Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
File: NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json)
Hash identifier: MG+NoT7l0ByazOAbr/6VZvBH13mbcdfUARWhL3anMxU=
Subject key identifier: 3C:B4:FA:13:07:B5:11:79:6B:C7:CB:88:27:60:B2:2A:9B:9F:68:74
Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Certificate issuer: /CN=34832317d2544434b659e5692071d8e4c4938b06
Certificate serial: 019DA830FDF5CA215B6635D1851B8E2236CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
Manifest number: 063E
Signing time: Mon 20 Apr 2026 00:01:16 +0000
Manifest this update: Mon 20 Apr 2026 00:01:16 +0000
Manifest next update: Tue 21 Apr 2026 00:01:16 +0000
Files and hashes: 1: MtXK992XQ-M-hmv_KStvnyh-x5Q.roa (hash: M8VsnjB/uw1FiI9xmVKpQrIIX0KwLuaKoIKTTuviTH8=)
2: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: JaEq/n2q7JT1aJ5LIzjcIQW+y+audQnX+zCPXUMUoic=)
3: S3-C960eDjtkhmLESJEggehwHME.roa (hash: eXKQYhtmCASg+7u8rDqDnt6Fk8AoSBqR8NO1VXIyQ3c=)
4: r5VTzB_D--LT6ft6QpgyIKkudbM.roa (hash: 3oNMl/b2gquyHJLZema+rIR0bUrcCM54+yp4fRS/DTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 21:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a8:30:fd:f5:ca:21:5b:66:35:d1:85:1b:8e:22:36:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06
Validity
Not Before: Apr 20 00:01:16 2026 GMT
Not After : Apr 21 00:01:16 2026 GMT
Subject: CN=3cb4fa1307b511796bc7cb882760b22a9b9f6874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a5:f2:ed:91:d2:8c:16:46:32:9c:65:81:75:
f8:4a:74:f1:c5:42:f8:31:18:d3:3f:95:f3:9a:13:
d2:89:c8:80:a8:e5:b4:24:0e:73:c9:f4:fd:e5:d4:
56:32:2f:1e:ce:36:a4:e6:ed:b5:71:06:df:35:06:
01:bd:e3:58:26:1c:6e:ff:b6:4a:ef:9b:11:3a:72:
f7:07:97:28:c9:6f:49:1e:72:d8:61:6c:f1:1a:97:
b2:22:84:78:a8:f0:f4:48:4f:1b:71:00:6a:86:9c:
9a:df:f2:ca:6c:29:b8:c3:3c:3d:d1:36:2a:fc:1d:
82:8a:9e:e1:6b:39:61:e5:0a:27:a8:87:0c:98:58:
2f:b0:2e:e5:15:e6:7b:0b:2b:05:fd:14:45:7f:15:
72:7b:61:ae:fb:49:58:a0:6a:54:f3:6e:8c:81:55:
bd:86:a5:b4:a2:1e:bc:bf:5b:ea:be:6f:d2:95:f9:
bf:82:b3:b0:92:5e:1e:fb:74:5d:86:12:9b:d6:41:
96:92:ad:21:c2:9a:ea:5b:a4:43:d5:fd:99:07:03:
3a:4e:6c:5c:7a:4c:50:d0:b6:b9:68:76:8b:f6:6a:
8a:c4:4e:16:a9:5f:4b:57:1f:51:95:d2:3f:f2:1c:
09:4a:8f:70:eb:af:a1:63:0e:f7:3b:a0:44:3e:b1:
ae:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B4:FA:13:07:B5:11:79:6B:C7:CB:88:27:60:B2:2A:9B:9F:68:74
X509v3 Authority Key Identifier:
keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:4b:50:4a:48:fc:0d:13:a4:da:33:f4:d9:b9:de:cf:10:a0:
f0:ac:20:01:6a:4f:e3:89:30:18:be:c0:87:0e:37:13:82:f9:
5b:f4:4e:19:a0:f6:5b:ec:17:6b:0f:21:e0:d6:a3:75:ac:81:
a9:5d:d8:8b:d6:28:08:80:2f:6a:01:17:a0:57:21:2c:f5:26:
5e:81:85:22:0a:83:b4:95:ee:7f:93:71:f8:11:45:2e:79:bc:
b9:20:0b:e6:01:a8:2f:f5:a0:9f:b6:a8:de:00:56:80:33:99:
3f:a9:dc:7b:bd:bf:4f:2b:ec:7f:63:60:3e:f7:08:b3:ff:04:
c2:ff:9a:54:36:15:fe:be:e1:15:0d:d3:1d:df:bb:90:b9:2f:
c9:13:86:e8:0a:96:21:85:e8:5b:91:3b:5d:f2:be:ac:68:b1:
3f:a8:b5:1c:65:98:18:4b:f7:64:20:1a:f3:fa:77:ba:83:e1:
89:52:8d:5a:a6:0d:e3:67:59:e8:7a:61:f5:42:c4:15:3a:44:
be:c0:94:fb:f3:fd:6c:74:08:5f:17:b1:58:c8:6f:9a:bb:0d:
91:7a:a9:cd:d0:1d:88:bb:38:f5:0f:5d:ec:db:6c:b3:3e:2c:
dc:dd:0d:69:6b:4b:f2:13:70:8f:16:98:e4:7a:b7:bf:ba:1f:
6d:14:f4:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 03:26:56 2026 by rpki-client