Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json)
Hash identifier: hA7jXZwQuWuHZUI7IXUpklVd/AK0uAJO7YjUnQGuNR0=
Subject key identifier: 2A:AC:A8:05:F6:ED:4B:07:E9:F4:B7:8B:8C:BD:D9:66:11:97:F1:B3
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 019EB845CA3DAC9B34BA46A198B794E8BEF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
Manifest number: 0F3B
Signing time: Thu 11 Jun 2026 20:00:41 +0000
Manifest this update: Thu 11 Jun 2026 20:00:41 +0000
Manifest next update: Fri 12 Jun 2026 20:00:41 +0000
Files and hashes: 1: GEk2YBzVV2gm-LB4E-0QcSjlOaw.roa (hash: 6ltbKXfP63Sbrv2a4WDFBu+kJMReN4SiNF3HfveZocU=)
2: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: EL6WylPc6rRHvUKwmtcEx//lMGzipKpAa9yoLbUKGdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:45:ca:3d:ac:9b:34:ba:46:a1:98:b7:94:e8:be:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: Jun 11 20:00:41 2026 GMT
Not After : Jun 12 20:00:41 2026 GMT
Subject: CN=2aaca805f6ed4b07e9f4b78b8cbdd9661197f1b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f6:4f:cc:4c:86:f4:eb:ce:f4:73:49:35:f5:
a7:f3:f2:8e:d2:cb:28:67:7d:03:d6:ae:b4:b0:b9:
a6:ea:3c:c7:0f:d5:b4:62:6d:cd:41:9f:72:98:38:
17:66:5e:ae:92:73:91:aa:76:61:2d:aa:7b:82:35:
5f:7f:92:11:ec:46:8e:ce:0b:2f:17:79:ec:ca:39:
03:4f:f7:57:57:fd:10:2b:2f:57:3c:4f:ce:c5:ce:
60:20:65:c7:e9:2e:92:1d:40:ee:cb:8d:a5:c8:c4:
92:69:f9:a8:ee:b7:4e:97:a2:a6:e0:33:b9:7f:4d:
ff:02:a6:90:ee:de:39:d2:82:17:a5:d0:54:10:41:
52:50:2f:74:c9:b8:1a:18:0c:93:bf:cd:93:54:64:
d7:d8:cb:5b:b1:8a:a4:15:ce:d0:2c:3c:61:bf:94:
5c:89:fc:6a:bc:69:ae:cb:ed:23:f0:2e:91:04:8b:
e9:4e:9f:d8:45:7c:70:ab:4b:6b:a1:d5:54:d8:c8:
9d:e5:8d:8f:58:b6:3b:d1:ac:b8:7a:97:f6:32:e4:
18:97:43:6e:08:d0:f5:db:70:fd:4f:2b:1e:05:2d:
d0:e4:c8:42:e8:1d:ab:18:79:c4:8b:36:be:c6:27:
4f:91:12:c4:fe:4b:a1:7f:40:20:90:fc:a6:5d:4b:
09:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:AC:A8:05:F6:ED:4B:07:E9:F4:B7:8B:8C:BD:D9:66:11:97:F1:B3
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:0f:3a:7f:f7:99:71:59:d4:a4:32:49:48:40:eb:57:50:f2:
44:6f:5a:5c:5a:dc:59:44:fc:b7:18:a2:24:99:40:4b:15:14:
b6:e7:68:44:8d:25:e0:c7:6e:87:e9:3f:a8:9f:8e:6d:b2:bf:
b5:d7:5c:99:60:06:4b:15:50:92:fd:6a:fc:12:67:c5:88:22:
b5:5d:92:96:a8:08:a9:c7:9c:c0:a2:51:ab:25:75:08:37:c9:
61:1a:a9:1f:7d:40:c2:ef:93:99:3b:38:02:25:b8:3f:bc:cc:
70:a8:15:14:e2:0c:78:07:e9:23:bf:d2:4c:89:84:2f:0a:e5:
21:3d:20:13:a0:8d:5a:dc:bd:89:4a:4f:a1:5d:ed:42:d1:7e:
3f:c8:8b:28:37:d5:f0:2a:78:59:2d:fc:70:66:85:0c:c9:00:
4c:f1:50:92:96:65:09:b9:ae:9c:16:41:80:dd:61:42:f3:7d:
65:17:ed:1e:15:42:ca:28:37:d5:09:28:de:83:0e:ca:4c:44:
f0:aa:9d:e2:f0:75:3d:15:77:2e:89:c6:f3:98:70:5c:62:93:
f4:1c:e5:36:30:59:b1:c9:da:23:b1:70:e6:84:82:95:58:7e:
68:79:5d:37:c3:dd:cd:bb:d6:6d:cd:c0:8b:f9:b9:70:c4:a5:
df:c0:79:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:24:12 2026 by rpki-client