Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
File: nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft (raw, json)
Hash identifier: m9hGbqI/fL7/5E5RLWrnKJ9bWTIMwOlXmdy0ttAKqkI=
Subject key identifier: 3D:94:E8:C0:60:9E:B1:14:C8:01:98:52:F1:BC:23:38:39:44:0E:91
Authority key identifier: 9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
Certificate issuer: /CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Certificate serial: 019D37C06BABB962FC0B4137031812D3D71C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 04:00:50 +0000
Manifest this update: Sun 29 Mar 2026 04:00:50 +0000
Manifest next update: Mon 30 Mar 2026 04:00:50 +0000
Files and hashes: 1: GF0MLu9rUCMKqqUs-tw36g9XAm8.roa (hash: CGs8wTMFQfIv83nixyW2lwUi4DwWo83SvcVxQaC6KDo=)
2: nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl (hash: 4MzhBpHJt0sXkZAl+TjQbGPACd5SVkAdcIkFwHyhK6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:6b:ab:b9:62:fc:0b:41:37:03:18:12:d3:d7:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec
Validity
Not Before: Mar 29 04:00:50 2026 GMT
Not After : Mar 30 04:00:50 2026 GMT
Subject: CN=3d94e8c0609eb114c8019852f1bc233839440e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cc:06:c9:cc:0f:6a:ba:7f:da:58:28:6e:28:
23:12:93:79:af:3b:6d:83:b7:a7:7e:ba:b8:4c:07:
81:e3:23:1d:e7:d2:e5:d9:74:1b:9b:ba:26:50:92:
50:9a:f3:d4:b4:0b:99:bb:21:11:37:39:f5:5a:54:
5f:74:d7:a4:6d:3d:05:b4:6d:3f:17:0c:63:57:da:
83:13:d6:d7:cc:45:76:c8:e6:03:b5:d7:56:e3:d5:
b9:02:0b:d2:fe:39:fd:42:cb:68:bb:26:cc:06:46:
f4:5a:df:5b:29:63:a6:84:d7:9f:a5:51:02:7e:8a:
db:0c:91:72:43:2b:a0:b1:73:15:e9:2e:4d:49:9e:
22:3b:7c:d6:e8:bc:95:c1:68:29:3a:f5:7e:af:e3:
3b:80:9a:04:e6:97:85:ec:77:04:1c:f8:1f:2b:5c:
e5:d6:3b:bb:e3:78:6e:fd:f1:d7:1b:70:a1:d7:b1:
90:39:48:0f:7b:3c:2f:12:f1:05:7e:15:c0:e6:44:
c2:cf:b3:31:b2:8a:38:fc:b1:6a:17:a4:44:3f:5b:
af:8b:7a:35:d7:c5:5d:b6:9e:b1:a3:b8:d0:d3:5b:
d2:84:5a:67:fa:8e:7e:ba:57:77:91:25:98:88:a9:
fd:71:47:ba:05:ee:36:c1:25:5d:c7:32:10:9b:18:
61:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:94:E8:C0:60:9E:B1:14:C8:01:98:52:F1:BC:23:38:39:44:0E:91
X509v3 Authority Key Identifier:
keyid:9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:6e:26:cd:14:9a:f5:44:b4:9b:db:bf:29:f5:3a:66:f7:89:
9e:b7:74:d3:b1:95:06:14:4c:09:2b:7f:a1:b3:33:bc:62:7f:
a9:b9:f8:93:a9:8b:0b:4c:63:d5:32:d1:0b:87:cb:b8:23:72:
22:66:2b:c9:60:77:dc:9c:c5:1c:da:3c:80:ca:4f:43:cc:cb:
b5:9c:45:21:dd:80:41:54:50:22:52:b6:eb:88:4f:2d:e6:99:
75:9d:cc:03:3d:1f:34:1f:0a:f7:8d:8f:d6:1b:c2:b5:65:af:
20:ff:38:c3:76:7e:ad:92:68:90:04:79:5f:d9:7e:7e:c6:25:
61:9a:92:0e:67:d0:be:07:5e:14:60:c9:43:f4:f0:ba:b4:b5:
7e:ba:2c:d5:79:9e:0d:de:b9:58:4b:7d:d5:2f:f6:01:84:18:
18:92:4f:37:36:e3:f2:d2:70:6b:2a:37:6d:4f:ab:91:01:5e:
30:af:db:2b:02:4e:63:db:63:97:0c:07:d7:ff:c9:92:24:22:
41:2c:3a:ac:84:de:57:85:63:4f:ac:d2:5d:9d:2f:58:b0:ea:
f1:c3:0f:37:1f:a6:35:d9:29:e4:8f:61:c0:43:24:ae:2b:fb:
ff:1b:c8:8a:54:6d:32:5b:cc:ca:77:a7:62:c6:42:25:f1:88:
66:3e:4d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:28 2026 by rpki-client