Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
File: NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json)
Hash identifier: MRoyqwSBDzkH8fjqPRe46B9UqN0sahyBrfHwuINtolU=
Subject key identifier: AB:7A:76:55:24:F4:B3:64:FC:2D:F8:A1:C5:DA:F0:C3:1F:E3:AE:F6
Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Certificate issuer: /CN=34832317d2544434b659e5692071d8e4c4938b06
Certificate serial: 019D28BBE4FE5BBAA5D999CB614E1C07AC92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
Manifest number: 05FC
Signing time: Thu 26 Mar 2026 06:01:35 +0000
Manifest this update: Thu 26 Mar 2026 06:01:35 +0000
Manifest next update: Fri 27 Mar 2026 06:01:35 +0000
Files and hashes: 1: MtXK992XQ-M-hmv_KStvnyh-x5Q.roa (hash: M8VsnjB/uw1FiI9xmVKpQrIIX0KwLuaKoIKTTuviTH8=)
2: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: 41BWjZPsQmvvqXkKSwKPndwAvzsqKrFvr3hRH41ROLQ=)
3: S3-C960eDjtkhmLESJEggehwHME.roa (hash: eXKQYhtmCASg+7u8rDqDnt6Fk8AoSBqR8NO1VXIyQ3c=)
4: r5VTzB_D--LT6ft6QpgyIKkudbM.roa (hash: 3oNMl/b2gquyHJLZema+rIR0bUrcCM54+yp4fRS/DTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:e4:fe:5b:ba:a5:d9:99:cb:61:4e:1c:07:ac:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06
Validity
Not Before: Mar 26 06:01:35 2026 GMT
Not After : Mar 27 06:01:35 2026 GMT
Subject: CN=ab7a765524f4b364fc2df8a1c5daf0c31fe3aef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:31:45:63:69:64:2f:7b:ed:e5:0d:9b:ed:54:
27:46:8d:20:5e:b3:07:6e:e8:d2:b4:73:df:19:cd:
c2:8b:2a:6e:46:80:63:e3:b6:90:3a:36:fa:62:ab:
e3:95:c3:71:85:6a:8c:c9:a3:1a:8f:a2:96:f5:c0:
07:8b:f9:43:2b:51:7f:2d:d4:ad:f6:97:29:62:ff:
f4:05:1c:e4:68:90:3f:54:93:5d:eb:9f:04:a0:45:
ec:bd:88:32:aa:55:58:07:bd:84:db:15:02:f5:27:
05:d8:ab:7d:33:be:c4:d4:4b:6b:01:02:3d:ae:03:
c5:1c:2b:97:3b:03:dd:5d:65:f1:32:9b:c3:c9:1f:
1d:4b:af:ce:9e:72:9b:c8:77:9a:18:25:a9:63:0d:
96:8c:7e:dc:9d:04:b4:2d:a6:07:af:f5:42:82:c0:
76:c4:b8:58:64:7f:77:37:87:54:d9:c8:78:bf:7d:
f7:96:c7:c3:e0:84:57:46:79:c9:0a:94:f2:b5:a1:
76:c7:93:20:c9:38:3d:d6:18:78:ab:87:c5:79:11:
8a:f2:77:5b:db:36:ff:76:f9:e1:29:3e:be:bf:7d:
0c:fd:13:b8:30:50:30:76:43:12:0d:be:94:e5:d3:
b9:d8:22:6f:7f:9d:dc:6b:02:59:8a:70:e5:07:ba:
9c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7A:76:55:24:F4:B3:64:FC:2D:F8:A1:C5:DA:F0:C3:1F:E3:AE:F6
X509v3 Authority Key Identifier:
keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:d1:61:b9:95:11:59:f8:36:ef:89:d6:df:3b:21:8e:0b:01:
80:28:9b:22:1c:d2:fa:45:b9:8b:94:0d:13:fa:e8:a9:41:65:
c9:2f:72:a2:67:f7:fd:d8:00:a5:23:13:39:85:13:17:aa:2a:
ad:e9:a1:98:d3:9b:85:ee:01:4c:90:c3:d0:e1:e5:82:a2:48:
74:28:78:04:39:82:8d:af:03:6b:b5:1c:d9:6b:b0:fb:b9:bd:
a4:b6:13:a5:3b:4b:58:6e:1a:56:f5:92:7a:0b:24:ba:48:8f:
d0:e9:ab:9c:24:57:a2:03:78:b8:80:ef:35:27:f6:2d:16:d6:
6c:00:59:da:ba:e4:ca:ab:7f:19:4e:23:6d:0a:12:e2:ce:1c:
52:c7:ee:6a:06:03:e1:45:4c:33:34:10:8b:35:8c:01:45:0f:
64:71:68:dd:eb:f1:4b:15:13:fe:d3:f8:a9:f0:a5:c8:22:4c:
20:6e:ae:7f:23:69:b9:fd:89:d0:2c:82:71:0b:23:87:2a:19:
af:13:e9:e4:77:3a:19:21:8c:ed:5a:66:3e:68:c2:9f:37:0d:
30:f7:99:10:41:a4:63:2c:1d:00:b6:73:59:f3:ef:65:13:90:
21:37:b9:fb:61:8d:24:e4:52:44:5f:61:fb:74:19:12:9f:97:
4a:ec:68:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:00:29 2026 by rpki-client