Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.mft
File: nPmIlqiK6PNUCut37KHxqUu9aXg.mft (raw, json)
Hash identifier: MzaF7ErLUnjNSTLyxd4/pPAnQhe7Mt7D3H7aqRiI5F4=
Subject key identifier: C4:8A:F0:90:B9:F5:61:3A:EE:29:22:E8:C8:A2:46:28:22:C3:E0:56
Authority key identifier: 9C:F9:88:96:A8:8A:E8:F3:54:0A:EB:77:EC:A1:F1:A9:4B:BD:69:78
Certificate issuer: /CN=9cf98896a88ae8f3540aeb77eca1f1a94bbd6978
Certificate serial: 019D9AE29BDD19ADD96DB745633D35255873
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nPmIlqiK6PNUCut37KHxqUu9aXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.mft
Manifest number: 0A58
Signing time: Fri 17 Apr 2026 10:00:35 +0000
Manifest this update: Fri 17 Apr 2026 10:00:35 +0000
Manifest next update: Sat 18 Apr 2026 10:00:35 +0000
Files and hashes: 1: nPmIlqiK6PNUCut37KHxqUu9aXg.crl (hash: u+/gHhPobJrWUZ3VZQivBxEkFR4lsmbzUQ0ufO4LYyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nPmIlqiK6PNUCut37KHxqUu9aXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:9b:dd:19:ad:d9:6d:b7:45:63:3d:35:25:58:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cf98896a88ae8f3540aeb77eca1f1a94bbd6978
Validity
Not Before: Apr 17 10:00:35 2026 GMT
Not After : Apr 18 10:00:35 2026 GMT
Subject: CN=c48af090b9f5613aee2922e8c8a2462822c3e056
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6c:3b:66:de:ef:0a:f1:f5:45:72:d9:05:0a:
6b:a2:1e:04:bd:66:a2:b0:48:12:a9:49:e4:fb:b1:
de:bf:9f:fa:7f:f2:4f:60:54:73:9e:3f:f5:e0:fb:
30:26:c4:2c:9d:25:d3:e8:8d:ae:41:8a:f6:a9:7d:
db:0c:77:cf:29:86:a5:4b:f0:25:28:0b:d2:71:8a:
1a:c5:c2:d8:09:cb:4b:69:d5:83:12:33:dc:5c:dc:
8a:8c:4b:cd:01:fe:a7:8b:a5:e4:15:9d:60:e1:a9:
17:e9:47:5d:ec:32:4d:1d:72:51:56:b5:4d:b6:1c:
8b:12:33:45:5a:29:e0:2a:8e:07:1a:ed:d0:30:b1:
9e:cc:30:bb:7f:0d:a1:78:8d:93:bc:8e:54:0e:ed:
fb:fe:eb:b7:a8:a4:51:37:7e:4f:e7:7b:7e:5e:59:
40:c8:59:73:55:65:80:1d:03:46:53:3c:e9:47:3e:
73:47:95:a0:04:8d:11:a5:c0:b4:7c:06:29:03:8d:
da:c7:cf:5c:06:a0:97:78:3a:10:c8:17:92:65:81:
5a:51:41:b9:eb:ff:0e:05:67:49:ef:3d:73:a8:24:
0f:6c:f8:72:81:a8:4e:07:83:1f:7f:60:8c:a0:7b:
ca:98:0f:44:c1:82:75:cb:15:02:d2:db:69:59:f9:
3c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:8A:F0:90:B9:F5:61:3A:EE:29:22:E8:C8:A2:46:28:22:C3:E0:56
X509v3 Authority Key Identifier:
keyid:9C:F9:88:96:A8:8A:E8:F3:54:0A:EB:77:EC:A1:F1:A9:4B:BD:69:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nPmIlqiK6PNUCut37KHxqUu9aXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/deb102-423f-4e92-b7c5-73d014e8349b/1/nPmIlqiK6PNUCut37KHxqUu9aXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:9b:f1:99:a7:6b:2a:f6:0e:3f:99:cd:61:5d:b7:17:81:1b:
46:aa:7d:a8:b5:fa:b2:30:64:60:98:d5:f3:7f:72:a7:84:84:
fd:80:88:c9:9d:96:32:de:11:b1:6f:2d:14:05:7c:3c:ac:15:
c6:48:4c:a4:ba:d6:2b:84:61:83:d2:5a:6d:d6:a4:73:eb:b5:
b3:13:50:4c:48:db:5b:d2:88:5d:25:68:97:30:5f:3d:53:78:
39:c8:67:2f:53:85:67:8a:bf:f4:10:c5:5a:06:75:8e:57:71:
0c:e4:49:2c:5f:9e:90:98:42:1e:f6:c6:cd:28:14:8b:c4:ce:
b8:cd:7f:45:44:86:18:83:bc:24:8e:21:43:95:89:c6:27:6c:
9b:54:8c:29:27:67:39:cd:9c:d2:1c:37:e9:19:f5:16:93:78:
1b:4b:d1:94:a2:76:bd:9a:8c:e0:a6:22:26:fc:e4:07:70:32:
40:c7:d0:90:9a:46:8b:b5:f5:42:86:c7:1c:ac:ed:bc:e2:1b:
21:81:e2:2a:fb:f0:23:a9:83:de:b8:68:9a:9d:52:87:e9:7c:
8e:91:66:14:15:12:b8:9f:03:3a:cb:44:00:1a:9a:e5:08:d1:
24:fc:96:fc:7b:90:fe:86:1d:e3:c7:e8:06:ea:88:23:66:f6:
59:b1:d1:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:08:32 2026 by rpki-client