1:80:B1:40:0D
X509v3 Authority Key Identifier:
keyid:35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:48:d3:61:30:b6:e9:e4:95:66:4d:0f:a4:98:d1:e4:63:74:
1c:2d:18:0c:f8:de:27:cd:d5:00:33:21:49:6d:3a:19:b8:63:
4a:86:2a:b4:29:62:e7:6d:13:6f:19:29:4a:ac:a4:ed:15:14:
f7:f9:38:4a:63:62:e5:1f:93:ea:29:06:be:e2:55:2b:04:e1:
53:b8:a0:f0:69:ca:f9:d3:00:86:b5:30:53:7a:04:67:e4:a6:
bd:a5:54:88:9c:bd:8b:e1:03:73:c4:ba:e8:cb:f3:f2:c0:ac:
3e:fc:ad:73:9a:7d:ae:48:1a:5d:51:ad:e6:2d:92:cd:bc:2b:
38:85:46:3e:00:d5:c2:97:45:51:42:ce:e7:c5:de:07:52:79:
f2:80:17:ab:d3:88:ca:41:cb:92:b9:ac:23:36:6e:bd:7f:7f:
28:25:c2:80:b7:fa:66:e8:0e:5c:28:79:eb:28:7c:a5:e6:7f:
04:65:02:19:30:b8:82:76:de:fb:04:e6:21:09:4f:38:6f:35:
a1:36:47:0c:8e:59:fa:f7:ce:73:7d:78:ca:af:3d:00:1d:00:
b7:7b:34:ff:be:72:d1:43:2d:9c:fc:23:0c:5d:1a:90:fa:3a:
39:5b:1a:d3:00:58:68:6a:d6:f4:fe:fa:d3:04:ca:54:4a:b5:
6b:0d:99:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:56:30 2026 by rpki-client