Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
File: nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft (raw, json)
Hash identifier: pFllFBZtNRpTrnMrnNOmYrOXYqPI5BB/7nsCVKgedmc=
Subject key identifier: FA:82:30:CE:F3:2A:50:57:4B:F5:1C:B0:C5:C6:6B:C4:E4:54:11:38
Authority key identifier: 9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
Certificate issuer: /CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Certificate serial: 019D284E3AA40FC3C27340872F1F8FEEDF54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
Manifest number: 1884
Signing time: Thu 26 Mar 2026 04:01:48 +0000
Manifest this update: Thu 26 Mar 2026 04:01:48 +0000
Manifest next update: Fri 27 Mar 2026 04:01:48 +0000
Files and hashes: 1: GF0MLu9rUCMKqqUs-tw36g9XAm8.roa (hash: CGs8wTMFQfIv83nixyW2lwUi4DwWo83SvcVxQaC6KDo=)
2: nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl (hash: YPi49NZGLvkJzemX3IdcDTpEqB/qsmiirTHtR5Y4j24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:3a:a4:0f:c3:c2:73:40:87:2f:1f:8f:ee:df:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Validity
Not Before: Mar 26 04:01:48 2026 GMT
Not After : Mar 27 04:01:48 2026 GMT
Subject: CN=fa8230cef32a50574bf51cb0c5c66bc4e4541138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e7:c5:29:e1:a0:ff:ee:2b:ea:2f:f0:b1:35:
f3:13:a3:58:2d:c6:1c:ae:c3:b7:ca:11:21:27:d2:
e7:8e:4e:b9:8a:bc:32:4a:6d:bd:9f:b4:da:02:77:
68:3a:7f:a1:b5:59:a2:52:2f:7a:dd:ed:20:a0:00:
d6:a4:7b:29:0c:c2:7d:61:06:0e:cc:69:13:f4:2d:
b5:b6:55:18:ca:e9:95:e4:be:e9:dd:83:11:7a:3b:
19:23:0e:63:dc:1c:f5:c5:6a:67:63:23:ec:c2:07:
05:f4:76:6f:6f:20:e7:25:be:92:f0:06:e8:b0:07:
16:ed:e8:bc:d5:9e:e7:15:05:2d:88:d5:b0:7e:5d:
de:77:7d:5e:c0:fb:a9:12:1c:51:dd:78:15:ca:b7:
e8:45:3b:1e:22:d1:d0:f9:be:b6:43:48:d6:6d:f0:
bf:b5:17:78:00:e7:40:a7:4f:a7:fa:f0:07:53:61:
3b:7a:f9:8c:bb:43:f8:c7:8c:09:da:ae:b8:cc:b9:
c4:ff:e6:4b:91:c5:5d:82:0a:db:e5:81:7c:4a:9e:
8f:10:f5:8a:56:bc:cd:00:e7:33:8c:77:6e:1d:10:
60:22:fa:49:a3:0b:27:f9:d2:c5:06:b7:fd:56:06:
7b:63:90:93:72:6f:12:e0:96:c3:17:4a:4f:7b:d9:
b7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:82:30:CE:F3:2A:50:57:4B:F5:1C:B0:C5:C6:6B:C4:E4:54:11:38
X509v3 Authority Key Identifier:
keyid:9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:5f:d0:7f:ee:de:71:f5:d2:2a:62:75:1e:07:6b:0d:c4:3d:
a0:44:15:b4:b0:6a:c5:0b:e5:29:1e:33:36:37:4a:f2:e2:9a:
1d:00:80:12:09:cf:08:a4:cf:93:63:71:a8:93:01:aa:c1:6d:
93:ce:27:7d:54:bc:4d:8b:fc:93:62:e7:ee:4f:87:c3:2e:85:
87:2d:a0:45:52:49:af:80:78:b2:fa:2e:0d:96:30:4c:e7:b2:
52:52:ef:a4:e8:0d:42:bf:76:79:db:28:f6:8b:38:04:97:84:
ee:04:08:a1:87:09:77:7a:2e:9c:9d:4b:4e:59:a0:20:19:c3:
12:df:87:4c:c9:4a:6f:49:7c:62:fa:70:c6:f4:35:51:86:46:
32:bf:5f:d9:f5:94:82:23:58:21:9a:d0:fb:96:96:75:02:eb:
f3:80:41:56:34:b2:a5:4f:86:a9:57:40:01:a9:ca:f3:79:4e:
9d:f6:61:cf:9d:52:a7:ad:1c:4b:a4:8c:3c:67:2c:26:eb:dd:
c1:80:51:9a:96:c4:d6:7c:5a:a2:bd:db:3b:50:3b:f5:ac:29:
9a:00:ec:b0:ad:8f:82:3a:cb:21:aa:c8:91:1d:ec:ca:87:e1:
bf:e8:92:4b:b8:58:b7:4e:61:28:79:c1:b5:4c:a0:e7:c3:33:
04:fa:1d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:58:48 2026 by rpki-client