Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
File: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft (raw, json)
Hash identifier: kUMJZP7JdNj2s53GUHhzDAppBaVOqiyBs4H0quBCdNM=
Subject key identifier: 36:1B:4F:6D:5F:FE:A8:8E:8E:FC:6F:A6:99:93:A0:C1:33:6C:09:C6
Authority key identifier: 9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
Certificate issuer: /CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Certificate serial: 019D9886719A4845B177E9393C7709CDB6F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
Manifest number: 0F94
Signing time: Thu 16 Apr 2026 23:00:40 +0000
Manifest this update: Thu 16 Apr 2026 23:00:40 +0000
Manifest next update: Fri 17 Apr 2026 23:00:40 +0000
Files and hashes: 1: _-WgAdeW2Y99K-sGrqhGfWbfEYA.roa (hash: 66pgLoCvktoVUaDGxvzDuDueB2STnHHTVeeS6krd+lc=)
2: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl (hash: Pvd0r+nYJDnJQktAVBj+O46pwuGU3psKvpuzw7wXOao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:71:9a:48:45:b1:77:e9:39:3c:77:09:cd:b6:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Validity
Not Before: Apr 16 23:00:40 2026 GMT
Not After : Apr 17 23:00:40 2026 GMT
Subject: CN=361b4f6d5ffea88e8efc6fa69993a0c1336c09c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:49:ab:8d:a8:e9:d7:ba:d2:8a:cc:91:51:ae:
ce:4a:e6:7c:62:a6:49:82:a8:21:dc:31:a3:13:91:
b4:4f:f1:da:11:88:ff:5c:48:48:47:c4:5a:b9:d0:
06:87:95:78:a8:38:38:85:9d:ac:51:ec:d9:e0:b2:
94:2f:21:20:70:40:81:b3:7e:22:8c:74:ff:c9:4c:
37:2f:1c:33:33:d5:65:a4:eb:30:91:09:a6:1a:d8:
ef:2a:f5:ae:db:ec:fa:39:17:f3:c8:7b:e7:f9:4c:
93:0f:2e:16:46:f6:9e:be:c9:f5:6a:80:73:f4:ea:
a0:33:bb:2e:c5:02:3a:1f:d0:e7:f6:74:34:c0:e8:
16:db:40:e0:7d:1d:8f:b2:55:51:9c:4c:83:eb:7a:
a3:81:1a:fe:b4:10:42:8a:5f:df:19:3c:4f:6d:ed:
5f:30:21:d5:06:91:28:7c:a2:47:08:2e:50:e2:41:
b7:d6:4e:4c:2d:2c:19:3a:82:91:2e:61:69:be:05:
bf:96:ce:e3:b6:56:6d:26:8b:c1:3f:9b:cc:50:d8:
11:d3:d0:21:00:80:aa:bd:87:8e:52:7e:32:29:66:
8c:8e:56:7e:e5:39:e1:af:81:fd:ca:1d:68:49:51:
ab:f0:b5:6d:2c:eb:42:65:db:6d:db:2e:5e:50:f5:
6a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:1B:4F:6D:5F:FE:A8:8E:8E:FC:6F:A6:99:93:A0:C1:33:6C:09:C6
X509v3 Authority Key Identifier:
keyid:9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:05:c8:09:bf:d0:5b:a3:f4:cb:46:d5:2f:99:83:dc:d4:59:
5e:46:33:e2:e9:25:6d:97:c7:b2:13:0d:1f:ea:60:52:c5:9f:
fc:36:00:c3:eb:17:1f:f8:6a:82:ca:27:3f:20:55:d4:9c:9f:
6a:53:b6:39:b7:df:e2:04:ff:c2:a4:24:95:72:4e:52:53:77:
a5:d8:39:27:26:36:83:a5:86:38:e6:43:cc:09:68:40:07:db:
90:64:b4:39:79:b2:d3:d2:0c:3e:25:8b:d6:fd:ae:34:c0:0d:
ec:3a:d2:ab:cf:fd:9d:a8:d4:50:42:0b:47:1c:bc:79:3a:56:
fe:d6:20:4f:8d:3f:5f:20:6b:c8:4b:b5:18:bf:2e:16:1b:4c:
84:24:dc:c5:8c:47:24:57:42:f0:b0:02:0e:3f:9c:a6:d7:ee:
d1:ee:a5:52:78:66:06:b4:f3:5c:8f:d6:13:e6:2a:c3:33:5a:
24:a4:9c:d5:ec:34:55:60:9a:1a:a5:98:37:c9:ee:34:d8:12:
a5:b5:f5:1d:8d:b3:83:44:4d:99:8f:a1:e7:4e:dc:37:a7:1d:
67:ea:ae:d2:57:a0:ca:8c:f2:8f:63:68:93:c4:d4:8d:a3:7a:
29:63:8c:63:64:57:45:39:e1:02:11:47:34:9e:2a:18:0f:b6:
e1:00:64:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YhnGaSEWxd+k5PHcJzbbwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMGUyYjllNjlmNTYyZGYxNGNmNzcyYmRlMDVmN2RhY2Rl
MjU5NjEwHhcNMjYwNDE2MjMwMDQwWhcNMjYwNDE3MjMwMDQwWjAzMTEwLwYDVQQD
EygzNjFiNGY2ZDVmZmVhODhlOGVmYzZmYTY5OTkzYTBjMTMzNmMwOWM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA70mrjajp17rSisyRUa7OSuZ8YqZJ
gqgh3DGjE5G0T/HaEYj/XEhIR8RaudAGh5V4qDg4hZ2sUezZ4LKULyEgcECBs34i
jHT/yUw3LxwzM9VlpOswkQmmGtjvKvWu2+z6ORfzyHvn+UyTDy4WRvaevsn1aoBz
9OqgM7suxQI6H9Dn9nQ0wOgW20DgfR2PslVRnEyD63qjgRr+tBBCil/fGTxPbe1f
MCHVBpEofKJHCC5Q4kG31k5MLSwZOoKRLmFpvgW/ls7jtlZtJovBP5vMUNgR09Ah
AICqvYeOUn4yKWaMjlZ+5Tnhr4H9yh1oSVGr8LVtLOtCZdtt2y5eUPVqfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDYbT21f/qiOjvxvppmToMEzbAnGMB8GA1UdIwQY
MBaAFJ0OK55p9WLfFM93K94F99rN4llhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8yNWJlMmYtOTJlYi00Y2RlLWEyNDct
ZDhkYzM0MDM2Y2U3LzEvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8yNWJlMmYtOTJlYi00Y2RlLWEyNDctZDhkYzM0MDM2Y2U3
LzEvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALQXICb/Q
W6P0y0bVL5mD3NRZXkYz4uklbZfHshMNH+pgUsWf/DYAw+sXH/hqgsonPyBV1Jyf
alO2Obff4gT/wqQklXJOUlN3pdg5JyY2g6WGOOZDzAloQAfbkGS0OXmy09IMPiWL
1v2uNMAN7DrSq8/9najUUEILRxy8eTpW/tYgT40/XyBryEu1GL8uFhtMhCTcxYxH
JFdC8LACDj+cptfu0e6lUnhmBrTzXI/WE+YqwzNaJKSc1ew0VWCaGqWYN8nuNNgS
pbX1HY2zg0RNmY+h507cN6cdZ+qu0legyozyj2Nok8TUjaN6KWOMY2RXRTnhAhFH
NJ4qGA+24QBkkg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:49:20 2026 by rpki-client