Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
File: NHjAigY6wtNKGxkeJDY4m77tXpc.mft (raw, json)
Hash identifier: IrqsMf/FXyWKxB5m58kxNMQzOs7DyTkIQg4QriQU6rM=
Subject key identifier: AD:31:6F:98:91:15:67:EE:14:5E:66:26:94:EA:D7:CF:07:22:50:36
Authority key identifier: 34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97
Certificate issuer: /CN=3478c08a063ac2d34a1b191e2436389bbeed5e97
Certificate serial: 019D3A53EFD238D6DEFE2FFC164C873A4ADB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
Manifest number: 0ED0
Signing time: Sun 29 Mar 2026 16:01:12 +0000
Manifest this update: Sun 29 Mar 2026 16:01:12 +0000
Manifest next update: Mon 30 Mar 2026 16:01:12 +0000
Files and hashes: 1: NHjAigY6wtNKGxkeJDY4m77tXpc.crl (hash: hQaVBVx3qHSZhGNrzfjXb7ijLyr3Rp116j4SX/Se2nM=)
2: w9CRvvsYzgY0DlQQmWuMnS9mI2o.roa (hash: fUMokcIKd3DOh6naOLFCtJpr9vVF9HoG1tnLSbQmKeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:ef:d2:38:d6:de:fe:2f:fc:16:4c:87:3a:4a:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3478c08a063ac2d34a1b191e2436389bbeed5e97
Validity
Not Before: Mar 29 16:01:12 2026 GMT
Not After : Mar 30 16:01:12 2026 GMT
Subject: CN=ad316f98911567ee145e662694ead7cf07225036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:48:a5:84:83:ee:ea:a1:18:ac:dd:3e:4f:11:
9b:07:19:38:84:11:85:78:85:47:1d:5a:5c:b8:eb:
0b:c5:19:08:12:0d:70:71:f8:e9:8a:06:c5:13:09:
4e:e1:fe:98:31:42:90:e4:a5:f2:9e:db:64:71:fe:
5b:aa:06:4e:04:14:78:e2:57:73:bb:9b:cc:aa:d3:
eb:36:ab:a2:8c:cb:1d:da:58:36:4b:0a:34:10:32:
6b:c9:68:96:12:77:32:62:2a:f4:5c:3e:eb:c9:2f:
f6:5c:54:65:d8:01:0c:f4:f1:2c:b5:70:72:16:fb:
62:8a:af:ee:ca:23:62:c8:d3:45:71:33:3c:a0:da:
df:e9:d7:1a:46:05:62:0b:d2:e1:91:2c:0f:e3:4d:
9d:ff:66:9a:21:f7:66:24:68:18:62:af:84:db:97:
30:86:be:ba:3b:b5:89:0a:06:63:4c:66:50:14:a3:
06:66:fe:f2:fc:09:3e:e1:c9:a8:d0:d6:45:29:42:
91:49:54:4b:d2:7f:88:1d:f8:59:e6:b3:08:5a:8f:
77:e0:3f:12:7d:19:c2:6d:0d:ed:ee:3c:06:02:e6:
de:3e:f3:2f:73:87:f3:6d:63:60:cc:7b:c3:e6:fd:
53:1b:da:45:6b:15:b0:fd:ad:0c:13:13:d7:ca:ce:
56:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:31:6F:98:91:15:67:EE:14:5E:66:26:94:EA:D7:CF:07:22:50:36
X509v3 Authority Key Identifier:
keyid:34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:11:cf:e1:40:ab:43:c2:3f:04:24:08:a5:98:bf:82:b3:d5:
c7:cb:ab:4e:97:77:8f:1a:85:b7:71:38:74:86:8d:6f:81:29:
41:fe:36:5b:e7:05:4d:06:1c:88:f0:5a:db:61:22:49:04:6a:
10:fe:83:d5:70:8e:b6:a3:cf:5b:bf:80:ae:2c:70:8c:24:a9:
59:83:0a:0c:94:6b:67:de:15:3d:10:99:54:0a:d6:2b:93:f4:
f7:63:ea:dd:f0:3e:25:44:dc:c8:98:a4:79:be:e0:42:3b:c2:
cf:99:63:81:ef:00:97:8a:fd:10:09:df:ba:ff:40:69:ce:37:
a9:18:85:b6:70:0e:16:2e:3d:ff:22:ce:3b:ed:54:af:c2:fd:
c6:9e:cf:80:ab:ce:00:9d:57:87:fc:88:ca:8b:8a:e2:1a:fa:
b8:0e:79:2c:cd:7d:4f:de:3f:81:79:89:1f:ab:16:30:45:57:
64:02:04:4f:69:62:6f:f6:74:39:94:44:f0:46:f9:9c:bd:fc:
94:3b:eb:96:58:33:3f:af:b7:5c:0e:aa:06:e9:9d:19:0c:bd:
77:41:61:6e:c2:5c:69:de:39:9c:89:77:c5:2b:d3:39:10:11:
b5:a0:f9:7d:00:18:60:f6:3a:59:af:e6:a1:01:6e:91:5d:c5:
69:19:b7:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:12:04 2026 by rpki-client