Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
File: NPwYIZBVFuYYMg6eRxoTsqqslv8.mft (raw, json)
Hash identifier: P/EXBqHkhtJidaMvs1/aiJZzs+W95guPHHXO8nmbj7A=
Subject key identifier: 4B:11:C3:78:8A:6F:74:98:B9:F5:79:F7:E0:12:AE:06:40:C2:E2:C8
Authority key identifier: 34:FC:18:21:90:55:16:E6:18:32:0E:9E:47:1A:13:B2:AA:AC:96:FF
Certificate issuer: /CN=34fc1821905516e618320e9e471a13b2aaac96ff
Certificate serial: 019D38D3D42C0435DE91D9382355E9D2FCD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 09:01:39 +0000
Manifest this update: Sun 29 Mar 2026 09:01:39 +0000
Manifest next update: Mon 30 Mar 2026 09:01:39 +0000
Files and hashes: 1: FT4kAT6lWQN00FHh3OTXw40E65E.roa (hash: GFS78DgVCOqhb0Wz+qsE+LrfZ/kjwcDR1Tvaz5iQcCc=)
2: NPwYIZBVFuYYMg6eRxoTsqqslv8.crl (hash: HTHHo+7T8R3j9FGf3bz928EQUcL5l+Izy+Y1P19MamQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:d4:2c:04:35:de:91:d9:38:23:55:e9:d2:fc:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34fc1821905516e618320e9e471a13b2aaac96ff
Validity
Not Before: Mar 29 09:01:39 2026 GMT
Not After : Mar 30 09:01:39 2026 GMT
Subject: CN=4b11c3788a6f7498b9f579f7e012ae0640c2e2c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0c:62:35:09:ea:e3:28:75:4f:c4:33:be:ec:
fd:b7:7b:71:cf:d7:20:37:91:7d:b0:57:ec:0c:d3:
d1:27:9f:30:e9:54:ed:b8:db:a3:90:53:23:76:6d:
6e:0e:cf:43:9e:30:06:35:8c:d6:19:f3:01:56:38:
63:1b:07:29:4f:26:3d:0e:41:40:f0:e8:df:9a:75:
e2:a8:1a:eb:7c:35:61:84:df:3a:f0:b8:71:60:69:
87:ba:3d:e9:07:0c:ec:ae:83:c2:17:26:f6:b8:e2:
09:05:30:a9:c7:ba:16:66:12:13:5a:21:44:34:f9:
dd:3a:23:d4:dc:28:9c:2b:96:49:df:64:1b:2c:30:
34:6a:ee:37:46:08:f4:d2:61:e4:e0:8d:71:ab:ec:
12:9a:e1:05:09:c7:84:f5:80:47:bc:0a:dd:c1:47:
e1:15:34:47:89:4f:e5:1b:8e:4c:9b:b8:55:14:33:
4b:15:8e:de:d3:ed:12:da:99:30:b6:c2:67:e1:e5:
50:26:5d:17:e8:8d:53:4e:de:68:58:73:52:23:10:
7e:4a:8a:62:3a:2b:8f:ed:10:da:80:c9:e1:bf:0a:
7f:17:4c:0b:55:1e:1f:cd:2e:2c:26:45:b6:22:7e:
cf:bf:e1:3b:11:62:e1:5f:40:e2:80:a9:a0:81:3b:
11:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:11:C3:78:8A:6F:74:98:B9:F5:79:F7:E0:12:AE:06:40:C2:E2:C8
X509v3 Authority Key Identifier:
keyid:34:FC:18:21:90:55:16:E6:18:32:0E:9E:47:1A:13:B2:AA:AC:96:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPwYIZBVFuYYMg6eRxoTsqqslv8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/84b575-5563-4f1b-865a-815eea33b35b/1/NPwYIZBVFuYYMg6eRxoTsqqslv8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:2c:d4:1d:64:a4:dd:60:2c:69:fe:7d:17:f6:9a:66:5b:e4:
ed:d0:c4:6b:41:99:e4:28:31:e5:dc:03:31:38:f3:2f:87:f9:
86:51:5f:8c:4a:6f:e1:be:ef:c6:68:22:b1:38:5b:52:5b:9c:
8e:eb:39:21:96:42:61:38:89:16:67:5b:42:b4:42:e7:bb:f9:
7a:ed:c0:94:af:ea:29:5c:b6:ff:ec:69:15:a1:10:ea:e3:82:
0e:b5:b7:09:31:03:4b:9a:9c:89:6f:dd:02:42:ca:4d:af:21:
9a:de:81:f3:54:47:2a:36:86:d4:61:d1:1f:19:97:d7:c3:8f:
63:6d:44:f4:bc:7c:c3:b6:6e:a5:2c:43:5a:54:be:e7:89:4b:
9e:35:92:7e:49:ae:e2:93:cc:8c:b6:a4:bb:ef:f9:8a:0f:bb:
71:d3:e6:ed:61:aa:b1:53:cd:1d:57:78:6d:ea:dd:3b:8b:67:
f6:b0:06:79:e5:e6:a1:89:cb:d1:aa:62:67:51:f9:28:00:4d:
22:77:b6:8c:7d:ee:e9:6a:ab:72:62:b6:b5:2e:57:0e:5a:1a:
df:e7:1e:d0:51:b7:fe:e9:66:4b:fb:41:6c:35:57:9f:a9:4b:
7f:df:cf:42:1c:90:2c:9a:07:08:ec:30:bf:de:a2:18:5f:cf:
24:9b:8b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:11 2026 by rpki-client