Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
File: NADZSQmD598yx88Xyh6tTwX3lkY.mft (raw, json)
Hash identifier: FWEd+P4OlaOzOb+d/khYPWq4+hP4ub9B/6yloEs3K60=
Subject key identifier: 6E:52:FB:5F:43:8E:FF:4C:D8:0B:35:0F:B0:3A:B2:2C:FD:B0:AD:7A
Authority key identifier: 34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46
Certificate issuer: /CN=3400d9490983e7df32c7cf17ca1ead4f05f79646
Certificate serial: 019E1F108C586AB06C294D8D67F22EB784C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
Manifest number: 0A79
Signing time: Wed 13 May 2026 02:00:38 +0000
Manifest this update: Wed 13 May 2026 02:00:38 +0000
Manifest next update: Thu 14 May 2026 02:00:38 +0000
Files and hashes: 1: NADZSQmD598yx88Xyh6tTwX3lkY.crl (hash: O8f2WgFc/cx5Z9h40WiwwAhGq9HQQAu7/lyVKb0Wteo=)
2: uaapElHUAVaZCvTQWY96RRO1BmE.roa (hash: YoDD+GqIi7yXJNJvp1uQ/eykR6jqDrzcDx3qks2vpKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:8c:58:6a:b0:6c:29:4d:8d:67:f2:2e:b7:84:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3400d9490983e7df32c7cf17ca1ead4f05f79646
Validity
Not Before: May 13 02:00:38 2026 GMT
Not After : May 14 02:00:38 2026 GMT
Subject: CN=6e52fb5f438eff4cd80b350fb03ab22cfdb0ad7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6f:e0:e9:db:57:08:56:77:6d:c0:55:e7:78:
b7:39:ff:48:53:ae:5d:fe:63:f1:4e:4b:e1:ec:dc:
4b:2a:e3:00:f6:80:eb:0a:dd:ea:8c:c5:97:35:60:
d4:24:a4:a2:19:87:7d:48:98:d7:fc:73:9b:86:f7:
dd:11:2f:2f:8a:9b:e9:c7:f9:47:2b:31:09:89:16:
d6:01:80:08:b9:f8:a5:13:f0:97:f4:ab:f4:dc:44:
9b:96:f2:88:d2:ba:f2:11:84:73:4f:1c:13:f7:aa:
65:bb:cd:14:6e:a1:ae:c3:16:45:51:c9:e5:bd:18:
67:a4:16:51:7b:5d:4d:f7:6d:2e:6a:78:98:3a:1e:
ab:84:2b:37:dc:2e:ec:71:bb:20:52:0f:22:d3:12:
86:98:ac:87:a6:92:e7:83:a2:72:5b:e9:8f:d5:24:
ee:3d:12:ab:92:1b:7e:28:0b:cd:94:dd:c6:8f:4b:
e1:a7:f3:9b:aa:7b:75:1f:47:bd:f0:5b:7c:e6:0c:
1f:e7:eb:9e:72:6a:84:6d:ac:52:1a:2f:2a:9d:bd:
c4:04:c9:fb:b3:79:a9:e1:38:20:6a:3e:b5:3b:ff:
e4:2d:2f:c0:d9:04:1c:8e:2c:59:f2:8b:23:bf:f7:
00:6e:29:7b:fd:44:86:b1:b6:77:25:2b:68:43:59:
96:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:52:FB:5F:43:8E:FF:4C:D8:0B:35:0F:B0:3A:B2:2C:FD:B0:AD:7A
X509v3 Authority Key Identifier:
keyid:34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:b0:73:da:7f:66:32:aa:e1:f0:41:4c:7e:1b:0f:fb:83:da:
9a:ce:c7:dc:4f:c0:0a:9b:be:4c:dc:83:aa:c4:d9:4f:c1:a5:
36:aa:2e:e4:ff:53:77:ca:44:ff:51:7b:c4:42:63:1e:22:7b:
1e:b9:83:dd:40:c3:a9:9b:42:5a:9d:ad:a0:94:98:f2:2a:68:
8f:04:fb:ff:3b:29:37:c7:3f:03:14:77:20:13:18:a7:6b:41:
d1:f4:4b:80:d8:8c:cd:b3:59:12:c2:4a:97:ae:f5:3f:91:66:
64:a6:db:82:eb:fe:bd:83:6d:ca:21:16:d4:80:26:4a:a3:e2:
27:0e:85:72:4c:d2:a6:a3:7f:0f:58:ee:bb:38:f2:cc:92:6c:
8e:8b:db:1a:6e:d1:71:0f:3a:28:92:13:21:0a:1e:e8:16:bc:
25:37:3b:47:46:8b:60:23:e4:02:37:8d:69:8b:eb:1a:74:b6:
f3:c5:6e:dd:a1:29:c5:d1:fb:2c:bb:b4:ef:c1:76:c2:d8:43:
50:39:53:24:6b:03:6b:9d:5c:8e:bd:52:2e:af:8b:0b:8d:24:
49:2b:16:0c:5b:e8:cf:72:21:2a:06:dc:b3:8e:a0:96:48:aa:
10:fd:31:e2:ba:ec:d5:c7:a5:be:4b:9b:a1:0a:6e:f5:5a:de:
f7:ea:26:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:51:55 2026 by rpki-client