Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
File: NHkVOIV45h2IaEmiHXC6B1FJwaE.mft (raw, json)
Hash identifier: uRkg/NalIybEgsf9iFGbXZjfeT8G9L6GjaXEwxPHcdY=
Subject key identifier: 70:A1:8D:09:46:65:24:AD:8C:5D:12:D0:C5:D7:6A:5F:5C:26:41:97
Authority key identifier: 34:79:15:38:85:78:E6:1D:88:68:49:A2:1D:70:BA:07:51:49:C1:A1
Certificate issuer: /CN=347915388578e61d886849a21d70ba075149c1a1
Certificate serial: 019D270481C4A8EA58672AE8D23D5B466261
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
Manifest number: 0E12
Signing time: Wed 25 Mar 2026 22:01:39 +0000
Manifest this update: Wed 25 Mar 2026 22:01:39 +0000
Manifest next update: Thu 26 Mar 2026 22:01:39 +0000
Files and hashes: 1: NHkVOIV45h2IaEmiHXC6B1FJwaE.crl (hash: uKIKerA76UNC8shImZTNqErENxSoip6z0PgeDXliXNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:81:c4:a8:ea:58:67:2a:e8:d2:3d:5b:46:62:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347915388578e61d886849a21d70ba075149c1a1
Validity
Not Before: Mar 25 22:01:39 2026 GMT
Not After : Mar 26 22:01:39 2026 GMT
Subject: CN=70a18d09466524ad8c5d12d0c5d76a5f5c264197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0d:49:2b:fc:7e:c3:56:b1:c3:0b:51:a7:7e:
7c:ec:91:68:25:81:9e:9f:03:47:6c:f9:62:b9:c6:
1b:d1:e9:41:d8:89:be:70:a6:29:b8:66:b5:63:1f:
f3:47:4e:b4:3a:61:6b:7e:5b:5d:23:1f:48:e6:39:
bb:fa:fc:80:7c:fd:c6:01:9d:44:1b:c9:81:49:cf:
70:16:62:26:ad:75:61:46:c3:bd:19:cc:9e:b7:1d:
95:18:51:54:23:09:53:e3:21:33:7d:f2:58:ab:7a:
75:65:22:52:91:96:c5:a9:5b:ec:12:00:ae:34:cf:
e0:ac:47:50:f5:8d:ae:09:aa:dc:90:b7:04:9a:ea:
ef:03:5e:88:f1:e7:b6:2b:eb:48:30:14:a4:02:3c:
c3:0d:0b:57:9e:c8:01:02:f2:6a:5f:18:6b:65:8f:
95:4f:b3:d0:b6:7d:0b:bf:d8:42:aa:f1:ee:18:b8:
84:da:21:19:20:19:fd:8e:cd:76:07:84:34:a9:61:
20:26:42:a7:fc:2a:3b:fb:9a:43:70:01:e0:78:21:
e0:e3:be:d5:4f:0b:c1:69:ed:31:e5:47:2f:0c:d8:
05:c3:05:cc:96:d8:21:ae:5b:45:cf:8f:68:da:3e:
6d:d3:a8:1d:f4:5b:78:c4:14:f8:c0:a3:3e:d1:60:
af:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A1:8D:09:46:65:24:AD:8C:5D:12:D0:C5:D7:6A:5F:5C:26:41:97
X509v3 Authority Key Identifier:
keyid:34:79:15:38:85:78:E6:1D:88:68:49:A2:1D:70:BA:07:51:49:C1:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHkVOIV45h2IaEmiHXC6B1FJwaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/4ef69e-9978-436d-90c9-82d97c069566/1/NHkVOIV45h2IaEmiHXC6B1FJwaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:c0:3c:19:48:04:0a:62:67:bc:2b:f1:ce:13:85:ee:8a:c2:
e6:ce:67:40:86:af:f7:2f:cd:37:3d:29:45:d2:44:24:f6:df:
5a:1f:1f:23:d9:87:ff:a5:2a:64:f6:83:e7:5d:3b:e0:06:47:
0b:cc:95:96:31:f6:1c:8b:e1:08:b1:56:80:99:5c:25:98:b6:
f3:f9:83:1c:5d:b7:81:77:b1:4d:b0:ae:f4:70:08:cb:e7:7c:
6e:92:37:c5:a6:db:1c:64:ae:97:c6:0c:2d:57:7b:ba:e6:ff:
fd:9f:ec:d8:43:95:01:a9:17:5f:7f:9e:a3:87:7e:fe:2b:c7:
fd:20:1d:39:e8:09:77:c7:f3:3f:c3:e4:ca:bb:a1:bc:ad:6b:
d1:21:53:56:52:46:6a:2d:66:62:d8:d4:62:c1:69:81:81:83:
cc:c6:ff:5b:f8:22:5b:79:00:81:f8:cf:d1:b0:24:fc:ea:4a:
3a:c7:e7:d7:69:94:42:02:75:d7:b4:52:24:5f:a6:37:d1:1b:
82:a5:08:dc:ee:33:99:08:18:36:b6:ca:4e:5c:c6:10:9b:b6:
01:82:55:47:a0:9c:44:09:d8:01:5d:51:18:00:46:af:02:2e:
a6:4f:18:e7:3a:2c:fe:4e:e7:2c:0a:3b:2d:76:f9:d0:6f:9e:
d2:e4:67:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:59:50 2026 by rpki-client