Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: Ygv4kbJmK7RoMgAs+YNaumF1Iy3FQDh3PK3TV6B9J5Q=
Subject key identifier: 54:88:08:5F:FC:04:8C:05:3D:C1:70:3E:FD:62:75:F7:9A:8D:BA:07
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 019D37F7596F45815EAD678F10DCAF0B72E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 05:00:50 +0000
Manifest this update: Sun 29 Mar 2026 05:00:50 +0000
Manifest next update: Mon 30 Mar 2026 05:00:50 +0000
Files and hashes: 1: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: OBnz9WTk/J6ybWXmYdPy4GjuTAEGob336AgvSUtC/9c=)
2: iZZcAtI6tX7pa2kx02V3Cb8900I.roa (hash: DpMSCiHNTOpSLZuOk1jeRKQ+RT6rgkZxlrfr955DoA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:59:6f:45:81:5e:ad:67:8f:10:dc:af:0b:72:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Mar 29 05:00:50 2026 GMT
Not After : Mar 30 05:00:50 2026 GMT
Subject: CN=5488085ffc048c053dc1703efd6275f79a8dba07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:70:0e:d8:87:14:b5:51:b1:9d:51:f2:1e:97:
98:6e:5b:30:88:d8:7d:66:3f:15:df:18:af:be:97:
e7:ce:de:c5:00:a6:f2:08:a9:70:2b:12:76:c3:ae:
b3:ac:2e:6c:31:8b:ad:b0:18:ae:a5:65:f5:ad:6a:
dd:06:98:12:e4:38:e7:80:11:3f:64:92:e3:a3:10:
03:32:90:f0:6f:1c:96:e9:b4:91:98:60:35:e0:bf:
ac:7a:ca:e6:70:22:8a:a0:95:88:78:09:d0:e5:4e:
6b:dd:78:2d:bc:59:4d:24:dc:6d:a8:ed:45:c3:ba:
f4:3e:92:ad:e9:be:b2:1f:a9:11:84:f0:27:a3:96:
a0:46:64:ec:4b:f6:ca:66:a2:0b:b3:62:81:db:0a:
0e:df:32:d0:58:cb:3b:40:f1:85:f0:0f:da:7f:2e:
07:98:f9:b6:54:d7:c8:63:a8:ac:ba:f9:e1:29:4e:
3e:df:41:0d:20:78:c5:b0:53:f2:68:ed:07:ae:13:
55:3d:af:d9:a0:66:de:3b:44:ed:d1:56:65:8d:a2:
76:7c:ab:5e:e4:74:95:08:1a:86:b5:ae:42:25:58:
74:8a:00:05:8c:92:da:36:d2:74:48:b7:c8:78:44:
1e:4a:48:33:e2:63:33:95:b5:3b:bf:fd:a2:88:df:
f9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:88:08:5F:FC:04:8C:05:3D:C1:70:3E:FD:62:75:F7:9A:8D:BA:07
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:4f:5f:57:83:f7:ac:aa:c5:35:d7:16:03:c5:06:b2:50:8d:
e3:cd:a4:c6:09:f2:51:e8:47:66:a1:fa:d9:e1:bf:77:32:ed:
cf:1a:99:2a:10:4f:c1:5a:4c:14:20:82:34:ec:93:77:fc:ce:
8d:f4:7f:df:cc:f9:bf:8f:e5:0d:69:fe:7c:5c:cf:ab:1e:f7:
0a:08:0c:1d:4f:bd:fa:98:0c:94:61:1d:82:77:ad:e2:40:1e:
27:eb:6f:b9:89:51:78:a2:57:41:7c:90:7b:09:3e:b9:d9:af:
ed:2d:da:50:5e:54:58:9d:43:25:99:66:16:7c:79:95:76:04:
69:4c:ed:80:02:c8:4c:0d:e3:5a:54:d6:e4:71:86:69:d9:5f:
c1:0b:00:ab:c1:7f:3a:3b:26:53:5c:f2:bc:4b:a2:8a:6e:4b:
dd:27:ea:6e:99:73:55:19:e9:31:79:75:1c:4e:f4:df:54:3f:
88:f2:00:66:24:d1:a2:56:b6:f3:45:e7:09:9c:1e:e9:1c:69:
f5:97:ec:09:db:69:f8:6c:86:7a:95:bb:53:24:5f:96:bb:60:
37:76:47:24:d3:0a:5a:ea:cf:bb:7a:20:b5:5c:63:0e:71:b8:
80:21:cd:5e:89:df:da:dd:1c:92:95:0b:2c:4d:c8:39:ba:cd:
d2:60:5e:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:06:30 2026 by rpki-client