Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft
File: NAahLsxTolGnXOe6yqyeQa7otMo.mft (raw, json)
Hash identifier: OmBa6bvWe3hBz1LctGfeFReV0qwhvtSpgy8tod74qIA=
Subject key identifier: B3:BA:0E:AA:68:4D:D3:95:2B:FD:74:B9:3C:DC:E0:53:C8:C9:1D:9E
Authority key identifier: 34:06:A1:2E:CC:53:A2:51:A7:5C:E7:BA:CA:AC:9E:41:AE:E8:B4:CA
Certificate issuer: /CN=3406a12ecc53a251a75ce7bacaac9e41aee8b4ca
Certificate serial: 019D2816AA4E29CD2B5517A8CFF7C6205867
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 03:01:06 +0000
Manifest this update: Thu 26 Mar 2026 03:01:06 +0000
Manifest next update: Fri 27 Mar 2026 03:01:06 +0000
Files and hashes: 1: NAahLsxTolGnXOe6yqyeQa7otMo.crl (hash: F2vSwX64WDaT81Gw4Nx+XXwo3lMBniG9hkkqT+gthAc=)
2: oCkrji-yhOLJX8VHxwbdTNBaxF4.roa (hash: vhMG86jwpjaLSfFs6ZRS9x4Io+mWCNdI1hjeUMa7cfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:aa:4e:29:cd:2b:55:17:a8:cf:f7:c6:20:58:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3406a12ecc53a251a75ce7bacaac9e41aee8b4ca
Validity
Not Before: Mar 26 03:01:06 2026 GMT
Not After : Mar 27 03:01:06 2026 GMT
Subject: CN=b3ba0eaa684dd3952bfd74b93cdce053c8c91d9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e8:86:a9:88:87:61:f0:5f:37:f9:74:be:f4:
ae:0d:cc:8c:86:42:50:d0:07:45:ec:cc:f9:02:c9:
5c:cf:53:b7:57:2d:d7:47:90:99:0a:80:3e:1b:09:
49:26:74:c4:de:e6:09:2c:c8:23:84:10:dd:9b:dd:
06:8e:16:d3:d0:f4:3d:4f:b2:1c:b7:3f:b4:3b:2a:
ff:cc:d8:14:9a:ed:c2:7c:7c:ab:f5:b7:78:4f:f9:
3d:af:e3:2a:ee:0c:f0:4d:e5:b0:8b:5f:35:2c:3e:
78:d1:c5:cb:46:0f:a6:33:c7:b1:70:6d:6b:e5:57:
7b:5e:34:cb:1b:cb:19:32:6c:7d:3a:ff:bd:61:30:
42:26:fa:11:af:c9:88:6f:6c:a6:56:cc:06:81:04:
46:57:24:6f:93:35:f5:d3:77:c5:6a:1f:63:dc:29:
60:00:ca:da:50:93:49:8c:54:2f:67:13:9d:66:24:
fe:2a:13:b7:e4:15:b1:ef:fa:0d:4c:cd:47:58:95:
9f:04:00:9f:b6:60:a6:a0:7b:3a:09:76:85:32:8f:
ab:e2:18:96:5b:af:46:a4:5e:48:d1:c1:d1:78:35:
cc:ff:49:58:b1:55:83:e0:51:ec:bb:ec:30:5f:0b:
8c:85:36:0e:93:fc:88:2c:5a:c1:f8:3e:d0:fe:34:
13:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BA:0E:AA:68:4D:D3:95:2B:FD:74:B9:3C:DC:E0:53:C8:C9:1D:9E
X509v3 Authority Key Identifier:
keyid:34:06:A1:2E:CC:53:A2:51:A7:5C:E7:BA:CA:AC:9E:41:AE:E8:B4:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:f7:15:2d:14:c8:1c:b8:44:32:d7:ec:9b:dc:c9:97:2a:58:
9c:f8:65:a8:dd:6b:f6:49:33:dc:16:55:0a:1a:e0:7b:61:1c:
43:df:41:0c:6b:65:65:93:8f:9a:c3:a4:d9:42:f4:15:01:80:
4d:90:5d:23:4b:7e:26:10:28:95:37:16:91:64:9d:1f:da:8e:
50:52:84:dc:5f:0a:b6:c4:05:06:ce:8c:e1:5b:ce:37:a3:b8:
1c:24:5a:87:c1:64:42:fc:2b:af:4d:62:5c:a6:35:5e:ad:a4:
42:66:dd:54:fd:bf:15:ae:42:af:c3:00:3c:1f:e8:ba:89:d7:
77:6d:a5:52:a5:db:87:bb:e7:6f:38:07:a9:2d:9c:b0:bc:38:
82:12:1f:88:6d:db:a7:e7:15:5b:9b:9a:a1:e8:65:5b:02:f7:
a8:19:a5:f7:f8:32:4c:80:c6:4e:18:64:f5:89:ed:65:72:c2:
59:99:42:95:2b:84:2c:89:bf:8c:25:c1:b2:01:9e:a0:c5:b6:
41:25:07:e5:64:99:54:85:7b:4c:e8:b9:0b:9e:52:a5:04:03:
d7:19:6e:ed:06:21:ee:67:dd:92:ea:9c:67:65:12:7e:df:b1:
6f:f3:e8:cc:a4:0f:55:4c:3f:ee:24:90:ba:70:51:c3:3f:49:
05:b5:0e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:35:07 2026 by rpki-client