Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft
File: niX4djqjUWiba6M2JpqyHE4BILM.mft (raw, json)
Hash identifier: MGUkHcnfxaYpJurjUq1XaMcwzUuKuRe5DMwn2FWvlMc=
Subject key identifier: DC:01:F0:85:3B:94:D2:0A:5C:18:6D:B1:F3:D3:83:87:30:81:0D:CF
Authority key identifier: 9E:25:F8:76:3A:A3:51:68:9B:6B:A3:36:26:9A:B2:1C:4E:01:20:B3
Certificate issuer: /CN=9e25f8763aa351689b6ba336269ab21c4e0120b3
Certificate serial: 019E8EA4F1E5455B404C4A73517C1134397F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/niX4djqjUWiba6M2JpqyHE4BILM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft
Manifest number: 0765
Signing time: Wed 03 Jun 2026 18:00:34 +0000
Manifest this update: Wed 03 Jun 2026 18:00:34 +0000
Manifest next update: Thu 04 Jun 2026 18:00:34 +0000
Files and hashes: 1: X2EsrEEFKbSK_iJs_zoiqzwXzhw.roa (hash: O5yVAVGf3Sgd/1yPE2jYUPZAzTieJMlFWiMeZmVlrTk=)
2: niX4djqjUWiba6M2JpqyHE4BILM.crl (hash: T/jnTXIvovSrDR1iiH1sYm02i4KdsnQzPCqgrSxrl0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft
rsync://rpki.ripe.net/repository/DEFAULT/niX4djqjUWiba6M2JpqyHE4BILM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 13:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8e:a4:f1:e5:45:5b:40:4c:4a:73:51:7c:11:34:39:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e25f8763aa351689b6ba336269ab21c4e0120b3
Validity
Not Before: Jun 3 18:00:34 2026 GMT
Not After : Jun 4 18:00:34 2026 GMT
Subject: CN=dc01f0853b94d20a5c186db1f3d3838730810dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f9:2f:95:63:7a:b4:9d:83:3b:7f:26:28:78:
da:63:c3:d0:55:4d:88:a5:c2:9b:d4:37:57:61:e3:
49:e6:fd:99:cf:21:8a:f8:d4:be:88:92:75:f4:ea:
d2:1c:29:35:c8:55:09:5e:7f:de:9a:8a:85:49:e6:
69:85:ee:9b:fe:3a:82:ee:6c:81:a5:50:80:c1:ef:
86:42:da:a0:43:6b:74:8a:bb:3c:ea:a9:bc:f3:03:
ab:34:37:9d:bf:b9:03:75:9b:ec:1d:61:00:db:50:
2a:a1:ec:bc:c2:66:3d:02:92:35:1f:4a:f3:80:30:
7d:1e:63:bd:bf:c4:ee:f4:e5:6a:34:92:96:3c:1b:
49:71:5b:4c:8a:1d:18:a1:a3:5c:b9:2c:de:cb:6a:
ea:e2:55:38:4d:09:ef:92:e8:59:cc:6d:b1:1b:59:
51:c4:17:1c:35:1c:14:77:03:bf:d0:d6:b7:86:32:
9a:38:e4:3f:79:df:b2:71:db:cc:8d:a4:0e:9f:c3:
b7:1c:3b:82:8d:d9:a7:d3:27:12:76:77:36:f2:e3:
1e:dc:a3:d6:24:1e:56:42:de:1a:a3:9c:1c:8d:ee:
4d:40:30:60:e1:c8:15:35:b9:71:c8:a0:5d:d1:14:
1c:d4:f6:63:55:45:e4:fa:c0:e8:bc:07:18:57:b9:
b5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:01:F0:85:3B:94:D2:0A:5C:18:6D:B1:F3:D3:83:87:30:81:0D:CF
X509v3 Authority Key Identifier:
keyid:9E:25:F8:76:3A:A3:51:68:9B:6B:A3:36:26:9A:B2:1C:4E:01:20:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/niX4djqjUWiba6M2JpqyHE4BILM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:53:be:52:41:d9:c8:22:48:20:22:ed:b3:30:c9:3a:27:9f:
46:83:c8:09:ef:06:64:43:31:8d:6b:5d:db:39:69:76:6d:f5:
21:69:12:9d:70:0b:50:b5:68:de:c6:1b:41:97:21:89:77:0d:
46:be:b5:d6:74:cc:18:fc:e2:a6:8a:f3:0c:cb:6a:02:ce:0b:
99:13:bb:75:02:cc:d2:eb:9a:93:92:a5:2a:4c:1b:27:99:05:
3c:00:b3:d1:a5:7d:de:ca:a9:db:3f:5b:69:c1:93:ab:c8:b3:
0e:cb:c3:42:55:0b:2c:e6:28:c3:57:4d:e9:7e:d9:2b:3c:7e:
65:6e:36:a6:0b:ba:89:3e:5b:64:4a:39:7c:13:c8:c9:16:71:
f0:b5:a1:2d:7c:83:e9:42:92:b5:2b:08:5a:8f:dc:a6:7a:70:
55:4c:8e:d2:be:12:38:19:34:e0:cd:1c:5e:4a:cb:7c:68:3b:
fe:8a:4b:b2:8f:5c:7f:2a:5c:44:9a:0f:f1:02:a2:6e:87:5d:
6a:ad:02:88:c3:ae:7a:fd:4b:1c:00:1a:de:d1:17:76:bf:cf:
4e:63:3f:3f:ba:1d:00:19:de:39:8b:1b:0f:80:b7:e4:09:1f:
c5:cb:ce:57:18:a2:9f:1f:53:8a:22:42:27:1b:b7:89:e4:05:
e1:21:dd:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 21:59:54 2026 by rpki-client