Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
File: NW2albrOGXhcQGR2Y_MdkFYmHC8.mft (raw, json)
Hash identifier: ow4cpJMuuUSx8d4o12Y/TJlm1ANpdH/NFKi7qa9MlRQ=
Subject key identifier: 19:C0:42:61:29:F5:5A:FE:A3:DD:5F:B8:26:C3:C9:74:7F:67:A3:65
Authority key identifier: 35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
Certificate issuer: /CN=356d9a95bace19785c40647663f31d9056261c2f
Certificate serial: 019D97E255FBFF88B41CDCB6CAC91DC8428D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
Manifest number: 18BF
Signing time: Thu 16 Apr 2026 20:01:25 +0000
Manifest this update: Thu 16 Apr 2026 20:01:25 +0000
Manifest next update: Fri 17 Apr 2026 20:01:25 +0000
Files and hashes: 1: KJ32RrCVAy4PyqYtI55Q1n1tyzU.roa (hash: LCB31ML0gf7+olaDPAC46q6pMd69LDFTi6lr8UwROW4=)
2: NW2albrOGXhcQGR2Y_MdkFYmHC8.crl (hash: sI6P944bsU3ReIm1ElUyfkB0bRPy7PEIFGAqECLfctk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e2:55:fb:ff:88:b4:1c:dc:b6:ca:c9:1d:c8:42:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=356d9a95bace19785c40647663f31d9056261c2f
Validity
Not Before: Apr 16 20:01:25 2026 GMT
Not After : Apr 17 20:01:25 2026 GMT
Subject: CN=19c0426129f55afea3dd5fb826c3c9747f67a365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0d:b2:9f:62:d3:1a:74:45:41:17:01:4e:24:
09:06:94:08:ef:7d:9f:ff:00:cc:dc:c4:b2:89:89:
77:48:99:70:6e:e3:05:29:8d:56:19:f9:e9:d2:da:
d5:06:03:65:60:e2:89:1d:65:9a:a7:c1:65:96:41:
5d:ec:e4:27:ce:4d:ad:d2:50:92:d7:2f:6f:c3:4c:
db:b3:7e:a2:0b:1b:b2:45:89:c7:01:ef:3e:cf:5e:
02:c0:38:ad:b4:04:48:8d:42:49:ea:cf:cd:56:f7:
ab:5c:a7:11:8b:eb:26:7c:8a:1f:42:4a:bb:77:3b:
3e:fc:2d:ad:e2:ec:10:bf:85:02:31:93:e0:61:52:
07:18:87:74:b7:17:c9:84:39:3d:c3:6d:ba:aa:a6:
2f:9b:11:7e:8c:ed:f6:66:12:17:6c:2f:02:0d:71:
74:54:5f:76:15:9f:03:70:83:2c:44:9b:34:21:bc:
05:df:c9:24:68:cb:16:67:fd:74:63:ef:cb:f9:fc:
14:21:42:ed:bc:ae:7b:eb:80:94:c1:a9:94:c6:d5:
fd:1b:15:e2:70:4a:39:41:ff:40:2c:10:c3:5d:82:
16:58:a1:e2:ec:3c:fa:07:c6:4e:6e:e1:ec:87:35:
5d:b5:e2:64:e3:a8:85:8d:07:ab:a9:35:5c:1f:d7:
cd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:C0:42:61:29:F5:5A:FE:A3:DD:5F:B8:26:C3:C9:74:7F:67:A3:65
X509v3 Authority Key Identifier:
keyid:35:6D:9A:95:BA:CE:19:78:5C:40:64:76:63:F3:1D:90:56:26:1C:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NW2albrOGXhcQGR2Y_MdkFYmHC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/dd9c90-31a9-4995-9da3-4efde6eb32d4/1/NW2albrOGXhcQGR2Y_MdkFYmHC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:17:ad:59:30:f4:0b:bc:a8:a9:d5:eb:6f:06:d7:9e:33:05:
f4:b9:47:89:30:a1:8c:6c:2f:96:a0:5d:15:82:6f:30:84:e0:
e4:dc:8b:e6:e3:4e:46:f7:9a:ca:9f:48:d6:25:fe:44:5a:dc:
8c:14:76:a7:d2:44:cc:ea:86:cc:e4:2e:f4:c9:36:a4:10:b6:
92:19:9a:4b:14:79:4d:b3:00:43:d7:18:71:c4:29:39:05:6c:
07:6c:56:98:3c:ae:80:40:dc:6f:25:61:2e:d7:dd:ae:bb:7a:
f6:4f:48:d9:8f:25:78:68:1c:4a:9a:b5:c0:55:d2:fd:6c:be:
0f:ea:be:f0:92:83:98:34:36:a1:de:2f:f5:81:64:fb:1b:5f:
7c:f3:c9:34:54:64:fd:38:25:51:ef:23:df:3b:4d:91:2d:22:
05:91:76:7d:74:76:02:cc:e7:0c:29:26:19:73:e9:4e:9b:7a:
6e:46:43:54:09:af:97:12:4e:d6:75:8a:58:f3:ce:5a:db:3a:
97:3e:72:49:3a:d2:1b:cc:ce:63:2e:2e:71:17:43:36:9f:0d:
aa:ec:8a:ed:fe:5b:cb:bd:e3:e9:9b:41:32:2a:c9:95:39:af:
82:d7:e0:4b:f2:2b:6f:4b:d9:71:39:b8:b6:78:41:f8:50:a2:
ed:ca:95:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:20:43 2026 by rpki-client