Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json)
Hash identifier: gvOYOSghNWdoCOjhoNPXN0eLjsMvzIECKQDmsrLGZwM=
Subject key identifier: 4E:AE:DF:87:33:F1:6D:D9:69:DC:53:20:11:9B:B2:10:0B:71:A9:51
Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d
Certificate serial: 019D28BBABCA4D840C4A765CA163BCCDE72C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
Manifest number: 0F6C
Signing time: Thu 26 Mar 2026 06:01:21 +0000
Manifest this update: Thu 26 Mar 2026 06:01:21 +0000
Manifest next update: Fri 27 Mar 2026 06:01:21 +0000
Files and hashes: 1: 8QeOnl1jSGn4_0NxM6NuGpN-0Jo.roa (hash: J4omMw3D0N9tMXhiPZ3E3pOd7uQCU3TjcYrnPrhAQ04=)
2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: 9x0A3nT/h1c4wQt2KiB5pAtQxYyDVwMqEmtzhJEa+f8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:ab:ca:4d:84:0c:4a:76:5c:a1:63:bc:cd:e7:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d
Validity
Not Before: Mar 26 06:01:21 2026 GMT
Not After : Mar 27 06:01:21 2026 GMT
Subject: CN=4eaedf8733f16dd969dc5320119bb2100b71a951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:18:3b:87:59:13:b7:8f:d0:8f:db:22:ce:90:
56:71:86:f8:2c:f2:b0:66:7a:0b:7b:84:c5:59:3c:
ff:88:90:c7:e1:2e:42:c0:3f:b7:f8:05:fe:d4:ad:
c8:7d:91:dc:0d:60:28:83:77:bb:ce:34:10:20:dd:
ef:f9:4c:20:c4:70:bc:38:a7:2f:b0:3d:9c:d0:c1:
46:1c:2b:de:f1:b0:43:a4:99:f7:15:05:d7:78:a4:
35:9d:74:e7:46:da:28:fe:08:6d:fd:21:95:42:94:
95:4a:75:c0:5b:5d:bc:1a:c9:db:24:ab:8e:ff:d3:
da:5a:df:a9:3a:bf:45:a2:db:d4:01:29:a9:92:95:
e4:8e:76:59:ca:9e:98:02:87:82:55:f2:96:d7:bc:
c8:41:fd:5d:72:4e:b7:37:8e:8a:09:39:b2:ea:ef:
6f:ae:df:86:57:96:78:f7:2e:33:d6:5c:02:4d:e6:
9a:c5:cb:47:a3:ae:7c:fb:c2:81:bd:e6:82:c4:02:
27:b5:05:79:80:2e:ab:28:9b:5a:06:09:76:53:49:
ae:92:c7:59:28:0b:a2:81:90:a7:6d:13:28:f3:7e:
13:b7:94:47:12:1b:4d:93:f9:34:25:6b:d3:f8:cd:
dc:2a:fe:98:25:34:52:49:71:4f:3c:2a:9f:fa:04:
8d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:AE:DF:87:33:F1:6D:D9:69:DC:53:20:11:9B:B2:10:0B:71:A9:51
X509v3 Authority Key Identifier:
keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:a9:ee:32:4c:ce:f0:46:6b:51:79:ba:02:08:2f:a4:1d:f7:
56:49:a5:d3:61:09:bb:03:3d:2e:8c:b5:52:9d:bd:fd:8a:79:
00:c1:11:0d:22:cf:a0:84:9a:33:2b:90:1e:88:01:4f:1e:e5:
e3:71:18:c4:dc:91:38:00:6d:a2:21:ed:31:4f:10:a4:a5:c1:
86:26:27:24:2d:4a:86:9e:bf:56:3c:81:8e:5b:0d:a2:b4:10:
6c:6c:38:2b:ea:3c:a1:a2:a3:bb:01:d6:71:9d:a9:30:64:76:
53:36:05:9a:9e:ba:20:09:28:55:dc:99:19:ed:0a:15:01:62:
71:2c:31:04:75:96:ae:f3:4d:24:e6:3c:8c:0d:96:0f:f7:68:
f7:9a:9d:82:17:68:f3:c0:37:e4:8d:1d:fe:19:f4:2e:35:fb:
b7:79:98:7d:2d:51:37:a7:7f:04:fd:08:7d:0a:8e:68:e4:8d:
48:9d:66:d4:bb:25:ee:10:9a:d6:b2:54:c3:a6:0b:a2:a8:b1:
8a:95:c0:d1:ae:63:1d:cf:31:57:b8:9e:24:79:62:32:fa:31:
df:a9:ae:1f:39:44:18:03:54:8c:64:0d:e6:db:83:77:fc:5e:
02:42:e6:00:a6:75:a9:35:a4:39:a1:12:2f:53:ab:6f:df:6c:
dc:4d:43:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:56:24 2026 by rpki-client