Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json)
Hash identifier: Xzca23eKGQQLQagPppZ/IezrpiL4n3kqnQzMm9pU3oU=
Subject key identifier: 3E:3A:49:80:3D:F3:50:24:AC:E1:36:7B:52:5B:B3:AA:B9:76:9B:7A
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 019D3789B697543B19A13A9182D37F6F7481
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 03:01:05 +0000
Manifest this update: Sun 29 Mar 2026 03:01:05 +0000
Manifest next update: Mon 30 Mar 2026 03:01:05 +0000
Files and hashes: 1: eypzd6poG3jDCG2V-Hkvi0h-uqk.roa (hash: a6MGVLLBIxQKSFoYyBfEEcE09ol5itCNEXdRhC5N+Ao=)
2: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: /coPAKffVCoIMsJGPipEkj5IjFnVP6rukcya7bINIJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:b6:97:54:3b:19:a1:3a:91:82:d3:7f:6f:74:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Mar 29 03:01:05 2026 GMT
Not After : Mar 30 03:01:05 2026 GMT
Subject: CN=3e3a49803df35024ace1367b525bb3aab9769b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:72:c1:af:02:55:73:8b:8b:c9:75:4b:09:e6:
77:b5:49:80:1c:cd:fb:77:f7:8a:58:79:a9:59:c4:
af:61:ea:9b:18:38:35:61:96:42:57:01:d3:87:35:
72:de:ba:20:9f:a8:47:28:94:e8:93:6f:67:82:80:
a4:ca:94:6b:ca:41:0c:5a:23:eb:ee:b5:10:e2:0a:
65:8b:b1:dd:28:41:99:1b:18:bd:02:ac:78:93:2b:
9a:a0:83:93:7f:cc:f2:e1:b1:2b:53:f0:27:1c:59:
7c:5f:6f:b3:c0:9b:cf:1a:74:25:de:ba:96:88:7a:
0b:6a:22:22:ff:6b:b3:ca:3f:b2:e9:e6:5a:ca:a5:
54:b8:4a:3e:e5:e6:12:cc:20:00:59:e9:b9:29:4c:
7b:98:bf:8d:91:43:fd:7a:d8:4f:07:33:0b:64:26:
69:36:34:db:ae:5b:7e:e8:6b:b0:ab:bc:4e:3a:33:
af:a2:b1:98:59:6d:54:86:94:e7:88:b4:ee:e5:33:
3b:ce:d2:79:56:74:8f:9c:a1:5c:9d:ab:7f:fb:89:
2a:fd:8f:89:b6:3d:a4:65:f4:39:bf:50:b3:f0:cd:
f7:4f:d5:45:4d:42:1d:21:0d:1a:c9:bc:10:18:04:
12:28:22:b3:44:94:c1:c2:9c:71:76:82:b0:d3:ee:
6b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:3A:49:80:3D:F3:50:24:AC:E1:36:7B:52:5B:B3:AA:B9:76:9B:7A
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:52:e1:da:b5:a9:47:7a:0b:51:1a:f5:18:ea:f7:a0:43:43:
3f:b2:72:eb:59:fc:de:b6:04:60:e0:ae:af:91:50:9a:5f:76:
5b:42:dc:44:0c:a8:01:64:6e:fa:61:18:7d:ba:d2:31:7a:f2:
64:ba:fc:db:ab:b8:f8:82:29:58:87:9a:45:2f:70:50:d6:2e:
e3:44:eb:b3:35:a4:dc:f0:40:53:59:b4:66:c5:3b:4c:7f:6a:
cc:b2:4a:1c:d3:91:5c:88:fa:5a:96:3b:be:a6:41:94:f7:24:
28:dc:53:3e:57:0b:72:93:9d:a0:09:be:2a:df:1a:f5:b9:ab:
bd:31:08:31:a1:15:9b:23:03:fd:b5:b8:d1:32:5a:f8:0d:b1:
bb:73:7e:cf:b1:62:52:28:8a:3d:1a:62:52:29:b1:41:10:8f:
98:ba:10:8f:dd:a8:ca:c2:24:3a:ba:cd:2f:b6:52:23:75:89:
fa:6a:69:26:0e:11:c1:32:ba:7e:43:d8:26:f5:00:7d:4e:66:
ef:bc:c2:db:7d:db:a8:c6:6e:25:0c:f5:8f:83:21:7d:b4:ee:
b3:43:70:64:02:0e:c1:cb:49:fe:7d:c3:c8:c3:89:85:4f:cd:
2a:cc:bf:63:32:ca:53:a4:1e:2f:23:0f:b7:e5:72:10:6c:1b:
50:a6:72:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:08 2026 by rpki-client