Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json)
Hash identifier: WMfmwcgATn4yOozThrlqg77/2yGzeObqyKeqhHGgwAI=
Subject key identifier: EE:04:2E:5B:F3:5D:9A:43:42:73:5D:12:46:00:43:5D:D7:9E:E8:BE
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 019DCE994FE568F39549A821F7292F6132B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
Manifest number: 0EC2
Signing time: Mon 27 Apr 2026 11:00:47 +0000
Manifest this update: Mon 27 Apr 2026 11:00:47 +0000
Manifest next update: Tue 28 Apr 2026 11:00:47 +0000
Files and hashes: 1: GEk2YBzVV2gm-LB4E-0QcSjlOaw.roa (hash: 6ltbKXfP63Sbrv2a4WDFBu+kJMReN4SiNF3HfveZocU=)
2: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: MzefuXJIA/FWNyXBaAFmkQmIP8XipzYGdC6RVX4Riek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 11:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:99:4f:e5:68:f3:95:49:a8:21:f7:29:2f:61:32:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: Apr 27 11:00:47 2026 GMT
Not After : Apr 28 11:00:47 2026 GMT
Subject: CN=ee042e5bf35d9a4342735d124600435dd79ee8be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c0:55:ab:9c:25:56:09:aa:19:8d:e8:f0:e5:
3d:1c:be:dd:8e:41:64:59:4d:73:60:6f:f2:9f:41:
78:ff:d0:c1:87:d9:28:30:99:4b:b1:c5:07:58:ee:
af:63:70:4a:91:37:c8:4e:4c:12:8c:f5:04:d1:0d:
bd:b0:7e:99:44:3b:92:7e:de:96:70:9c:c7:99:a3:
85:44:e9:80:52:f5:7b:5d:ef:d5:25:ff:32:7f:d1:
58:b7:da:de:f8:61:63:0e:0d:65:62:fd:47:bc:16:
53:ea:01:7a:9e:c1:75:f0:b4:13:da:0c:32:59:27:
d9:fc:61:69:34:69:09:73:0b:29:c0:75:37:c1:a4:
1f:e1:38:f4:5e:98:1f:42:27:94:11:93:5d:0c:95:
1a:81:5b:04:38:53:bf:d6:53:c1:88:d3:b7:0c:d4:
2c:63:ca:ae:7f:59:cd:39:06:31:03:7b:bb:f2:33:
6b:19:36:ee:5e:1b:da:22:f7:4d:15:8e:2b:1a:94:
40:c4:a7:16:6b:56:bf:fc:a0:b7:f7:a1:d7:18:ab:
ad:0d:0c:15:2d:92:a0:c5:a0:69:a8:17:3a:38:0a:
ac:33:0e:ee:cf:12:7d:ef:c3:d7:02:0e:80:23:0d:
14:ab:2c:ee:9a:eb:26:9d:27:3f:c1:05:8a:79:5d:
08:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:04:2E:5B:F3:5D:9A:43:42:73:5D:12:46:00:43:5D:D7:9E:E8:BE
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:13:2d:80:31:a0:f3:a3:38:7a:08:f8:95:cd:ba:18:e0:79:
f0:6d:ac:9f:39:3a:ea:20:20:d4:11:7a:31:9d:61:5a:89:65:
e0:6b:49:c5:98:a2:b4:1b:2a:f4:9c:4f:26:f4:10:91:e4:21:
86:f9:d1:0b:7a:b3:b5:66:cf:18:e7:3e:3c:e5:3c:7a:19:05:
1d:ec:2f:41:39:68:10:c4:46:03:c8:45:09:b9:25:ec:16:71:
8e:2b:bc:18:96:bf:a6:26:d7:23:8e:c7:00:ae:33:b2:e1:f9:
77:97:d2:95:e5:72:bb:57:b6:77:15:c5:8f:c0:8e:d0:5b:1d:
14:90:97:2c:fd:58:85:99:84:23:69:ea:43:fb:ff:3e:ed:b6:
62:05:1e:84:95:e8:90:4e:2a:2b:8b:33:c6:8e:0c:2a:5f:10:
42:6c:02:69:fc:37:b1:26:20:25:a3:ea:56:30:fe:e8:f2:b4:
14:dd:96:7c:a1:d6:16:d5:69:a4:e6:05:38:4e:08:b5:44:48:
58:4d:7c:60:52:47:a9:12:73:cd:c9:f1:96:6b:48:aa:4e:3e:
2a:c0:95:13:4b:9e:1c:b0:c5:2f:b9:33:49:1a:27:a5:14:ef:
5c:fb:9b:af:32:1b:4c:bc:d1:c8:b3:e3:aa:f4:8b:3e:26:11:
24:3f:0f:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3OmU/laPOVSagh9ykvYTKzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2MjZiOWU0NDQ2NWYwYmQ3MTNjMGExZTA1MDEwM2QzOTEx
ZGNkNjcwHhcNMjYwNDI3MTEwMDQ3WhcNMjYwNDI4MTEwMDQ3WjAzMTEwLwYDVQQD
EyhlZTA0MmU1YmYzNWQ5YTQzNDI3MzVkMTI0NjAwNDM1ZGQ3OWVlOGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8BVq5wlVgmqGY3o8OU9HL7djkFk
WU1zYG/yn0F4/9DBh9koMJlLscUHWO6vY3BKkTfITkwSjPUE0Q29sH6ZRDuSft6W
cJzHmaOFROmAUvV7Xe/VJf8yf9FYt9re+GFjDg1lYv1HvBZT6gF6nsF18LQT2gwy
WSfZ/GFpNGkJcwspwHU3waQf4Tj0XpgfQieUEZNdDJUagVsEOFO/1lPBiNO3DNQs
Y8quf1nNOQYxA3u78jNrGTbuXhvaIvdNFY4rGpRAxKcWa1a//KC396HXGKutDQwV
LZKgxaBpqBc6OAqsMw7uzxJ978PXAg6AIw0UqyzumusmnSc/wQWKeV0ItQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO4ELlvzXZpDQnNdEkYAQ13Xnui+MB8GA1UdIwQY
MBaAFDYmueREZfC9cTwKHgUBA9ORHc1nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8wMjJhZjUtODYyYy00MjhlLWJlZTgt
MjhhNDY4MWMzN2Q2LzEvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS8wMjJhZjUtODYyYy00MjhlLWJlZTgtMjhhNDY4MWMzN2Q2
LzEvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfhMtgDGg
86M4egj4lc26GOB58G2snzk66iAg1BF6MZ1hWoll4GtJxZiitBsq9JxPJvQQkeQh
hvnRC3qztWbPGOc+POU8ehkFHewvQTloEMRGA8hFCbkl7BZxjiu8GJa/pibXI47H
AK4zsuH5d5fSleVyu1e2dxXFj8CO0FsdFJCXLP1YhZmEI2nqQ/v/Pu22YgUehJXo
kE4qK4szxo4MKl8QQmwCafw3sSYgJaPqVjD+6PK0FN2WfKHWFtVppOYFOE4ItURI
WE18YFJHqRJzzcnxlmtIqk4+KsCVE0ueHLDFL7kzSRonpRTvXPubrzIbTLzRyLPj
qvSLPiYRJD8PkQ==
-----END CERTIFICATE-----
Generated at Mon Apr 27 19:50:02 2026 by rpki-client