Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
File: NW2albrOGXhcQGR2Y_MdkFYmHC8.mft (raw, json)
Hash identifier: SB7pWqfxf6k8XeFbZsdF3Q+Z2PtL5yG0IaJ2G6vfzww=
Subject key identifier: 3B:87:26:0E:C2:3F:FB:47:81:44:B3:9B:F5:65:5B:69:57:BA:E2:3D
Authority key identifier: 35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
Certificate issuer: /CN=356d9a95bace19785c40647663f31d9056261c2f
Certificate serial: 019EC337F2DCE1B3082C13991B26F1634738
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
Manifest number: 195A
Signing time: Sat 13 Jun 2026 23:01:24 +0000
Manifest this update: Sat 13 Jun 2026 23:01:24 +0000
Manifest next update: Sun 14 Jun 2026 23:01:24 +0000
Files and hashes: 1: KJ32RrCVAy4PyqYtI55Q1n1tyzU.roa (hash: LCB31ML0gf7+olaDPAC46q6pMd69LDFTi6lr8UwROW4=)
2: NW2albrOGXhcQGR2Y_MdkFYmHC8.crl (hash: 5tcNOVpkvE/ulTzQL/+8VjDBbOe+JJ9zimvm5uc/si4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 23:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:37:f2:dc:e1:b3:08:2c:13:99:1b:26:f1:63:47:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=356d9a95bace19785c40647663f31d9056261c2f
Validity
Not Before: Jun 13 23:01:24 2026 GMT
Not After : Jun 14 23:01:24 2026 GMT
Subject: CN=3b87260ec23ffb478144b39bf5655b6957bae23d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bd:53:f4:ae:08:dc:64:6b:3e:e1:6e:ac:c1:
44:18:5f:3b:49:cc:8c:0b:3c:54:53:39:b8:3a:d1:
8d:aa:ce:79:bc:a0:f9:ad:12:7c:52:0c:f1:14:c9:
4e:b6:c6:d3:59:77:6f:b7:2f:0f:d0:24:e5:fb:0c:
14:91:96:44:3d:3b:e8:36:f8:e6:3b:5f:3a:15:2c:
16:bc:20:a9:56:30:e5:50:29:e8:53:ea:7c:aa:34:
0b:e3:7d:0a:78:18:62:d2:9a:b4:28:2d:67:4e:58:
81:5d:f6:cb:3a:9b:f2:85:db:59:fb:0e:39:b3:70:
f9:23:bc:33:9e:69:16:86:5a:99:8d:d1:74:f3:62:
64:d6:fe:30:3c:48:2f:92:b7:46:fa:bd:d5:55:09:
90:c4:7a:38:6a:a5:8a:dd:d8:9d:db:58:77:7c:f9:
1d:23:bb:37:4c:f3:b3:a0:82:9b:f4:81:bd:44:20:
7b:72:8c:24:ca:e7:9a:8e:a7:14:07:8a:b7:2b:66:
33:d1:07:92:5f:92:08:24:b9:a9:b4:0d:e7:3a:02:
3c:9a:cf:6e:b5:8c:21:26:c4:12:9d:ad:82:c7:0a:
83:0c:5a:7f:0b:51:36:1a:84:31:2f:af:da:00:45:
03:24:2c:2c:a2:11:8c:c1:73:22:11:fb:07:14:3d:
1e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:87:26:0E:C2:3F:FB:47:81:44:B3:9B:F5:65:5B:69:57:BA:E2:3D
X509v3 Authority Key Identifier:
keyid:35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:42:b2:f6:2c:1e:a9:3b:3a:06:12:8c:53:38:3e:6a:53:12:
1b:7c:80:f3:12:b7:ff:bd:fb:d1:63:f6:17:62:48:73:d8:ec:
0b:a6:82:3c:5a:38:04:18:20:c4:ae:0d:64:c0:be:8a:39:e3:
6b:09:a8:e5:3e:16:8f:70:7b:93:e7:20:3c:5a:38:3e:8b:bf:
7c:dc:dc:cb:37:08:1e:40:cc:83:85:59:e7:07:48:09:d2:3d:
37:35:e2:e0:f2:0d:2e:b3:a3:3a:1d:13:20:b3:36:bb:d4:5a:
3f:51:66:22:bd:9e:17:24:42:82:3e:1b:6e:0a:6e:5f:78:82:
5b:77:70:4f:d4:3a:5b:31:ae:a1:70:d5:42:93:6d:30:6b:d9:
8f:0b:c6:5d:20:11:f7:ef:2d:d8:a0:25:24:0d:f2:bb:32:11:
d5:63:5f:5f:a2:b6:e0:37:dd:bd:d5:bb:06:b9:3b:15:87:4e:
df:c3:c7:80:10:ed:0a:51:05:25:b8:ed:8e:d0:e4:d6:17:18:
25:5c:84:3a:d9:00:89:8f:57:8f:89:ef:98:05:20:5e:3f:fe:
ed:a1:a0:8e:7f:33:e1:4f:bb:12:56:d3:22:8d:13:81:d4:fb:
92:46:ca:61:4a:46:99:57:8f:de:5a:b3:60:48:8b:16:64:6b:
97:8d:3b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 08:09:02 2026 by rpki-client