Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
File: nlf4Q7F__OqpuGNlgf5NVONG3cw.mft (raw, json)
Hash identifier: QP+VmdgQwukRvRd+HLIyMdacr6ke6omV3XuU9yULSWs=
Subject key identifier: 87:26:A5:57:4B:C0:44:43:9A:6A:2C:08:93:AC:AC:66:02:DB:EE:80
Authority key identifier: 9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC
Certificate issuer: /CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc
Certificate serial: 019D29608E60C7EC8B79E7D7563A798F3D81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
Manifest number: 0EDC
Signing time: Thu 26 Mar 2026 09:01:26 +0000
Manifest this update: Thu 26 Mar 2026 09:01:26 +0000
Manifest next update: Fri 27 Mar 2026 09:01:26 +0000
Files and hashes: 1: nlf4Q7F__OqpuGNlgf5NVONG3cw.crl (hash: ZCWHoySG67NIeA3DD4fSCGhYREcUjL4VgYNhN2zdqbU=)
2: ob7F2VCJOAAsHnye3Fkfiw3LDrA.roa (hash: 73dBJpgeQaRvDu0bCVr2PUKhwsl+BWtyqsuA67uRjtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:8e:60:c7:ec:8b:79:e7:d7:56:3a:79:8f:3d:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e57f843b17ffceaa9b8636581fe4d54e346ddcc
Validity
Not Before: Mar 26 09:01:26 2026 GMT
Not After : Mar 27 09:01:26 2026 GMT
Subject: CN=8726a5574bc044439a6a2c0893acac6602dbee80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:dc:29:27:f7:e9:d0:03:40:5c:14:d1:f7:99:
ca:56:1a:9b:84:77:4a:c3:ce:fb:18:67:9e:08:1d:
a3:9a:16:b2:b3:cc:7c:52:a4:e8:da:ea:fd:61:08:
bc:38:16:74:65:54:f3:c6:e0:45:e3:13:d8:59:a5:
f8:c1:1c:33:5b:c5:02:d2:2f:f2:70:ee:67:51:19:
af:b6:f4:49:c5:27:cf:3b:16:7b:17:5f:0f:53:fe:
a1:4e:75:95:20:9e:c7:20:f1:44:2c:09:1f:97:13:
85:44:c8:2a:e6:4c:74:43:73:79:7e:9a:88:64:38:
b2:9f:01:5a:79:17:8e:9b:5a:1f:cd:98:7a:49:4b:
78:78:40:e9:31:1a:e8:b0:c9:db:c6:ca:bb:5f:0a:
e2:cb:c2:5a:2a:91:06:52:49:d5:4b:df:42:e3:11:
e4:c2:c1:0c:a9:35:fd:f2:9c:5e:9e:20:cc:23:ea:
39:a1:02:7b:d9:c6:ae:e6:e4:6e:11:c1:e4:ff:9d:
74:c3:b6:4a:6c:28:97:27:3a:b8:ad:fa:7f:8c:a3:
9f:0b:bd:2c:2f:1f:70:fd:2a:b4:c4:ad:9f:f9:a4:
13:fc:27:1e:fb:d4:e3:72:f6:49:40:80:a1:32:23:
69:c8:6a:b3:22:8f:bf:fd:5f:af:14:18:8e:ee:aa:
21:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:26:A5:57:4B:C0:44:43:9A:6A:2C:08:93:AC:AC:66:02:DB:EE:80
X509v3 Authority Key Identifier:
keyid:9E:57:F8:43:B1:7F:FC:EA:A9:B8:63:65:81:FE:4D:54:E3:46:DD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlf4Q7F__OqpuGNlgf5NVONG3cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7d0efe-709d-4d11-b692-0e230806b579/1/nlf4Q7F__OqpuGNlgf5NVONG3cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:5a:a7:94:b4:60:79:9f:9e:81:93:0d:55:7d:51:3d:0f:2f:
8a:7f:50:96:fe:c2:e9:4f:0c:5f:33:96:65:75:67:1c:69:88:
0f:e4:8b:4b:a7:8f:28:14:4f:a4:ee:b2:08:ea:d5:ea:3a:31:
a0:de:cf:ed:8a:b0:6c:60:c7:49:9e:77:7a:a0:14:71:04:6a:
63:0f:60:56:dd:7e:3c:c3:8a:84:09:a3:d9:0f:d2:dd:30:42:
87:9d:de:c3:39:75:28:e3:1e:34:84:9c:cd:37:ee:61:a3:7b:
d5:aa:be:a1:d2:77:59:55:4f:83:db:b5:9b:e8:30:7c:59:3d:
be:20:a3:1c:b3:9c:40:b5:7a:58:f2:24:2e:55:53:7e:08:a4:
cd:35:89:2e:0d:75:6c:52:59:d1:b5:f7:62:1f:b5:25:dd:7a:
71:5e:25:f9:09:4a:d4:2d:26:4f:f8:e6:7e:2c:72:25:96:0b:
22:84:55:8b:df:7a:18:03:44:d7:52:4b:c2:e7:93:90:84:13:
5f:0d:2c:39:7f:fd:d9:44:32:70:64:08:4b:1f:eb:6a:21:60:
49:94:83:cd:75:3d:1f:d1:5e:14:e5:68:5d:d3:6b:dc:d3:ef:
dd:37:25:5f:5b:18:33:ad:41:98:11:79:a8:db:fb:83:b5:5d:
4a:40:91:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:01:01 2026 by rpki-client