Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
File: N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft (raw, json)
Hash identifier: XJtLj77MEzcNMlf/rfYiXnBwHI165bqBPurw1DSj0oI=
Subject key identifier: 74:C1:02:CF:FA:1E:1E:7B:6A:26:1A:5D:31:FB:FB:0C:98:5A:BA:12
Authority key identifier: 37:63:E4:5B:81:64:93:CC:DB:DD:4B:07:70:8A:21:FB:73:A1:E5:99
Certificate issuer: /CN=3763e45b816493ccdbdd4b07708a21fb73a1e599
Certificate serial: 019D284D9BEC4BCEC95201CA77608C8A93D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
Manifest number: 093A
Signing time: Thu 26 Mar 2026 04:01:07 +0000
Manifest this update: Thu 26 Mar 2026 04:01:07 +0000
Manifest next update: Fri 27 Mar 2026 04:01:07 +0000
Files and hashes: 1: 4zAmEJqR1DqYOFNN31dLsnJzv_g.roa (hash: 0KHfMaTBbna47YAZcNimsTmzVEm9F8k0s5RoP/K5SQA=)
2: N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl (hash: uWtDNjqs2JPzfNYN/2MiNckwGvKp3ScElq8iAcaoscc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:9b:ec:4b:ce:c9:52:01:ca:77:60:8c:8a:93:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3763e45b816493ccdbdd4b07708a21fb73a1e599
Validity
Not Before: Mar 26 04:01:07 2026 GMT
Not After : Mar 27 04:01:07 2026 GMT
Subject: CN=74c102cffa1e1e7b6a261a5d31fbfb0c985aba12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a5:6f:01:fd:99:7a:fd:94:99:08:2d:8d:c8:
42:2a:34:bb:d7:9e:cd:7b:10:f4:e8:0e:ae:8d:de:
58:e5:9b:13:98:f1:2f:ab:83:be:63:3d:30:df:30:
0b:09:62:5a:35:5d:9b:4c:1d:59:8d:15:c9:89:28:
80:38:e1:7f:56:c2:f8:9a:9e:39:80:20:3d:e2:e0:
fc:a8:8d:26:ef:12:83:7e:f6:c7:eb:e9:8a:5a:79:
9e:f6:12:ec:22:0e:2a:f0:c7:88:a8:89:59:c6:b8:
be:86:3a:27:d8:7b:93:62:a1:9e:fc:a9:8f:de:dc:
53:54:e4:54:4c:39:86:51:71:61:2c:80:82:10:b1:
0d:3b:7c:91:68:d8:eb:78:6a:46:65:bf:6a:ed:5f:
69:0e:00:e3:4f:dc:dd:03:5b:46:bd:f6:03:96:fb:
a3:fc:e7:46:b4:8f:7c:5b:c1:1c:6a:ff:5a:a3:33:
1f:b0:5f:f9:5c:52:33:7e:0c:6e:40:b2:1e:fc:91:
e0:8d:81:9b:5b:38:d2:c7:ca:e0:7d:f8:ff:7c:a7:
ce:89:f3:25:0e:07:08:f4:67:d8:cb:f7:21:57:a1:
fe:94:a4:92:5f:3d:6a:eb:4b:d4:96:98:64:cd:0d:
59:08:62:4e:42:5b:54:73:97:89:8e:a7:5e:3b:d4:
50:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C1:02:CF:FA:1E:1E:7B:6A:26:1A:5D:31:FB:FB:0C:98:5A:BA:12
X509v3 Authority Key Identifier:
keyid:37:63:E4:5B:81:64:93:CC:DB:DD:4B:07:70:8A:21:FB:73:A1:E5:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:96:d0:79:0c:bf:41:96:79:61:65:96:c2:dd:40:8a:ff:d5:
36:99:72:7a:28:e2:66:b2:e5:34:05:5e:5d:5b:b2:22:ae:ce:
00:c0:ac:06:94:2d:2d:0c:3b:0d:41:de:f7:ed:1f:af:48:22:
63:c5:df:8f:46:a9:7d:8c:47:8d:13:a3:50:cf:c3:ef:db:60:
81:04:51:52:12:db:5b:01:9f:6c:b1:b0:e4:03:b0:34:ce:27:
ab:c7:a0:6e:e9:f6:2d:80:d6:65:50:bf:ad:8d:eb:81:23:05:
88:a3:f5:6d:f0:37:5c:58:03:a6:3a:a9:75:fe:70:0e:a6:a2:
6c:74:3e:57:40:36:f4:a0:f0:6c:14:ef:75:52:01:40:e0:e0:
f0:2e:7e:01:20:42:37:8c:65:55:03:34:1f:56:fe:df:19:35:
e8:ed:44:86:4a:ab:7a:a3:1b:af:63:66:71:13:48:8e:99:08:
ec:e2:69:8a:29:e4:ab:84:14:0f:83:28:bc:eb:69:13:d0:cf:
c0:dd:cc:32:19:86:da:a0:72:63:45:49:00:ad:7e:bb:90:6f:
df:e7:76:6d:90:19:31:d8:21:83:8d:57:a6:d2:3b:43:42:5b:
01:1a:56:aa:68:51:d7:49:6d:76:81:82:73:62:0e:d9:b7:29:
a0:90:fd:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oTZvsS87JUgHKd2CMipPTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3NjNlNDViODE2NDkzY2NkYmRkNGIwNzcwOGEyMWZiNzNh
MWU1OTkwHhcNMjYwMzI2MDQwMTA3WhcNMjYwMzI3MDQwMTA3WjAzMTEwLwYDVQQD
Eyg3NGMxMDJjZmZhMWUxZTdiNmEyNjFhNWQzMWZiZmIwYzk4NWFiYTEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgqVvAf2Zev2UmQgtjchCKjS7157N
exD06A6ujd5Y5ZsTmPEvq4O+Yz0w3zALCWJaNV2bTB1ZjRXJiSiAOOF/VsL4mp45
gCA94uD8qI0m7xKDfvbH6+mKWnme9hLsIg4q8MeIqIlZxri+hjon2HuTYqGe/KmP
3txTVORUTDmGUXFhLICCELENO3yRaNjreGpGZb9q7V9pDgDjT9zdA1tGvfYDlvuj
/OdGtI98W8Ecav9aozMfsF/5XFIzfgxuQLIe/JHgjYGbWzjSx8rgffj/fKfOifMl
DgcI9GfYy/chV6H+lKSSXz1q60vUlphkzQ1ZCGJOQltUc5eJjqdeO9RQyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHTBAs/6Hh57aiYaXTH7+wyYWroSMB8GA1UdIwQY
MBaAFDdj5FuBZJPM291LB3CKIftzoeWZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjJQa1c0RmtrOHpiM1VzSGNJb2gtM09oNVprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9hZGJiNDctNTcyYS00OWNjLWE2ZDAt
NTFmZjIwZjlmZWY5LzEvTjJQa1c0RmtrOHpiM1VzSGNJb2gtM09oNVprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9hZGJiNDctNTcyYS00OWNjLWE2ZDAtNTFmZjIwZjlmZWY5
LzEvTjJQa1c0RmtrOHpiM1VzSGNJb2gtM09oNVprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoZbQeQy/
QZZ5YWWWwt1Aiv/VNplyeijiZrLlNAVeXVuyIq7OAMCsBpQtLQw7DUHe9+0fr0gi
Y8Xfj0apfYxHjROjUM/D79tggQRRUhLbWwGfbLGw5AOwNM4nq8egbun2LYDWZVC/
rY3rgSMFiKP1bfA3XFgDpjqpdf5wDqaibHQ+V0A29KDwbBTvdVIBQODg8C5+ASBC
N4xlVQM0H1b+3xk16O1EhkqreqMbr2NmcRNIjpkI7OJpiinkq4QUD4MovOtpE9DP
wN3MMhmG2qByY0VJAK1+u5Bv3+d2bZAZMdghg41XptI7Q0JbARpWqmhR10ltdoGC
c2IO2bcpoJD9jA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:50:14 2026 by rpki-client