Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.mft
File: nOiU8ddzHplhcZvh7ZmEaPy6vqk.mft (raw, json)
Hash identifier: p8bnmnoNc2xzvG7hpVfCBuD1/TIR/wOR+oN1UHZQ67I=
Subject key identifier: 1E:E3:E0:54:C4:72:67:BE:6E:78:13:98:DD:D0:AF:3D:6F:51:9C:F8
Authority key identifier: 9C:E8:94:F1:D7:73:1E:99:61:71:9B:E1:ED:99:84:68:FC:BA:BE:A9
Certificate issuer: /CN=9ce894f1d7731e9961719be1ed998468fcbabea9
Certificate serial: 019D9850718E02238100313F1FF9A9A0DCD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nOiU8ddzHplhcZvh7ZmEaPy6vqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.mft
Manifest number: 18A7
Signing time: Thu 16 Apr 2026 22:01:41 +0000
Manifest this update: Thu 16 Apr 2026 22:01:41 +0000
Manifest next update: Fri 17 Apr 2026 22:01:41 +0000
Files and hashes: 1: nOiU8ddzHplhcZvh7ZmEaPy6vqk.crl (hash: O/gLgVS2T/p+ZAKxMku++BtSEkUY5MRxudhwf6iZ9ms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nOiU8ddzHplhcZvh7ZmEaPy6vqk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:71:8e:02:23:81:00:31:3f:1f:f9:a9:a0:dc:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ce894f1d7731e9961719be1ed998468fcbabea9
Validity
Not Before: Apr 16 22:01:41 2026 GMT
Not After : Apr 17 22:01:41 2026 GMT
Subject: CN=1ee3e054c47267be6e781398ddd0af3d6f519cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:01:c0:4a:e3:29:f9:9d:17:bb:29:30:e7:12:
3b:d9:e7:95:96:58:47:7d:d4:6d:98:c4:16:81:e5:
40:3a:89:1d:b6:b4:62:14:29:a1:f7:f0:35:9f:46:
d4:1b:40:6e:e4:2a:90:f2:78:ec:94:e4:71:59:51:
a2:75:94:52:f9:87:34:64:b6:65:44:01:12:c8:c4:
a7:66:f3:ac:38:87:cd:0b:21:62:39:b5:a6:aa:4b:
73:4b:65:e1:33:1e:cb:41:e0:32:97:ac:f9:88:2b:
72:97:fb:29:cf:35:f4:07:4b:b9:35:98:2a:4d:57:
2c:68:5d:c5:5a:2e:47:cd:f3:4f:2c:c9:ff:58:82:
e0:80:9a:70:88:4b:d8:b2:33:91:1b:bc:bb:bc:34:
05:9a:fc:de:17:b5:0c:93:0f:31:45:93:fe:99:48:
07:33:72:3f:90:66:59:0f:0c:f1:10:0e:03:ca:8d:
68:4f:a1:6d:be:9b:53:5a:3a:3a:c4:52:57:ee:0a:
a3:a5:2e:9a:a4:c7:53:a8:2d:30:3d:b9:0e:45:6f:
e5:ea:fd:0d:be:cc:6b:c3:3d:86:d6:83:47:1d:d5:
93:fe:5c:a4:a1:be:5a:fa:79:f5:89:28:4f:6e:3f:
07:96:75:00:cf:55:fa:4a:38:a5:0f:4c:ac:0a:06:
20:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E3:E0:54:C4:72:67:BE:6E:78:13:98:DD:D0:AF:3D:6F:51:9C:F8
X509v3 Authority Key Identifier:
keyid:9C:E8:94:F1:D7:73:1E:99:61:71:9B:E1:ED:99:84:68:FC:BA:BE:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nOiU8ddzHplhcZvh7ZmEaPy6vqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1f969c-e387-46fd-8624-dc7f0c094b39/1/nOiU8ddzHplhcZvh7ZmEaPy6vqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:ad:47:03:5e:a2:d5:a5:41:d0:c5:9a:e0:3b:83:ee:63:f2:
58:74:d0:75:28:f3:48:35:91:b8:54:38:be:5b:a5:f9:1b:c9:
dc:bf:08:79:85:5d:b8:74:68:e1:46:76:38:2c:d7:45:be:39:
e6:87:63:57:63:8a:49:61:10:3c:f9:24:17:77:89:3c:79:6e:
e6:4f:58:79:27:37:f3:53:97:8b:c1:9e:85:e2:81:5c:c8:fc:
3b:2b:44:60:bc:66:e5:a7:05:07:f8:c2:0d:0f:2b:27:5a:cc:
86:d0:a2:69:30:13:70:db:18:14:df:53:3c:a9:85:6a:6e:4d:
4d:de:df:8a:c7:6f:a9:ff:94:61:04:bd:13:37:67:9b:d2:3e:
6d:f2:c9:5b:8a:3b:67:ea:17:fc:fb:60:ad:f4:fd:7f:f7:e2:
b6:40:b9:57:89:d4:20:67:75:95:b5:6c:35:1e:fd:28:fa:4d:
c4:f6:e3:02:a1:2d:be:9c:e3:01:8a:3e:00:e2:93:e1:4e:e3:
96:b3:a1:0d:65:1a:41:f2:74:30:e0:fa:98:f2:ba:94:ac:83:
ad:de:a5:fa:6d:9f:6f:be:55:9d:2a:04:59:52:ec:b6:92:54:
f8:f0:05:b6:99:39:4d:f6:98:82:ff:a0:48:df:ea:07:c3:b1:
19:79:41:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:03:55 2026 by rpki-client