Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
File: NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft (raw, json)
Hash identifier: XkkHI9u5+RwyH1YuAzLpkbM5qK7J3QDWzGJArLiE2Bk=
Subject key identifier: D8:C8:40:0A:F1:CC:59:D7:C8:63:24:D9:79:3B:70:A7:BF:03:84:A5
Authority key identifier: 34:32:BA:1C:6D:0B:02:BE:FE:68:CC:94:AE:9D:2D:E3:10:7A:60:46
Certificate issuer: /CN=3432ba1c6d0b02befe68cc94ae9d2de3107a6046
Certificate serial: 019CABD9BB408B4A6E0BA20E380A188C971C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NDK6HG0LAr7-aMyUrp0t4xB6YEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 00:01:38 +0000
Manifest this update: Mon 02 Mar 2026 00:01:38 +0000
Manifest next update: Tue 03 Mar 2026 00:01:38 +0000
Files and hashes: 1: NDK6HG0LAr7-aMyUrp0t4xB6YEY.crl (hash: 1RLmQM6Wf+g3Ac84oveymu/lgrySdZRIZ3gIoLlfMs4=)
2: t4BaHMc6yCVDE8J5UKYQE3HeSEk.roa (hash: a0O/Q/ykMMVF0x4s18Lt51/lK7kz7CmF4jPcpVsCuhg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NDK6HG0LAr7-aMyUrp0t4xB6YEY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:bb:40:8b:4a:6e:0b:a2:0e:38:0a:18:8c:97:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3432ba1c6d0b02befe68cc94ae9d2de3107a6046
Validity
Not Before: Mar 2 00:01:38 2026 GMT
Not After : Mar 3 00:01:38 2026 GMT
Subject: CN=d8c8400af1cc59d7c86324d9793b70a7bf0384a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2a:97:b4:90:56:12:8f:4f:47:34:e3:57:41:
3d:43:df:53:f4:c5:95:45:95:66:8e:3f:87:9c:0c:
c3:f2:1a:6c:22:d9:0d:f8:9d:07:a1:ac:22:81:bc:
51:65:85:21:b1:02:3c:76:d5:8e:48:93:6f:4d:39:
e9:38:e6:a7:4e:63:89:a9:a0:25:d1:83:74:bc:97:
8b:2b:06:7f:14:eb:09:d1:38:58:cc:6d:57:d5:c5:
68:df:aa:fc:10:8a:42:e2:9f:e4:4f:9b:58:f3:9a:
18:3c:ca:14:4f:44:cc:81:4c:7e:5a:d2:9b:07:b2:
63:5f:e3:89:3c:42:65:d6:04:8b:85:15:f0:a5:df:
db:ce:bc:e7:48:74:5f:e3:ec:ab:3d:ea:34:c5:42:
87:3b:5a:b5:46:df:72:02:83:8f:29:f6:49:5e:71:
fb:49:21:cf:3e:de:e5:90:63:29:79:9c:45:bb:f8:
a9:61:fa:17:c9:fd:51:7b:f8:c8:dc:b2:3d:b4:4e:
61:68:08:26:ac:ea:e6:41:10:ad:4e:ee:46:da:e4:
36:b5:e5:e8:d1:44:72:04:c1:08:69:70:3d:19:1a:
cb:51:2a:a2:ec:95:b2:6c:2b:44:24:a7:59:68:4b:
fc:a8:c0:21:17:fb:e3:76:67:15:7d:4a:56:70:05:
73:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:C8:40:0A:F1:CC:59:D7:C8:63:24:D9:79:3B:70:A7:BF:03:84:A5
X509v3 Authority Key Identifier:
keyid:34:32:BA:1C:6D:0B:02:BE:FE:68:CC:94:AE:9D:2D:E3:10:7A:60:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NDK6HG0LAr7-aMyUrp0t4xB6YEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:a4:09:6e:c4:ab:4d:4a:89:00:30:00:de:5d:f3:cb:a6:26:
12:5a:16:a4:b7:10:52:97:aa:bb:53:6c:13:0c:d2:2e:e3:c5:
9d:e2:27:cf:ef:32:9c:00:bd:9d:8f:3f:96:36:60:dc:eb:a8:
c8:13:23:de:a7:91:1d:e2:36:d4:69:18:11:02:85:be:50:c0:
6e:a6:d3:0e:ef:e2:86:f1:96:b6:51:04:a8:53:63:db:c7:ea:
55:71:99:c7:bd:c8:57:ec:28:3f:e6:0b:3d:59:80:35:94:7f:
fa:c2:ca:8c:88:85:73:85:4c:0f:5f:19:21:b5:91:a8:00:70:
f9:ef:75:0b:d2:a3:11:6e:e4:22:4a:65:9a:2f:a9:81:b0:8a:
9f:1b:35:29:53:d0:9d:1d:49:be:74:80:fa:8b:e5:71:ef:3e:
65:a6:e4:62:24:d8:76:67:30:3b:cf:cd:91:88:89:57:f6:81:
1b:81:00:fb:7e:c6:c7:ef:88:ac:41:89:91:17:be:d3:fe:d4:
8f:57:e7:2a:7c:d9:9c:37:b5:f4:09:0c:fb:b8:a0:c7:af:37:
3b:77:63:aa:1d:bd:e9:c6:52:1f:7c:e8:23:ca:c8:1b:16:19:
85:a6:2a:47:8f:e7:2b:e4:59:76:8a:00:7d:1d:fa:6a:74:f7:
25:c3:58:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:40:24 2026 by rpki-client