Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
File: NHkVOIV45h2IaEmiHXC6B1FJwaE.mft (raw, json)
Hash identifier: WAFQW3CM0INYYkbSjwlif9y+BHDNuBgy73UY6o4OQik=
Subject key identifier: 27:90:9A:31:DE:88:CD:4F:7F:A0:A0:37:BC:26:D5:3A:19:BE:C6:23
Authority key identifier: 34:79:15:38:85:78:E6:1D:88:68:49:A2:1D:70:BA:07:51:49:C1:A1
Certificate issuer: /CN=347915388578e61d886849a21d70ba075149c1a1
Certificate serial: 019D9AE2C82F5A9A9B0F9A1CA60D7257F491
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
Manifest number: 0E4E
Signing time: Fri 17 Apr 2026 10:00:46 +0000
Manifest this update: Fri 17 Apr 2026 10:00:46 +0000
Manifest next update: Sat 18 Apr 2026 10:00:46 +0000
Files and hashes: 1: NHkVOIV45h2IaEmiHXC6B1FJwaE.crl (hash: Z8hWBvS7OPA9choznMTV+HinEI/4TXhf5NZrRxucoOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:c8:2f:5a:9a:9b:0f:9a:1c:a6:0d:72:57:f4:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347915388578e61d886849a21d70ba075149c1a1
Validity
Not Before: Apr 17 10:00:46 2026 GMT
Not After : Apr 18 10:00:46 2026 GMT
Subject: CN=27909a31de88cd4f7fa0a037bc26d53a19bec623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:62:b9:a7:3e:8d:78:8c:74:a0:db:e5:f3:14:
9e:e6:d9:53:5e:1c:5f:44:1d:df:47:7c:99:c2:a8:
1e:a3:7d:55:e0:16:3d:1e:f6:89:51:fa:dd:7b:a2:
ac:db:38:f8:ee:cf:ba:d9:18:05:d4:58:cd:ea:85:
20:cc:56:94:c3:a9:34:c2:0f:70:1a:a3:16:58:8c:
89:3a:76:a0:d4:10:de:c8:e0:51:07:e0:53:f1:db:
51:ae:6c:cb:dc:4c:65:0f:a5:ae:be:ad:8a:cd:48:
ac:b1:05:be:04:61:fc:aa:00:d7:1b:eb:e6:cb:23:
bc:73:ce:cd:0a:7c:f1:8c:45:a1:9f:2c:92:08:79:
80:1b:be:62:f0:9f:ec:5d:7e:5a:3b:96:16:15:da:
b8:82:b8:5d:9e:07:0d:c7:5b:19:3a:aa:92:01:ae:
79:fe:17:a0:77:08:f9:c8:bf:3c:76:fa:52:54:0e:
cb:0c:7b:55:53:a0:be:7a:0f:5a:27:f1:43:b3:32:
21:c4:26:df:b3:0d:a0:84:9a:5f:4b:a6:89:35:84:
99:81:60:dd:0b:25:7d:fe:80:46:33:45:32:36:17:
55:42:24:f1:5c:22:3d:97:8f:f7:05:b9:f0:ae:be:
de:6e:9c:6b:87:4f:43:42:03:a0:ac:6e:7b:74:d7:
55:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:90:9A:31:DE:88:CD:4F:7F:A0:A0:37:BC:26:D5:3A:19:BE:C6:23
X509v3 Authority Key Identifier:
keyid:34:79:15:38:85:78:E6:1D:88:68:49:A2:1D:70:BA:07:51:49:C1:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:b1:c2:f6:2d:4b:d8:5d:01:e9:cc:70:f2:d5:c4:55:22:80:
9c:97:8d:f4:63:1f:59:98:84:40:e3:7a:82:4c:80:ed:f2:b3:
2c:9d:ca:05:2a:20:1f:60:37:1b:32:c5:a1:09:90:0d:ea:6a:
b8:18:77:1e:78:4f:33:9c:10:20:cc:45:8f:5d:5a:2e:9a:f1:
d5:df:fc:81:85:39:0f:75:7a:7e:1f:ad:90:57:a3:7c:04:7d:
a9:a4:d1:ea:76:be:1d:e8:a2:d0:1c:e4:8d:89:d6:75:7e:4d:
58:86:95:78:bd:1b:1f:5c:41:0b:78:01:29:f4:e2:b5:e2:06:
dc:af:23:90:f3:a5:5a:30:8b:26:2d:f8:3a:ce:d1:1a:55:bd:
a4:47:2c:ef:13:8c:f3:bc:98:00:c8:b8:36:8d:0d:31:87:98:
ca:02:05:d6:8d:69:2e:64:a6:cf:1e:5c:d9:8c:77:81:1f:38:
df:2b:91:52:63:97:c0:ac:b0:c6:a1:53:6f:0a:82:69:e4:df:
a9:a0:a9:4d:c2:c6:cf:dc:47:39:f4:63:32:d7:a9:e0:d5:90:
cb:48:b8:87:4b:c9:bc:57:5a:6a:89:59:78:96:96:0e:22:af:
42:a6:fe:97:a7:5b:2d:bb:73:53:fd:a6:5f:31:f1:29:8f:1e:
50:40:e5:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:46:18 2026 by rpki-client