Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json)
Hash identifier: JqVC2irBnlbpVl+rZwWHHdu/lOArm0aBToJ2ZkgZLis=
Subject key identifier: 6B:54:5D:D3:53:CE:01:40:0E:AE:12:25:91:33:DF:20:55:0E:0C:BA
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 019CE6DB28959258EBB3802942165FDD20CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
Manifest number: 0E4A
Signing time: Fri 13 Mar 2026 11:00:48 +0000
Manifest this update: Fri 13 Mar 2026 11:00:48 +0000
Manifest next update: Sat 14 Mar 2026 11:00:48 +0000
Files and hashes: 1: GEk2YBzVV2gm-LB4E-0QcSjlOaw.roa (hash: 6ltbKXfP63Sbrv2a4WDFBu+kJMReN4SiNF3HfveZocU=)
2: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: MpaK/3MRgjF8JS4xfQMBKH9tH/zAdCdzl/OrUdkAWLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:db:28:95:92:58:eb:b3:80:29:42:16:5f:dd:20:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: Mar 13 11:00:48 2026 GMT
Not After : Mar 14 11:00:48 2026 GMT
Subject: CN=6b545dd353ce01400eae12259133df20550e0cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d2:ea:87:84:3d:72:c0:2d:ab:c6:27:fb:fd:
11:80:21:5d:cf:84:5e:d0:39:6a:ae:38:b0:a7:9c:
30:5b:70:3b:a5:90:d1:61:6f:27:ea:c5:5d:7f:6e:
c7:b9:ed:02:62:20:e0:e2:43:33:31:fb:82:f9:46:
93:40:88:72:18:7d:a4:be:df:8a:14:f4:82:f2:cb:
d9:30:85:3c:5e:7c:0e:cd:22:93:94:52:3d:d7:47:
9f:66:9a:c2:72:df:b7:37:5f:99:17:ad:01:d0:58:
c9:08:92:f9:e8:8f:2f:5f:dd:52:d5:3a:4b:ca:4f:
c8:aa:40:ef:9d:db:8d:16:5d:c1:6d:d9:a5:52:6b:
0f:73:40:ba:80:66:8a:c4:1c:b0:83:8a:f1:d3:3c:
60:64:01:4d:9d:9d:aa:a0:18:85:b1:c5:d5:28:fa:
62:9d:67:8d:7c:19:2d:07:66:8f:78:32:5e:b8:f9:
02:e7:95:14:1d:4f:d1:c6:ed:a0:ba:4f:92:2e:26:
29:2b:1b:53:8a:b8:c7:0b:14:44:04:b2:39:b0:57:
4b:e6:3e:e7:8f:62:7f:c8:18:eb:93:3b:a3:4e:48:
98:df:4e:1a:ec:6a:1d:61:63:56:8a:b0:37:4f:64:
6b:3f:42:29:3f:9f:e9:74:39:14:66:92:21:f2:b2:
af:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:54:5D:D3:53:CE:01:40:0E:AE:12:25:91:33:DF:20:55:0E:0C:BA
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:3e:f9:4f:4e:f7:71:70:e0:3f:4e:78:e8:91:82:e6:6f:9f:
e6:ea:11:a6:e1:72:7e:f8:64:9b:45:f8:d3:44:5f:4d:20:0f:
63:86:3f:a3:fa:1d:6b:93:33:43:47:b1:28:a8:80:26:2d:af:
17:01:73:e7:0a:db:60:de:3e:16:6c:e5:84:35:15:28:c9:e9:
cd:45:79:4a:a8:93:6b:b0:d5:96:34:2a:65:b2:9a:f6:2c:73:
04:1a:77:4c:00:db:b6:5f:e8:b3:d0:4c:f2:cf:1c:8f:8d:8f:
e1:77:20:8c:a5:51:3d:02:c5:1f:3b:96:95:24:4c:b2:bd:e2:
fe:72:8b:12:4b:8a:5a:43:e7:e2:a3:f0:76:73:57:6d:84:a5:
09:63:08:84:cb:3f:5e:be:96:08:de:4e:da:d6:ea:24:68:4d:
75:54:e6:dd:d6:44:d9:62:3c:2b:5a:10:ba:0b:22:4c:0c:f0:
ed:23:8b:9b:3a:31:38:13:18:03:d2:65:36:cf:fb:58:b8:68:
60:10:bf:ae:63:ef:25:4e:31:3f:8d:a9:87:c0:70:f6:69:cd:
3a:c7:0b:37:3c:47:9a:58:ab:0f:98:c2:90:b9:33:bb:eb:32:
4d:59:95:95:8c:2e:30:ba:6f:4a:ba:8d:95:b4:11:59:e8:d1:
a5:ae:56:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 14:34:27 2026 by rpki-client