
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
File: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft (raw, json)
Hash identifier: ZVRURP3z3GDRAWng2pn++xs2IHMUEm+I/FBmaepy9nE=
Subject key identifier: AD:0B:2C:18:2F:D8:68:76:12:81:69:38:2A:1D:FD:08:A3:80:78:CA
Authority key identifier: 9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
Certificate issuer: /CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Certificate serial: 019D9A75096A6E7CBDE8EB35A45290FC3623
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
Manifest number: 0F95
Signing time: Fri 17 Apr 2026 08:00:54 +0000
Manifest this update: Fri 17 Apr 2026 08:00:54 +0000
Manifest next update: Sat 18 Apr 2026 08:00:54 +0000
Files and hashes: 1: _-WgAdeW2Y99K-sGrqhGfWbfEYA.roa (hash: 66pgLoCvktoVUaDGxvzDuDueB2STnHHTVeeS6krd+lc=)
2: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl (hash: UAqSjjm5TxBiSYV030OohmQNzesZKFbYO3pA0D2ne6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:09:6a:6e:7c:bd:e8:eb:35:a4:52:90:fc:36:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d0e2b9e69f562df14cf772bde05f7dacde25961
Validity
Not Before: Apr 17 08:00:54 2026 GMT
Not After : Apr 18 08:00:54 2026 GMT
Subject: CN=ad0b2c182fd86876128169382a1dfd08a38078ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f5:ec:fe:cc:34:47:52:5d:6e:83:ec:c9:79:
60:19:d1:5c:cb:bb:52:af:8f:74:65:ab:ff:78:c8:
55:84:b8:98:96:b6:57:69:f8:8d:c9:2a:7d:f7:d5:
d2:47:ba:42:e2:41:17:ef:7b:97:53:b1:f0:c0:ea:
c2:54:77:c6:8c:b8:a6:2e:a4:97:8b:42:3e:d1:91:
0b:77:65:4d:44:cd:a2:e5:e3:5a:1b:54:ef:d9:ba:
60:7a:af:ff:81:cc:17:67:61:e6:4b:9e:28:03:e9:
44:ea:30:b9:75:4f:b4:f7:02:ea:00:b4:80:69:92:
39:86:a3:49:6f:da:53:a7:c3:89:48:32:f1:f6:25:
bb:5c:ed:78:bc:6f:b8:a8:5c:70:e1:95:c3:08:23:
2c:4e:11:f3:71:8b:18:a0:d8:5c:2c:ad:bc:e0:16:
0b:82:c3:3c:4d:69:ed:03:4c:d7:ba:31:2e:e4:88:
5e:67:c0:f6:a7:75:e9:2f:1c:6e:0f:f8:00:a8:d4:
37:c4:c5:ff:13:6c:ef:7f:8d:e7:2a:a5:1d:75:d7:
bc:61:8d:fc:49:e2:7e:bd:fe:a1:6e:7d:70:7d:b3:
20:36:c9:06:60:9c:72:6b:d3:dc:b6:b4:60:da:c3:
73:18:f2:bc:24:22:d3:9d:59:fa:fc:3b:72:c3:bd:
4e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:0B:2C:18:2F:D8:68:76:12:81:69:38:2A:1D:FD:08:A3:80:78:CA
X509v3 Authority Key Identifier:
keyid:9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:f8:2a:b2:eb:e0:62:12:46:2f:43:d6:2d:7d:1e:9e:42:8d:
0a:15:a0:bd:73:84:12:cf:4f:e3:1b:87:11:ac:14:51:6f:ef:
60:8e:14:cb:b7:45:15:40:41:db:8b:96:a1:11:27:c1:c4:78:
a2:ed:a4:78:0d:6b:06:73:10:c8:5f:ea:d2:a8:fe:52:c6:db:
76:5c:8e:95:04:c7:00:0a:df:55:0f:63:12:a7:08:f0:a7:26:
f3:49:08:00:b8:b8:fb:e3:fd:ed:f4:b4:58:64:70:6f:c0:0f:
38:0d:c9:e6:cd:3a:8a:0d:3e:b8:b1:11:a7:9a:e7:c1:a0:58:
7b:f2:05:41:a1:f0:86:19:92:cb:d7:95:2f:fd:25:34:ce:d3:
56:de:6c:23:60:96:3c:96:a5:e9:b5:be:e8:ef:54:50:fd:4b:
b1:18:ea:fe:94:61:9a:73:fb:72:9e:12:93:cd:6a:6b:e0:04:
a7:cc:7a:38:d4:d8:30:6e:d5:d0:6c:51:75:d6:e2:da:47:b3:
7f:b4:6e:90:6f:90:48:df:dd:87:ad:01:5d:b0:10:7b:5c:6f:
d7:6c:bd:d6:2d:95:64:b7:82:7d:60:99:a8:ce:8e:a6:72:a7:
2b:9e:0c:98:5e:f7:37:0b:d6:5a:07:dc:e0:c0:92:68:76:c8:
2f:0e:66:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:02:36 2026 by rpki-client