Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
File: NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json)
Hash identifier: AdOr32s7YWlsragJCnrdqcyWkNb4mQQ1Tup45bFsKxs=
Subject key identifier: A1:C1:98:37:81:41:A5:66:94:A3:F8:93:22:E5:37:80:3A:18:8F:D2
Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Certificate issuer: /CN=34832317d2544434b659e5692071d8e4c4938b06
Certificate serial: 019CBE83FB9EAD07380594F5DD05E710C0A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
Manifest number: 05C5
Signing time: Thu 05 Mar 2026 15:00:46 +0000
Manifest this update: Thu 05 Mar 2026 15:00:46 +0000
Manifest next update: Fri 06 Mar 2026 15:00:46 +0000
Files and hashes: 1: MtXK992XQ-M-hmv_KStvnyh-x5Q.roa (hash: M8VsnjB/uw1FiI9xmVKpQrIIX0KwLuaKoIKTTuviTH8=)
2: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: iWQ5AqNWEz3AgH+0BdJYrNILoF97XptLhRfQOlQBMNs=)
3: S3-C960eDjtkhmLESJEggehwHME.roa (hash: eXKQYhtmCASg+7u8rDqDnt6Fk8AoSBqR8NO1VXIyQ3c=)
4: r5VTzB_D--LT6ft6QpgyIKkudbM.roa (hash: 3oNMl/b2gquyHJLZema+rIR0bUrcCM54+yp4fRS/DTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 15:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:be:83:fb:9e:ad:07:38:05:94:f5:dd:05:e7:10:c0:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06
Validity
Not Before: Mar 5 15:00:46 2026 GMT
Not After : Mar 6 15:00:46 2026 GMT
Subject: CN=a1c198378141a56694a3f89322e537803a188fd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3e:2b:de:65:d6:93:b3:0b:23:cc:3b:8d:8d:
a1:ce:a0:6b:a2:b7:81:2a:8a:81:0a:ac:db:6f:c4:
da:a9:4f:a1:54:1a:fa:eb:7c:e7:69:b2:8a:f6:d6:
f8:7b:c8:38:7c:54:18:cb:54:a9:9e:ad:9f:ed:41:
d0:02:03:6c:c1:37:82:58:d3:bd:93:6c:df:2b:3e:
86:ec:af:f1:09:7b:7b:7a:7f:f2:87:30:ef:41:d1:
e7:71:99:e1:b4:5f:5f:5a:6b:eb:7f:4c:9f:29:f6:
ae:d1:d4:2d:fb:a9:e4:12:73:e9:6c:61:41:f5:43:
14:2a:b0:ab:8b:17:72:d5:26:e3:01:54:db:4a:d8:
a5:f6:06:f9:f8:40:c5:a7:1f:2f:6a:5e:5b:28:2e:
6b:b5:21:c2:fd:13:c3:d3:4f:4e:bb:fb:78:9a:67:
d3:bb:d8:0a:78:b7:9f:17:02:b9:4e:1b:35:77:35:
42:4f:73:0c:4b:7e:65:90:26:a3:46:81:71:62:bf:
f2:37:14:5e:5e:e3:c4:70:7d:a4:69:ef:93:06:68:
e2:d4:4b:a1:e6:ba:7b:08:4b:19:52:d8:9e:d6:9e:
c7:a1:ef:f2:c7:46:f7:e3:27:74:87:a8:bd:bf:f4:
79:82:48:bf:b1:ad:b2:d8:c3:ce:a4:ec:a2:7f:35:
8e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C1:98:37:81:41:A5:66:94:A3:F8:93:22:E5:37:80:3A:18:8F:D2
X509v3 Authority Key Identifier:
keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:62:b1:4f:66:c5:59:1f:9e:29:d5:26:a0:7d:b2:f4:98:fe:
de:81:60:e1:34:1b:f5:fd:47:60:a1:ec:57:0a:78:f1:d7:84:
ca:b1:c6:dc:5c:83:c3:4f:82:4e:65:66:c8:4f:68:d5:cb:50:
cc:79:5d:d5:68:f5:d8:3a:e2:31:17:e7:6e:92:8a:5f:69:d4:
09:46:f3:3c:aa:35:4f:c2:1a:85:8e:a8:a3:43:f0:9e:a3:e7:
59:b6:4f:a2:eb:35:2b:18:16:d6:2b:79:cc:42:84:eb:03:4a:
f4:91:e9:e4:2a:72:03:2c:ec:b0:26:c7:bf:3f:52:b8:3c:b1:
87:0e:6c:77:67:56:b6:81:21:29:2f:94:24:be:8c:0a:fd:51:
2b:b5:bd:c8:70:e2:c9:7d:73:e1:2c:e4:81:a5:29:00:86:5e:
2c:7d:90:c9:2a:45:98:c5:10:ff:86:ba:c2:d0:6a:3a:4b:30:
7d:ce:f4:0e:45:4f:07:87:3f:91:60:28:90:44:ef:bf:8d:e8:
f6:1c:93:f5:89:96:42:83:c5:c0:fe:20:42:ae:74:58:57:72:
85:74:b0:22:ad:17:54:bd:d7:25:0e:5c:bc:95:98:ab:36:22:
05:6c:98:38:93:1e:1d:8d:fe:42:50:b9:7b:f2:c8:ff:c7:09:
4a:a4:f4:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 5 22:18:22 2026 by rpki-client