Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
File: NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft (raw, json)
Hash identifier: x18HYO8lR4YgBn057xQMsymm/nK82nWAQdR1dzJTUTI=
Subject key identifier: 95:E3:89:2D:5F:3D:4A:4D:BB:0A:14:23:18:F9:4B:1A:52:0D:C1:09
Authority key identifier: 34:32:BA:1C:6D:0B:02:BE:FE:68:CC:94:AE:9D:2D:E3:10:7A:60:46
Certificate issuer: /CN=3432ba1c6d0b02befe68cc94ae9d2de3107a6046
Certificate serial: 019D9961EF3633313F4B283FC5CC4E72CA61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NDK6HG0LAr7-aMyUrp0t4xB6YEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
Manifest number: 18C5
Signing time: Fri 17 Apr 2026 03:00:25 +0000
Manifest this update: Fri 17 Apr 2026 03:00:25 +0000
Manifest next update: Sat 18 Apr 2026 03:00:25 +0000
Files and hashes: 1: NDK6HG0LAr7-aMyUrp0t4xB6YEY.crl (hash: +KG5GoLf0v0R4EH38RBuIV4jrAAAkPINvoimxuS8el0=)
2: t4BaHMc6yCVDE8J5UKYQE3HeSEk.roa (hash: a0O/Q/ykMMVF0x4s18Lt51/lK7kz7CmF4jPcpVsCuhg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NDK6HG0LAr7-aMyUrp0t4xB6YEY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:61:ef:36:33:31:3f:4b:28:3f:c5:cc:4e:72:ca:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3432ba1c6d0b02befe68cc94ae9d2de3107a6046
Validity
Not Before: Apr 17 03:00:25 2026 GMT
Not After : Apr 18 03:00:25 2026 GMT
Subject: CN=95e3892d5f3d4a4dbb0a142318f94b1a520dc109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:21:7e:fe:e5:d9:cb:f2:0b:d4:a7:3e:66:5b:
99:75:d4:02:81:44:48:0e:e0:07:d9:97:68:6d:8d:
2f:2a:e2:4b:22:cd:d5:0d:80:17:34:0c:b3:ea:7b:
fb:4c:35:67:d1:6d:9d:03:08:1e:e1:db:b7:8e:1a:
9f:8b:2f:b7:15:d5:6b:5c:87:b3:6b:c4:f0:97:c1:
31:f1:c0:66:18:0a:a4:0c:a2:ed:e8:66:2c:01:42:
e4:85:4e:e7:b1:b5:19:7f:33:bc:fb:59:95:14:50:
c3:4f:e7:bd:f1:a1:55:f7:45:78:2a:be:e2:22:99:
6d:dc:40:37:52:fd:74:d0:3d:a5:9b:73:df:50:2b:
2d:c0:44:41:01:df:f5:ab:b6:11:a3:fe:54:13:c3:
cc:48:e0:74:ea:a0:0a:61:9d:53:8f:7d:25:ce:e6:
36:95:8f:86:17:6b:44:87:b0:5d:55:50:dd:2e:4b:
ec:29:18:60:6b:29:e0:ea:88:8c:1b:a7:ec:b4:33:
bd:83:40:fd:77:26:df:a9:e3:b4:8c:6a:8e:dd:74:
5d:a4:2b:fb:8d:30:6e:99:78:a3:79:99:f1:4b:55:
14:12:be:eb:07:d1:c2:cf:a7:66:1c:76:7e:af:75:
99:80:19:7d:b6:70:99:dd:e3:6c:e8:ac:0b:4e:64:
95:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E3:89:2D:5F:3D:4A:4D:BB:0A:14:23:18:F9:4B:1A:52:0D:C1:09
X509v3 Authority Key Identifier:
keyid:34:32:BA:1C:6D:0B:02:BE:FE:68:CC:94:AE:9D:2D:E3:10:7A:60:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NDK6HG0LAr7-aMyUrp0t4xB6YEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:97:0f:55:44:20:8e:89:70:5d:8f:b7:96:b3:3d:38:81:df:
7c:ac:e0:86:70:d8:b6:27:b7:cd:37:4c:6f:03:c9:e5:b9:91:
f4:2d:fb:cf:d0:d0:d8:ee:54:52:48:54:59:ad:f3:36:74:ad:
9f:74:de:98:f9:72:f0:47:37:a4:96:08:11:36:18:76:b4:8b:
cd:ed:25:63:0b:20:80:b1:19:8e:4e:04:7d:27:11:15:62:27:
95:cb:dd:16:37:f7:1a:cb:fd:76:de:63:93:c8:18:37:8e:a1:
66:2b:97:49:f7:2e:11:c1:83:c5:56:4b:9e:ee:6a:28:13:35:
f0:70:10:75:f7:d6:cb:22:4d:63:3a:98:13:78:14:ae:ef:39:
a8:08:30:84:8c:b9:4e:d6:a9:8e:a7:c7:c8:38:e0:57:03:54:
65:96:07:18:94:0d:24:e1:cf:b2:82:ac:2d:46:1f:ab:f1:bb:
7a:d9:a6:db:f2:db:48:fc:0e:18:4d:a7:71:fd:4e:90:59:b2:
98:b6:32:30:0c:a6:cf:4e:d2:de:9c:00:f6:b1:1e:5a:34:09:
2f:8a:b4:69:6d:b2:0f:fe:8a:97:3c:c9:d4:6a:8a:4f:e5:68:
53:57:1b:01:1e:aa:d0:5f:d3:a1:19:f9:c3:d2:9f:a5:f4:3e:
d7:09:9a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:50:02 2026 by rpki-client