Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
File: N5fgOfAlolqm6ZI5HZJCYGmbpns.mft (raw, json)
Hash identifier: QsWXOoeYf0hNegsbmdKGPpFBXDjRSplphQWbnnzfdyk=
Subject key identifier: 52:6E:7D:FB:46:FC:97:64:1D:E8:06:FF:43:AD:EC:65:89:D7:F7:F1
Authority key identifier: 37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
Certificate issuer: /CN=3797e039f025a25aa6e992391d924260699ba67b
Certificate serial: 019D39407F8112874160DB4B8794ED48A15F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
Manifest number: 120A
Signing time: Sun 29 Mar 2026 11:00:21 +0000
Manifest this update: Sun 29 Mar 2026 11:00:21 +0000
Manifest next update: Mon 30 Mar 2026 11:00:21 +0000
Files and hashes: 1: N5fgOfAlolqm6ZI5HZJCYGmbpns.crl (hash: 4/nTJpbabW+BwAtK/RrxCLbGUBYRTab0rRp85wU8CfA=)
2: NIPM7aKL5uexVcL90KLAP5wDjZQ.roa (hash: 9ZYrM11j7nntBzeZqvmkRCiHqz1k+TWVJfFzgJNUNng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:7f:81:12:87:41:60:db:4b:87:94:ed:48:a1:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3797e039f025a25aa6e992391d924260699ba67b
Validity
Not Before: Mar 29 11:00:21 2026 GMT
Not After : Mar 30 11:00:21 2026 GMT
Subject: CN=526e7dfb46fc97641de806ff43adec6589d7f7f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:11:7a:af:75:68:07:f0:eb:b7:de:7d:d3:66:
5b:64:90:c4:36:df:af:8e:ee:c7:04:16:ce:f0:bf:
85:43:63:55:14:04:a2:c2:97:b3:00:37:53:3c:c5:
60:83:c7:6d:aa:da:a9:7c:79:a4:84:f5:07:8e:22:
9e:4c:3d:8b:7c:8c:45:c5:a3:b4:63:17:09:e4:08:
62:f6:a2:20:31:10:09:cf:3f:67:82:22:f4:2f:0e:
f8:bd:05:4f:25:bd:44:ea:52:95:0e:85:90:80:05:
0a:0c:29:53:86:54:75:d2:41:fc:65:89:2b:4b:9b:
c9:4b:5b:ba:5e:ad:2a:c0:ac:47:d4:4f:ac:d5:d3:
96:39:ca:14:be:21:92:13:10:fd:67:f1:e5:5b:a8:
1a:1d:0c:28:20:c6:ab:73:91:5c:ce:92:8b:e7:98:
86:20:06:ff:c7:6d:f7:3f:85:2c:20:4b:32:5b:75:
3e:c2:4f:64:3e:7b:55:25:bc:85:1c:15:35:2b:9c:
72:55:9c:2a:d0:7d:52:ad:89:c0:17:d5:50:fe:43:
9b:0f:56:05:92:44:15:d2:d0:ee:dc:2c:33:18:7d:
0d:2d:7d:53:4a:b6:85:32:af:4c:6d:5d:84:2c:99:
f7:41:02:47:bd:72:8c:be:94:45:47:76:20:ed:49:
dd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:6E:7D:FB:46:FC:97:64:1D:E8:06:FF:43:AD:EC:65:89:D7:F7:F1
X509v3 Authority Key Identifier:
keyid:37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:71:a4:a8:96:bf:4b:f8:ce:e2:b7:ed:56:44:24:14:82:7a:
b5:3b:2f:fe:08:5a:36:11:86:8a:2a:15:bb:7f:32:65:29:bb:
b3:eb:ad:e4:99:dc:9c:4b:fe:65:40:94:5a:69:d7:f3:f8:74:
70:d4:a5:79:3f:71:8c:d6:6f:c9:e9:c4:60:8c:ff:ba:36:92:
57:9a:d8:4d:19:9b:fa:f1:a2:d1:fa:67:02:b4:28:c8:19:c3:
9c:45:9d:7e:1e:4d:2e:3d:94:16:09:c2:8e:80:a4:00:49:68:
0f:cb:75:af:cd:0f:a8:6c:7b:db:31:38:12:88:0c:9d:67:7f:
4a:56:d1:d4:d7:36:da:30:6a:22:36:67:43:8f:4d:ef:3b:bd:
19:66:7b:cb:29:ab:73:87:a2:2a:21:bc:9d:a7:38:b1:4f:75:
1c:4e:32:2a:6e:b1:ed:87:f7:14:77:1c:6f:87:76:cf:e5:ce:
f2:c9:1a:0b:9a:a8:43:61:0f:1c:f5:95:95:02:fb:8b:0a:7a:
ea:c2:ba:48:ab:fc:44:6c:ab:70:38:52:59:33:87:c2:a1:d6:
59:13:b5:29:60:d0:60:da:3b:30:ac:1d:38:48:1e:cc:ee:e2:
95:3e:df:da:10:13:ec:c9:75:3e:74:4a:87:fc:f4:c1:4d:25:
bb:80:68:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:02:41 2026 by rpki-client