Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
File: NgAOvu0kK5VkrclUhTI7lr1vXAI.mft (raw, json)
Hash identifier: T2GEGKU8iYIDWtmPCBYs0SB8B7+H4ZW7JfFl1xBNBPE=
Subject key identifier: A9:A4:BE:EE:AE:99:04:BC:C5:6F:8E:64:C0:D8:BE:0F:AE:C9:4A:15
Authority key identifier: 36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
Certificate issuer: /CN=36000ebeed242b9564adc95485323b96bd6f5c02
Certificate serial: 019E31BBF658328969C0E24D72A8BF3402C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
Manifest number: 147E
Signing time: Sat 16 May 2026 17:01:02 +0000
Manifest this update: Sat 16 May 2026 17:01:02 +0000
Manifest next update: Sun 17 May 2026 17:01:02 +0000
Files and hashes: 1: BHf8SWUieWyp8CsFi-LkKjkwID0.roa (hash: r6mZHm7Sd1CEnMX4mNcO0XlOAIiIxrl1PQK5EqAyZj4=)
2: NgAOvu0kK5VkrclUhTI7lr1vXAI.crl (hash: YWmoKdZhfocr4jttcl4t6R89rIB9ovHx5bVhwZlf2x4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:bb:f6:58:32:89:69:c0:e2:4d:72:a8:bf:34:02:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36000ebeed242b9564adc95485323b96bd6f5c02
Validity
Not Before: May 16 17:01:02 2026 GMT
Not After : May 17 17:01:02 2026 GMT
Subject: CN=a9a4beeeae9904bcc56f8e64c0d8be0faec94a15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c9:a7:9a:b6:da:71:a7:54:ee:96:27:e6:d2:
4a:e5:c2:cc:37:4a:e2:12:a6:01:8c:7a:15:64:22:
22:b9:83:7d:53:1a:8f:bb:6c:2e:67:dc:23:33:6c:
01:54:e1:04:30:56:17:a4:d2:2b:52:5f:e0:76:57:
e1:88:83:93:3f:2e:71:10:f7:78:d2:c2:bc:48:b3:
dc:1e:43:a8:04:79:36:51:8f:f7:d9:fb:76:92:7e:
a1:42:e8:2f:15:4c:b9:1c:d9:8f:19:6c:5a:c8:07:
4c:67:f7:48:87:a0:cc:3d:ff:29:f3:86:98:3c:c0:
e5:25:05:04:e3:6f:34:43:ba:ee:fa:c4:4e:e6:43:
22:80:3a:ac:f7:1a:ce:07:60:44:42:49:cb:f7:31:
46:a4:c6:67:0e:6b:8d:48:4b:cc:51:30:9c:59:aa:
74:49:4a:88:69:85:17:c0:79:b6:13:f6:b2:c6:f8:
7c:ca:07:c2:7b:f5:89:ad:f6:a4:36:3e:81:e1:37:
ea:98:a6:cc:d2:6d:51:e2:b6:42:3e:0a:74:a6:3d:
a6:41:7f:e0:c1:53:9b:50:60:ff:23:ec:db:fc:9b:
88:5f:77:c1:40:0d:f7:29:ec:a8:cb:95:66:f7:83:
98:4f:c7:74:2b:ff:d1:ec:ff:94:e8:3e:74:4c:77:
2e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A4:BE:EE:AE:99:04:BC:C5:6F:8E:64:C0:D8:BE:0F:AE:C9:4A:15
X509v3 Authority Key Identifier:
keyid:36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:cc:1d:dc:28:03:27:47:46:56:6e:ae:43:1a:35:3b:89:8f:
fe:ed:19:71:32:78:f9:9e:67:dc:49:3d:5f:1a:cd:7b:0d:76:
c0:d6:f5:17:86:d8:b2:2a:93:45:3c:e5:41:a4:47:19:e1:15:
95:8c:4a:4e:76:99:71:d6:11:f9:aa:96:cc:5f:60:0d:af:b0:
6f:ea:01:c9:20:4b:d0:a1:37:22:a2:02:da:32:e9:b4:d4:a5:
f1:f9:1d:48:30:d7:f5:43:c1:7c:98:02:68:f4:a0:d9:7e:7a:
ae:5e:0c:89:2e:3c:66:19:c2:e6:cc:38:31:1c:d7:6e:58:4a:
a7:8c:f8:d5:c0:d2:5d:9a:74:bd:2d:91:13:83:d6:df:e7:9f:
17:35:c5:bc:10:ee:62:8b:62:da:8e:79:24:64:e6:b0:b0:ee:
4f:f2:b9:ea:d6:7d:50:29:31:43:e8:d1:c5:e3:a4:87:08:b1:
60:4e:e5:f4:0c:22:19:57:04:a5:d6:ac:dc:d2:cc:af:8e:ec:
2a:c3:ad:1e:c0:76:a7:d3:f1:e2:0f:0e:4e:67:89:28:ac:f0:
6b:2f:c5:79:ae:02:24:84:7b:9b:63:fc:48:07:39:f6:a0:c6:
85:c7:22:58:0a:06:70:a5:9e:16:9b:8f:f6:0b:35:74:7a:8b:
da:93:52:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 23:29:38 2026 by rpki-client