Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: lnGkWSgV6abyfAl4BJnnO2vFyaN0rmtyo13464Wh7Wk=
Subject key identifier: 0C:A0:89:4D:64:F9:73:5C:21:E3:24:DE:63:61:B3:97:1D:55:25:9B
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 019D2884D4E40EA3188F9D95125F903F6684
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 05:01:27 +0000
Manifest this update: Thu 26 Mar 2026 05:01:27 +0000
Manifest next update: Fri 27 Mar 2026 05:01:27 +0000
Files and hashes: 1: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: TsuOn8KX7lnr6OY8/WTW8Smarvx2w/2NcoVX8EuVvbQ=)
2: iZZcAtI6tX7pa2kx02V3Cb8900I.roa (hash: DpMSCiHNTOpSLZuOk1jeRKQ+RT6rgkZxlrfr955DoA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:d4:e4:0e:a3:18:8f:9d:95:12:5f:90:3f:66:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Mar 26 05:01:27 2026 GMT
Not After : Mar 27 05:01:27 2026 GMT
Subject: CN=0ca0894d64f9735c21e324de6361b3971d55259b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:64:d5:c1:d1:37:40:d6:70:87:6f:8f:41:04:
80:13:15:cf:73:6e:f2:9f:96:2b:92:f7:4f:78:f2:
05:11:ad:69:4c:ff:f9:fa:40:99:5f:74:5d:b3:af:
7c:71:8a:fb:3c:96:dd:15:15:a4:6e:84:f7:29:31:
a7:15:15:aa:ca:19:13:81:78:44:12:fc:63:fa:5b:
be:4f:6a:4f:f0:70:b0:31:f6:7a:88:49:64:e8:6e:
6a:ca:38:87:34:4c:fa:45:d7:d3:48:a3:4a:69:c9:
37:b6:65:55:04:01:8d:3d:7f:7b:34:45:29:7c:13:
d4:a4:7a:c6:2f:9d:23:53:20:1d:b9:ca:60:b8:ec:
02:d2:ca:f7:a8:68:50:3d:3b:58:3a:1c:41:8e:2e:
f4:98:40:4f:8c:7d:e7:3e:7e:2f:4e:94:99:47:34:
7d:f4:9d:24:61:5a:f0:6a:01:fd:4e:a1:63:36:a2:
82:99:92:81:19:7a:dd:61:58:76:3a:9a:02:de:11:
50:22:1e:cd:57:cc:64:ea:87:fa:b5:c9:1e:1b:31:
ac:8e:04:6a:90:de:84:78:07:be:fa:53:7c:e3:34:
3e:57:e6:42:6c:80:56:d6:fe:00:d8:d4:7a:fc:51:
62:90:46:30:08:59:c7:96:43:81:85:99:4c:f2:7a:
0a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:A0:89:4D:64:F9:73:5C:21:E3:24:DE:63:61:B3:97:1D:55:25:9B
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:f5:9b:81:7f:0b:be:53:89:2e:1e:85:94:36:c7:b4:15:26:
af:33:e4:7c:40:36:5b:92:a3:07:e5:b7:e9:5b:54:b3:7f:50:
ed:37:f4:a6:72:c1:4d:af:85:2e:88:cb:cf:ed:dd:4f:86:cf:
59:5e:a9:00:04:23:d3:3d:8c:da:f3:ab:80:8e:87:9c:e8:10:
d9:e9:2d:79:38:9a:ca:3a:f4:93:74:2f:ff:1c:75:5a:d0:3f:
1b:b2:59:35:74:d5:e1:c8:4f:03:6c:88:86:60:8b:3a:07:f5:
07:fc:6f:eb:b1:f4:7a:2a:2b:ba:43:1c:3d:26:49:06:23:41:
14:87:ea:21:f1:f8:22:a7:9c:5f:db:3c:c9:b1:db:2e:01:3a:
82:3d:cf:07:68:a0:7c:43:f4:6d:6b:70:51:91:d8:7b:d8:5d:
ca:81:70:1d:a8:22:6e:ae:bd:e8:d4:49:bd:2e:4c:7a:fc:c0:
60:17:96:a5:2f:3b:6c:e2:50:01:db:1a:99:06:2f:fe:ff:da:
b5:17:fd:e0:e9:be:bb:34:ee:ed:99:98:56:e0:d9:49:20:b9:
7b:86:d5:b9:5b:ae:f3:81:51:98:00:58:13:2e:97:77:35:28:
d8:96:8d:9c:df:0b:43:36:ae:0e:13:8c:7c:6b:5a:e0:1b:88:
4a:91:6e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:28:59 2026 by rpki-client