Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
File: ndrXzlnL6NGaA0EfocbJug1CAqI.mft (raw, json)
Hash identifier: Vpp3LKholPIhKBypjQGj2ZIyzOsJgqeqaK+7+TjaxMo=
Subject key identifier: B8:2E:E4:4A:4E:A0:DB:82:BA:FC:78:45:22:7D:65:11:F3:64:04:DF
Authority key identifier: 9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2
Certificate issuer: /CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2
Certificate serial: 019D28F2D4CD19086D553927CC4874E7E280
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
Manifest number: 0BF7
Signing time: Thu 26 Mar 2026 07:01:35 +0000
Manifest this update: Thu 26 Mar 2026 07:01:35 +0000
Manifest next update: Fri 27 Mar 2026 07:01:35 +0000
Files and hashes: 1: ndrXzlnL6NGaA0EfocbJug1CAqI.crl (hash: nLwxUQV0JzvTy09w46FQCN7mfcDsIxcYc773Oc2aZNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:d4:cd:19:08:6d:55:39:27:cc:48:74:e7:e2:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2
Validity
Not Before: Mar 26 07:01:35 2026 GMT
Not After : Mar 27 07:01:35 2026 GMT
Subject: CN=b82ee44a4ea0db82bafc7845227d6511f36404df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a6:e5:45:07:02:b0:04:db:1e:aa:d0:a3:39:
23:c9:e2:1a:05:5a:41:7d:31:09:4f:4f:7d:98:4e:
58:50:42:07:db:43:04:8f:fe:d8:57:b7:b0:cc:ed:
7a:e5:da:9f:8a:2d:b1:a2:62:65:b8:32:e1:05:d6:
8d:49:e7:33:2c:bb:e2:34:38:ae:87:dc:21:66:29:
18:27:57:49:c4:a5:38:0f:99:5e:95:8c:bf:86:d8:
26:a1:3c:94:7a:81:80:b8:62:5a:b7:55:9a:34:1e:
e3:ce:9a:82:bc:b6:01:62:29:74:4f:29:7c:d2:cc:
bc:23:84:3d:2e:b3:3b:2c:0b:1b:bd:e7:09:30:37:
7c:9e:99:f7:5d:e8:f0:93:de:60:a1:28:38:a5:00:
93:0a:28:39:c2:d7:44:42:d0:b4:47:a2:c9:7a:01:
9d:af:45:a5:30:ef:43:6a:fa:c9:ba:21:ee:65:5c:
13:ea:c4:10:b9:2f:9b:27:93:ed:04:af:0e:a8:e2:
3b:79:66:dc:00:d1:92:ca:92:80:89:c9:c4:6e:c3:
b1:c8:7e:32:36:e8:50:fb:72:32:6e:04:ff:d9:0d:
da:e6:6e:72:8b:93:d3:9c:4a:b8:60:a9:06:3b:52:
18:0a:27:5f:f9:58:a8:80:66:10:f8:28:5b:d7:ab:
5e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:2E:E4:4A:4E:A0:DB:82:BA:FC:78:45:22:7D:65:11:F3:64:04:DF
X509v3 Authority Key Identifier:
keyid:9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:0c:21:8f:15:b9:ac:cd:32:a4:31:02:a0:41:2a:12:ca:88:
85:89:28:74:73:7c:29:7d:91:a8:7a:b8:39:7b:bc:21:a3:2d:
19:59:e0:2d:eb:c0:28:4f:3a:88:65:b1:f8:ed:09:63:df:bc:
cd:b8:da:29:27:e2:ff:35:0d:50:c9:9f:ec:4d:f2:be:b5:7a:
ef:24:28:ed:42:fb:85:2e:89:35:84:c8:a4:92:ba:26:74:44:
d1:9f:06:e4:73:e7:b7:b8:57:23:55:32:d1:01:2e:15:aa:49:
1d:8a:59:9c:dc:9c:69:ff:9f:76:01:63:0f:c1:94:87:3e:cf:
2b:95:45:33:0e:2b:ef:db:34:84:4a:02:45:7a:3c:eb:6c:73:
26:b8:2a:58:63:97:b1:0f:6e:f5:e5:23:db:43:e3:7f:6c:07:
c4:63:cb:36:05:e1:ff:78:57:0c:c2:d8:34:62:ff:09:af:f8:
62:0d:9c:a4:5f:b9:4f:1d:80:33:0d:63:8b:ff:c9:ee:33:c6:
f3:7c:25:e1:c6:0e:6e:20:7f:2f:45:30:72:01:93:57:90:78:
94:52:c6:66:bd:72:8a:da:a3:fb:f4:22:a5:13:4c:e6:f4:73:
1d:08:7d:cb:2f:01:0d:97:de:3c:8e:e4:f8:14:53:24:a2:8e:
db:90:fe:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:18:32 2026 by rpki-client