Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
File: NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft (raw, json)
Hash identifier: DMdPMDwTEW0FFsLI5vc6zlj9lx+pupkUCq2BIic2wSI=
Subject key identifier: 39:FB:FA:CC:52:E2:94:5A:29:E7:AC:65:F9:74:3E:9F:D2:E5:44:35
Authority key identifier: 34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
Certificate issuer: /CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Certificate serial: 019D3865CE61DE44089D870822795F2164D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
Manifest number: 0952
Signing time: Sun 29 Mar 2026 07:01:29 +0000
Manifest this update: Sun 29 Mar 2026 07:01:29 +0000
Manifest next update: Mon 30 Mar 2026 07:01:29 +0000
Files and hashes: 1: NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl (hash: +XKOgx9RzFpQFx3D7rwkDhPw6VRfMY6bEXPJXwrbcsI=)
2: e_OqWACnyi2Gw8DMbR4NWVTK1DE.roa (hash: Ya8bGHns04cHwjGPb8IJhQNI3VXum/7q6BwWLFTuZIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:ce:61:de:44:08:9d:87:08:22:79:5f:21:64:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34b0c5a403e2dad3c47b791fda2042cf715009cf
Validity
Not Before: Mar 29 07:01:29 2026 GMT
Not After : Mar 30 07:01:29 2026 GMT
Subject: CN=39fbfacc52e2945a29e7ac65f9743e9fd2e54435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:53:56:d1:d2:7c:2f:3c:fd:25:34:68:8d:f5:
e8:37:ca:6b:0e:58:1a:0a:a6:a1:eb:23:19:88:a1:
c5:b3:95:23:9e:df:39:f4:3d:53:bb:58:3f:6a:d8:
06:aa:a7:f9:a0:e2:84:df:7a:fb:57:fe:ee:e0:42:
3c:63:8b:25:b8:02:83:1b:c7:ae:61:11:fb:bc:e6:
a5:db:06:15:59:77:ec:f5:4e:10:30:c0:13:a3:46:
77:64:34:5f:d8:10:0b:90:92:5d:3d:50:7f:1e:c3:
d8:20:64:b2:b1:09:f1:c3:f9:98:4d:72:b7:e1:5e:
27:ae:e2:fd:0d:e3:b2:10:5c:ac:47:1d:d1:00:04:
65:f1:6f:07:6e:c3:30:db:7e:b9:a4:a0:cc:95:51:
e6:5e:b8:b7:3e:68:9f:8e:fb:44:27:17:0d:39:0e:
e4:8b:26:49:2f:c1:24:52:16:45:cc:fe:79:af:f9:
58:35:59:98:5f:1a:d3:15:84:13:d5:45:3b:03:c5:
0d:fb:a3:e3:25:45:ab:73:1b:91:d1:f6:3c:f3:df:
d6:ef:18:e3:bf:3c:e5:9c:2a:84:eb:b3:66:8b:dc:
3c:7b:01:0b:89:dc:28:59:6c:7d:d4:5a:3d:fc:34:
ee:b2:c4:d4:d9:25:21:54:a5:f9:6b:49:0d:e8:1d:
be:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:FB:FA:CC:52:E2:94:5A:29:E7:AC:65:F9:74:3E:9F:D2:E5:44:35
X509v3 Authority Key Identifier:
keyid:34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:20:b5:ec:06:9c:f3:8d:a2:8a:fc:2b:cd:81:30:86:61:8b:
9a:59:9c:7a:71:e4:3d:49:6d:36:8e:3c:bf:25:9f:77:37:31:
81:26:60:90:51:c5:41:df:2a:32:f0:5b:08:e3:71:1e:d6:dc:
41:82:c2:66:c2:10:7e:e1:88:99:e6:3b:5f:35:a5:d3:72:69:
f3:0b:54:16:69:bf:2f:c6:d2:99:7c:1d:49:cb:96:9b:01:58:
7e:67:69:01:7d:1a:85:ee:84:05:98:15:8f:f4:a0:3f:d1:8a:
f4:1b:6d:b1:ba:e6:e8:59:ee:69:87:69:95:e8:93:7b:9f:63:
77:fb:13:92:42:49:d0:66:5d:cf:ae:5c:24:b5:73:56:ae:cf:
df:8e:2a:da:21:70:fa:f6:ef:06:fe:fc:57:00:c7:31:ad:d8:
de:43:57:85:25:ae:45:62:87:7a:84:18:e9:bc:92:89:f0:21:
0d:44:0d:a7:99:87:68:e1:25:bb:22:e6:08:b1:ae:5f:88:6c:
a6:ac:33:cc:bc:bb:44:8d:b1:d8:db:31:39:d2:93:a6:b7:ac:
f2:e5:56:e4:c2:91:fd:dc:f8:f6:47:b2:48:eb:9d:00:e1:49:
04:7b:1c:d7:3d:f9:bb:47:5b:e9:19:ff:57:46:51:8e:14:a0:
ac:2d:33:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:57:44 2026 by rpki-client