Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
File: nVK4OxL6igcTLMgIM6ED4J2L0E8.mft (raw, json)
Hash identifier: 36dpc/vFSU3tcx/qdUo/9Tvc/LWO6W2hh666IajLTmM=
Subject key identifier: 4D:EA:CF:83:6B:5E:36:22:CB:8E:C2:D5:7E:43:7D:9F:07:14:7A:9E
Authority key identifier: 9D:52:B8:3B:12:FA:8A:07:13:2C:C8:08:33:A1:03:E0:9D:8B:D0:4F
Certificate issuer: /CN=9d52b83b12fa8a07132cc80833a103e09d8bd04f
Certificate serial: 019DCD87559A08C56C587EB4825B4A49EA99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nVK4OxL6igcTLMgIM6ED4J2L0E8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
Manifest number: 05D5
Signing time: Mon 27 Apr 2026 06:01:31 +0000
Manifest this update: Mon 27 Apr 2026 06:01:31 +0000
Manifest next update: Tue 28 Apr 2026 06:01:31 +0000
Files and hashes: 1: EidzJCWNUyQpfWwfT7scfsDvqbQ.roa (hash: DXl1W2a36eg89T47v1wHSMBi3fnkBbmg5I1x8xEjCCU=)
2: nVK4OxL6igcTLMgIM6ED4J2L0E8.crl (hash: DCuMLCzK+eJHTMSsnk3YYawxRLePFWnkp5xESbXoxTE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
rsync://rpki.ripe.net/repository/DEFAULT/nVK4OxL6igcTLMgIM6ED4J2L0E8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 06:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:87:55:9a:08:c5:6c:58:7e:b4:82:5b:4a:49:ea:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d52b83b12fa8a07132cc80833a103e09d8bd04f
Validity
Not Before: Apr 27 06:01:31 2026 GMT
Not After : Apr 28 06:01:31 2026 GMT
Subject: CN=4deacf836b5e3622cb8ec2d57e437d9f07147a9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:59:e0:af:4a:5a:06:a6:95:33:8e:a5:56:f0:
e9:74:24:af:c2:8a:9f:3a:cf:9f:05:3a:ba:10:d9:
9c:ea:27:cf:be:25:2f:44:02:ab:98:b8:14:01:12:
d6:91:d4:b7:91:7d:53:b2:af:44:d5:a5:6a:58:fe:
09:19:3c:e8:bc:c0:a3:5b:55:26:f8:c1:79:90:58:
e6:93:e3:7f:53:ac:b9:ce:d5:c9:1b:50:aa:ab:ce:
b6:67:23:8c:ca:a6:e5:09:af:9a:f6:55:d8:62:8d:
c6:40:2b:70:9d:4d:6a:54:64:6b:0c:f7:b5:fb:45:
4f:71:99:79:d9:60:60:89:57:4f:f3:20:cb:c2:e4:
bd:ba:31:7d:ac:b1:1f:21:b6:c2:87:e3:ad:1c:49:
7f:0e:c1:f7:81:14:61:e2:86:b4:d8:e1:cf:d7:77:
39:20:1a:34:3f:ab:5a:6f:88:eb:2c:41:e3:f0:88:
bb:d7:60:7b:fd:26:7a:3a:87:4c:a8:0f:3d:35:90:
14:19:84:5a:eb:d8:14:5a:d0:7b:9e:6d:d1:41:55:
ec:7a:93:d6:5e:a0:0c:3f:57:b7:0d:ff:4c:c1:c4:
55:ae:6a:fa:f0:55:b2:2d:9d:19:57:2b:a8:20:16:
fe:6d:1c:70:0e:e3:31:df:5c:0e:5b:d1:0b:55:53:
2e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:EA:CF:83:6B:5E:36:22:CB:8E:C2:D5:7E:43:7D:9F:07:14:7A:9E
X509v3 Authority Key Identifier:
keyid:9D:52:B8:3B:12:FA:8A:07:13:2C:C8:08:33:A1:03:E0:9D:8B:D0:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nVK4OxL6igcTLMgIM6ED4J2L0E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7ba232-8929-410d-bddd-e4b6a9df9a34/1/nVK4OxL6igcTLMgIM6ED4J2L0E8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:63:3f:bc:1f:1e:7c:4f:a4:e2:8b:8e:0c:10:ba:9d:6e:11:
b1:ce:b2:05:f6:ae:3e:7a:9c:84:6d:90:0b:a0:da:eb:24:35:
64:6a:d7:8a:99:4f:e2:bc:a9:00:7c:80:a7:be:66:03:81:57:
e4:63:fa:a1:cb:81:c5:36:eb:20:e9:16:df:4d:92:5a:71:44:
5a:7a:ac:98:aa:c5:4b:79:b0:2e:20:bf:23:91:47:a6:be:2c:
c5:eb:4f:2f:05:03:a7:ec:0b:02:7b:b4:d0:79:a3:5c:72:87:
26:a3:21:ff:e6:11:e4:2d:27:35:1c:e6:c7:e7:67:23:8a:b9:
da:4a:db:59:26:be:1d:2e:a7:c6:db:58:de:cf:28:f6:10:66:
81:c4:71:b0:dd:d5:89:f3:53:3b:84:7f:a6:2c:3f:33:fa:82:
03:89:68:81:2e:a0:39:4a:15:79:b3:25:a7:8b:51:77:67:92:
2b:f4:15:44:7a:b5:d7:65:00:17:8c:83:b4:19:1b:48:65:ea:
89:b8:be:a3:9e:b5:b3:a8:7f:89:63:34:a5:02:78:b7:f2:7c:
dc:b9:f9:32:29:74:31:ac:ec:0c:3a:0f:06:91:ef:dd:10:64:
c1:c3:67:6d:ce:17:e9:89:1d:b8:12:7a:9c:e0:02:ac:44:dd:
ff:1d:9b:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3Nh1WaCMVsWH60gltKSeqZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkNTJiODNiMTJmYThhMDcxMzJjYzgwODMzYTEwM2UwOWQ4
YmQwNGYwHhcNMjYwNDI3MDYwMTMxWhcNMjYwNDI4MDYwMTMxWjAzMTEwLwYDVQQD
Eyg0ZGVhY2Y4MzZiNWUzNjIyY2I4ZWMyZDU3ZTQzN2Q5ZjA3MTQ3YTllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFngr0paBqaVM46lVvDpdCSvwoqf
Os+fBTq6ENmc6ifPviUvRAKrmLgUARLWkdS3kX1Tsq9E1aVqWP4JGTzovMCjW1Um
+MF5kFjmk+N/U6y5ztXJG1Cqq862ZyOMyqblCa+a9lXYYo3GQCtwnU1qVGRrDPe1
+0VPcZl52WBgiVdP8yDLwuS9ujF9rLEfIbbCh+OtHEl/DsH3gRRh4oa02OHP13c5
IBo0P6tab4jrLEHj8Ii712B7/SZ6OodMqA89NZAUGYRa69gUWtB7nm3RQVXsepPW
XqAMP1e3Df9MwcRVrmr68FWyLZ0ZVyuoIBb+bRxwDuMx31wOW9ELVVMu1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE3qz4NrXjYiy47C1X5DfZ8HFHqeMB8GA1UdIwQY
MBaAFJ1SuDsS+ooHEyzICDOhA+Cdi9BPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblZLNE94TDZpZ2NUTE1nSU02RUQ0SjJMMEU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC83YmEyMzItODkyOS00MTBkLWJkZGQt
ZTRiNmE5ZGY5YTM0LzEvblZLNE94TDZpZ2NUTE1nSU02RUQ0SjJMMEU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC83YmEyMzItODkyOS00MTBkLWJkZGQtZTRiNmE5ZGY5YTM0
LzEvblZLNE94TDZpZ2NUTE1nSU02RUQ0SjJMMEU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj2M/vB8e
fE+k4ouODBC6nW4Rsc6yBfauPnqchG2QC6Da6yQ1ZGrXiplP4rypAHyAp75mA4FX
5GP6ocuBxTbrIOkW302SWnFEWnqsmKrFS3mwLiC/I5FHpr4sxetPLwUDp+wLAnu0
0HmjXHKHJqMh/+YR5C0nNRzmx+dnI4q52krbWSa+HS6nxttY3s8o9hBmgcRxsN3V
ifNTO4R/piw/M/qCA4logS6gOUoVebMlp4tRd2eSK/QVRHq112UAF4yDtBkbSGXq
ibi+o561s6h/iWM0pQJ4t/J83Ln5Mil0MazsDDoPBpHv3RBkwcNnbc4X6YkduBJ6
nOACrETd/x2bCg==
-----END CERTIFICATE-----
Generated at Mon Apr 27 10:42:47 2026 by rpki-client