Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
File: NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft (raw, json)
Hash identifier: DrWM8wKwCSBacLcYTszyTH7EpMOT08Fe/osS+Eya+Mg=
Subject key identifier: 21:50:20:24:CF:C2:0D:CB:24:6D:EE:10:E7:CF:D5:60:0D:59:2A:2C
Authority key identifier: 34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
Certificate issuer: /CN=34012343a62f3f09b55cdbc01e75c38212a235df
Certificate serial: 019D3A53CDE4196B860027C37720A12AF3D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
Manifest number: 1095
Signing time: Sun 29 Mar 2026 16:01:03 +0000
Manifest this update: Sun 29 Mar 2026 16:01:03 +0000
Manifest next update: Mon 30 Mar 2026 16:01:03 +0000
Files and hashes: 1: NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl (hash: M3ojhnNX5NEhJ1LqthAXvhb6PPE45r5Fbnz/ccWnfHs=)
2: SYOUieKR_QV6weJnpGp0PwQqP8M.roa (hash: rJyUI3FjwjJFeXbvOOvKbgCn4Z66P2GsnFdxLTdu4tY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:cd:e4:19:6b:86:00:27:c3:77:20:a1:2a:f3:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34012343a62f3f09b55cdbc01e75c38212a235df
Validity
Not Before: Mar 29 16:01:03 2026 GMT
Not After : Mar 30 16:01:03 2026 GMT
Subject: CN=21502024cfc20dcb246dee10e7cfd5600d592a2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bd:71:fe:cd:ef:19:c0:3a:fa:43:66:4f:84:
97:d8:cf:95:ab:33:cb:32:73:f7:df:08:45:f5:6c:
4e:c4:5b:68:6f:af:89:75:e6:a1:67:8b:82:4e:1a:
44:07:33:09:ed:5f:9b:51:7f:71:4e:23:b7:a7:f9:
48:22:c6:b0:a6:61:de:0c:64:eb:f5:65:61:ed:2c:
a3:8a:ac:60:f1:79:29:14:50:57:07:4a:48:6a:00:
37:0d:26:e6:c2:c2:19:44:b2:e6:29:44:7f:94:33:
45:02:37:4f:64:f2:50:92:aa:5c:d1:4d:99:94:25:
2f:b4:d7:04:d6:07:99:63:c1:e0:f2:4d:b7:11:14:
77:5f:85:27:e1:cd:c0:9f:e4:e8:a3:b4:b5:57:42:
69:92:67:42:f4:e0:5d:15:ab:84:bd:9c:bb:16:57:
1d:e5:cd:2d:30:63:1c:12:ee:27:e1:c2:0d:b5:bd:
9b:aa:79:2c:ee:00:72:7c:03:cb:8e:a6:57:54:ce:
bb:e7:e3:3e:2f:a5:23:5a:f1:04:27:2a:21:cc:47:
d8:e4:ae:44:ae:70:23:1b:12:60:7b:b5:2d:e4:fd:
95:73:8b:b5:03:9e:4e:05:93:85:5b:cf:0b:5e:39:
40:3c:83:39:6b:3c:c9:65:8e:98:5e:6a:7c:64:e5:
e3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:50:20:24:CF:C2:0D:CB:24:6D:EE:10:E7:CF:D5:60:0D:59:2A:2C
X509v3 Authority Key Identifier:
keyid:34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:bb:a3:bf:6c:b2:27:aa:9c:d8:06:7f:9a:88:fc:02:a2:61:
19:fb:07:47:9a:cc:e3:82:cd:d2:e1:95:a6:5d:ec:dc:53:98:
fd:4f:fc:9a:36:56:a0:b8:d9:2c:7b:2d:21:fa:b3:05:a3:0a:
af:1e:27:a9:86:5b:6d:e9:15:4f:8b:38:82:d2:eb:0d:00:16:
f2:43:e0:86:44:32:94:25:17:bc:72:f2:62:3c:17:d9:8e:e6:
c0:e1:00:61:14:40:c2:0d:65:a2:b4:61:1d:7f:68:eb:8d:f3:
ee:8c:6b:5e:d6:15:ab:8b:26:48:f5:8a:df:b6:3c:a4:a9:77:
9b:07:f6:6a:ff:99:10:fe:13:34:f8:be:51:c5:41:3b:19:fc:
d5:27:69:a1:0a:38:b2:df:e2:a8:97:ec:13:94:bd:53:38:38:
d8:1d:ca:70:3f:65:bf:03:49:97:34:22:f0:f0:ba:17:f4:20:
37:7a:5b:c2:40:e3:79:9a:0e:c9:ba:31:88:b2:03:69:a3:01:
7f:7c:79:ef:38:0b:81:9b:c5:fe:f8:c9:86:de:61:45:5f:66:
9a:3a:dc:1f:9f:ca:62:97:d7:09:d5:76:82:3a:5b:fd:39:1a:
5c:ad:9b:76:fd:69:79:fb:cd:6c:fa:df:ad:e3:7e:7e:6b:ad:
fa:d8:f4:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:00:28 2026 by rpki-client