Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
File: noBwLuah3L864lehmUFfWbgzjqQ.mft (raw, json)
Hash identifier: jBDBQcbAAArBk+V2dfge0kNdVfj6jd64DVu6wEFpNYI=
Subject key identifier: B4:46:BD:09:30:32:FA:3B:9B:DB:31:0B:15:E8:47:79:60:89:03:A1
Authority key identifier: 9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
Certificate issuer: /CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Certificate serial: 019D37C1206FDDE57EC63F888EC8ABF3C122
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 04:01:36 +0000
Manifest this update: Sun 29 Mar 2026 04:01:36 +0000
Manifest next update: Mon 30 Mar 2026 04:01:36 +0000
Files and hashes: 1: 7RZneK1-WhczwVXQZA7asvVmG0o.roa (hash: FToOU7r9z4r8w9cG4+WQTnBdMEmKBFJWnIOgnLoJvLs=)
2: noBwLuah3L864lehmUFfWbgzjqQ.crl (hash: yX8PEoG8gUMRPKQvWUEWC/4B0QHwdjO7sNsDdLZuAjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:20:6f:dd:e5:7e:c6:3f:88:8e:c8:ab:f3:c1:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Validity
Not Before: Mar 29 04:01:36 2026 GMT
Not After : Mar 30 04:01:36 2026 GMT
Subject: CN=b446bd093032fa3b9bdb310b15e84779608903a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f0:a8:ac:85:83:7b:22:5e:b4:96:f8:b8:63:
44:27:b7:7c:55:8e:de:7e:7e:67:5f:60:22:9f:d3:
e6:3d:ec:89:bb:b8:d8:77:c9:37:84:af:60:bf:4a:
5b:a7:19:8b:1e:1c:6a:47:56:fb:ac:a6:2d:75:c3:
1f:e9:7e:c7:65:0c:15:4e:cf:6b:d1:a0:d1:dd:ec:
88:06:18:78:af:d4:87:be:4f:7a:0b:71:c6:5d:0b:
7e:cd:cf:a1:0c:41:da:fb:15:d0:b6:49:74:1c:e3:
04:d3:55:f5:76:16:8a:4c:f4:39:42:b2:5b:ee:54:
5c:44:51:41:ec:2a:fb:08:f2:57:9f:23:20:da:6a:
fd:91:89:7d:de:00:86:f1:f5:a4:d7:62:5b:2c:83:
a8:38:26:48:76:b7:23:32:20:e6:28:17:80:b8:ba:
09:f1:ec:d1:78:8f:bf:e3:07:01:10:f0:f0:de:d0:
6f:6e:96:bc:c2:70:89:97:be:a2:b7:40:10:65:cd:
28:0d:e8:9d:42:40:ad:09:84:02:fb:af:9a:30:30:
28:db:b9:60:7a:db:24:0d:ab:43:e2:83:ad:c2:ad:
e2:d7:11:bc:2d:68:fe:d6:73:6c:52:a0:17:d4:04:
71:b1:a5:39:ff:d2:27:3d:f9:d8:a4:0f:47:cc:5b:
fb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:46:BD:09:30:32:FA:3B:9B:DB:31:0B:15:E8:47:79:60:89:03:A1
X509v3 Authority Key Identifier:
keyid:9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:36:44:0d:74:57:11:0d:fe:f5:9b:52:d4:a9:fc:ce:dd:ee:
bd:af:03:b1:5a:12:43:74:ad:29:83:f9:94:58:31:71:7a:fa:
db:e2:bc:a6:be:95:1f:02:08:31:4c:12:94:65:ee:ca:ed:63:
78:3d:95:fc:0e:76:7b:33:df:c7:49:cb:7a:0b:0d:b4:6e:b3:
31:c4:dd:50:a7:35:e9:e8:97:ed:10:24:85:b1:d9:7f:7e:db:
67:5d:af:bd:d0:7c:65:b7:e3:59:26:ce:eb:3f:d1:0c:e3:56:
56:a4:08:84:3e:4f:30:5b:29:d9:35:3d:4d:ac:b0:3b:ac:73:
40:84:fc:3f:3c:af:98:2b:7e:68:ce:2f:ec:0a:02:9d:b3:6a:
d7:94:89:14:27:f9:d7:2f:81:2b:02:44:67:90:c0:5b:71:2c:
f3:7f:52:97:d5:08:89:20:3e:85:af:c1:47:8e:32:a4:9b:69:
e1:11:dc:8c:b8:e9:48:21:ce:c8:4a:6d:eb:df:76:7c:d9:23:
fa:e2:c9:bf:d6:75:a0:d0:92:a6:d5:0d:39:b8:2c:23:2b:a7:
bf:8e:7f:d5:d9:cd:68:5e:09:c6:e5:9e:fa:90:4e:d2:87:c0:
6b:24:70:a4:3c:f1:f6:b1:d0:46:d2:0b:1e:54:39:ff:6d:9c:
39:e0:6e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:13 2026 by rpki-client