Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
File: NehMBjohgLI_X20xYqdbMJL1wY0.mft (raw, json)
Hash identifier: IEyv0s6qnhu8q6V3462ZxnG7fXX72E5KyHNKlePpcKU=
Subject key identifier: 4D:30:FB:7F:35:3C:3A:32:85:A9:5B:23:BF:AF:D5:77:5E:0E:57:20
Authority key identifier: 35:E8:4C:06:3A:21:80:B2:3F:5F:6D:31:62:A7:5B:30:92:F5:C1:8D
Certificate issuer: /CN=35e84c063a2180b23f5f6d3162a75b3092f5c18d
Certificate serial: 019D2A3B425B2F6CA1EE40CD3B18D68A7FB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 13:00:19 +0000
Manifest this update: Thu 26 Mar 2026 13:00:19 +0000
Manifest next update: Fri 27 Mar 2026 13:00:19 +0000
Files and hashes: 1: NehMBjohgLI_X20xYqdbMJL1wY0.crl (hash: C0TIvlZmiSnxCYYWL2TFJOjA3s1YvkYrG8J0xwTTquE=)
2: Vi8I4MkCYQcd0rGXc9xuEZAFofI.roa (hash: P7eM54+hvOkGLmFDM1sHFQzbHZ9ga56vNG5gdNovG80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:42:5b:2f:6c:a1:ee:40:cd:3b:18:d6:8a:7f:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35e84c063a2180b23f5f6d3162a75b3092f5c18d
Validity
Not Before: Mar 26 13:00:19 2026 GMT
Not After : Mar 27 13:00:19 2026 GMT
Subject: CN=4d30fb7f353c3a3285a95b23bfafd5775e0e5720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:92:dd:27:02:c0:4f:5c:aa:28:ac:5f:45:53:
e4:b3:e3:43:c7:f8:76:8b:cf:34:96:dd:96:0b:11:
63:06:60:b9:30:12:f1:4e:e1:de:30:40:45:c4:00:
c9:98:f0:57:ca:5c:f9:9d:48:29:98:94:9f:df:e3:
0c:96:b6:88:66:e4:6c:34:5c:29:fc:40:2d:e7:c0:
ce:57:30:d3:9d:a9:81:12:47:a4:ee:bd:c1:d6:17:
27:e5:17:ce:44:32:6a:6b:6e:02:52:80:66:13:ed:
0a:92:cd:06:6d:d3:5e:c3:14:f4:4c:fe:5b:42:57:
c4:81:1e:e0:c8:21:8e:5f:27:a3:81:57:5c:64:ea:
00:7c:ed:ea:df:2f:a8:61:1a:01:99:65:49:cb:7b:
67:25:0a:ec:b6:a8:4a:b2:79:18:b5:1a:f1:af:40:
24:c6:e7:64:77:7f:4b:2a:ec:84:52:5e:56:26:05:
8b:2a:5a:c9:58:c8:bd:2d:7c:5e:41:6a:78:13:5b:
78:ff:07:12:e0:7c:84:c2:31:2f:f9:ad:00:8d:ea:
cc:ff:f1:bf:3d:21:06:a5:0e:fd:f7:d3:b2:b6:b8:
2d:ab:13:dc:07:fa:73:d1:43:a5:21:72:19:d1:0f:
24:58:a6:35:01:00:82:1e:e3:da:81:72:29:90:37:
64:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:30:FB:7F:35:3C:3A:32:85:A9:5B:23:BF:AF:D5:77:5E:0E:57:20
X509v3 Authority Key Identifier:
keyid:35:E8:4C:06:3A:21:80:B2:3F:5F:6D:31:62:A7:5B:30:92:F5:C1:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:58:e9:97:b6:6a:49:34:0f:b1:5a:b9:b1:ea:57:d1:af:aa:
b8:be:f2:9a:56:4a:22:90:a2:34:03:48:8d:94:c2:c4:19:6c:
00:c5:33:6b:29:c5:7b:23:f0:55:40:1e:7f:09:56:b8:63:5f:
2a:55:84:67:d4:ed:ee:f5:0b:57:ac:6e:7c:ae:2f:a2:dd:5a:
f0:31:19:52:36:e5:98:3e:d1:e2:d9:9a:35:95:b5:88:66:a2:
88:fc:6d:d5:9f:c8:61:d9:e7:63:90:59:cd:e6:09:02:a5:8a:
71:8e:1d:dd:a9:85:80:17:7f:18:24:be:66:89:08:08:2c:1e:
ca:7d:c3:db:ff:28:c6:51:9b:55:ca:8c:e3:24:a5:72:69:7f:
83:47:db:67:2c:46:23:db:d7:51:c3:02:de:c1:d2:b5:54:e4:
8c:cf:e2:3c:a7:d3:ab:d8:1b:d6:38:bd:37:ec:56:f5:6b:c1:
72:31:6c:6e:04:dd:fa:20:c1:49:ff:1b:86:5f:b7:bc:de:33:
c6:55:11:7d:3a:fa:54:43:55:54:f8:42:78:d9:be:12:6d:e8:
89:fb:a5:c7:f6:17:90:12:43:04:a0:8e:76:01:31:aa:67:17:
74:bc:1f:5a:75:74:0f:c3:34:eb:fe:b6:fe:24:fc:14:3f:86:
d8:a1:63:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qO0JbL2yh7kDNOxjWin+2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1ZTg0YzA2M2EyMTgwYjIzZjVmNmQzMTYyYTc1YjMwOTJm
NWMxOGQwHhcNMjYwMzI2MTMwMDE5WhcNMjYwMzI3MTMwMDE5WjAzMTEwLwYDVQQD
Eyg0ZDMwZmI3ZjM1M2MzYTMyODVhOTViMjNiZmFmZDU3NzVlMGU1NzIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA05LdJwLAT1yqKKxfRVPks+NDx/h2
i880lt2WCxFjBmC5MBLxTuHeMEBFxADJmPBXylz5nUgpmJSf3+MMlraIZuRsNFwp
/EAt58DOVzDTnamBEkek7r3B1hcn5RfORDJqa24CUoBmE+0Kks0GbdNewxT0TP5b
QlfEgR7gyCGOXyejgVdcZOoAfO3q3y+oYRoBmWVJy3tnJQrstqhKsnkYtRrxr0Ak
xudkd39LKuyEUl5WJgWLKlrJWMi9LXxeQWp4E1t4/wcS4HyEwjEv+a0AjerM//G/
PSEGpQ7999OytrgtqxPcB/pz0UOlIXIZ0Q8kWKY1AQCCHuPagXIpkDdkTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE0w+381PDoyhalbI7+v1XdeDlcgMB8GA1UdIwQY
MBaAFDXoTAY6IYCyP19tMWKnWzCS9cGNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmVoTUJqb2hnTElfWDIweFlxZGJNSkwxd1kwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC82Y2E4NTItZWQ0Yi00MWQxLWE3YjYt
ODRhNzFjYzMyZDQ4LzEvTmVoTUJqb2hnTElfWDIweFlxZGJNSkwxd1kwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC82Y2E4NTItZWQ0Yi00MWQxLWE3YjYtODRhNzFjYzMyZDQ4
LzEvTmVoTUJqb2hnTElfWDIweFlxZGJNSkwxd1kwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALVjpl7Zq
STQPsVq5sepX0a+quL7ymlZKIpCiNANIjZTCxBlsAMUzaynFeyPwVUAefwlWuGNf
KlWEZ9Tt7vULV6xufK4vot1a8DEZUjblmD7R4tmaNZW1iGaiiPxt1Z/IYdnnY5BZ
zeYJAqWKcY4d3amFgBd/GCS+ZokICCweyn3D2/8oxlGbVcqM4ySlcml/g0fbZyxG
I9vXUcMC3sHStVTkjM/iPKfTq9gb1ji9N+xW9WvBcjFsbgTd+iDBSf8bhl+3vN4z
xlURfTr6VENVVPhCeNm+Em3oifulx/YXkBJDBKCOdgExqmcXdLwfWnV0D8M06/62
/iT8FD+G2KFjjw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 17:20:44 2026 by rpki-client