Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json)
Hash identifier: fYDcpYNE5NC8IfrEQw/326nOtpKZiOqEC5rCanLNXz0=
Subject key identifier: D7:0C:AB:70:8C:F2:C9:E3:21:1B:DB:41:FC:24:5D:82:B2:E4:DD:5C
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 019D2695F58ECCCFDD464C8F70BD8C766AAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
Manifest number: 0E6B
Signing time: Wed 25 Mar 2026 20:00:54 +0000
Manifest this update: Wed 25 Mar 2026 20:00:54 +0000
Manifest next update: Thu 26 Mar 2026 20:00:54 +0000
Files and hashes: 1: GEk2YBzVV2gm-LB4E-0QcSjlOaw.roa (hash: 6ltbKXfP63Sbrv2a4WDFBu+kJMReN4SiNF3HfveZocU=)
2: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: N6PD5IpK3ytXISvDotiH5+8ULgqLW0S9XIMua+kxaNw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:95:f5:8e:cc:cf:dd:46:4c:8f:70:bd:8c:76:6a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: Mar 25 20:00:54 2026 GMT
Not After : Mar 26 20:00:54 2026 GMT
Subject: CN=d70cab708cf2c9e3211bdb41fc245d82b2e4dd5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:20:8d:db:43:a8:b3:8d:68:fe:62:b9:ec:00:
2d:55:09:47:9c:dd:06:3d:a8:a2:fe:45:bf:fa:79:
90:24:b2:75:87:59:8a:61:73:31:2c:a8:b7:2b:80:
75:07:ae:fc:03:85:10:09:b8:1f:37:45:ef:66:dd:
71:6d:ad:20:77:9c:c6:f7:af:df:f2:d9:2d:99:cf:
80:06:1c:1e:83:2c:82:4e:af:f0:29:44:be:a0:e2:
16:7b:55:90:81:d6:63:dc:4c:df:af:f6:71:b5:05:
96:a5:3d:3f:da:3b:bb:34:90:ff:3c:2e:d9:f6:50:
fa:ab:15:57:6c:8f:d5:7f:77:ac:0e:bc:ba:f0:30:
e5:8f:4a:9b:4d:b2:df:b2:ac:a6:40:4e:ae:68:ab:
22:ad:c6:18:f1:06:9d:61:23:5e:53:0e:8a:e7:b5:
99:59:53:2d:36:c1:1a:e7:ce:12:62:9c:ee:ae:47:
74:45:50:ad:68:46:1a:4f:a9:ae:78:90:dd:fa:02:
4f:a0:e7:17:54:33:f4:ba:30:f4:a2:e5:2d:2a:25:
92:d2:26:ac:66:4d:5f:12:50:bb:f1:40:02:95:c6:
3a:a2:4c:fb:8e:d4:67:e5:b5:8c:ab:1b:f7:fe:9c:
79:86:d9:9e:d6:3b:63:18:65:ab:88:c5:1a:fa:82:
de:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:0C:AB:70:8C:F2:C9:E3:21:1B:DB:41:FC:24:5D:82:B2:E4:DD:5C
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:14:51:b4:d2:65:f2:4b:57:c8:0b:16:9b:c4:91:da:e7:e0:
ab:51:29:90:cd:95:4c:d8:6b:f7:0e:89:96:24:e2:10:a7:27:
3e:aa:43:b6:1f:5d:80:92:76:49:88:b9:66:a3:36:39:99:9d:
a3:b0:a8:4f:52:0d:50:0f:30:8c:e9:d3:b6:c8:24:b5:87:7a:
ef:b5:7a:1f:8b:07:64:c9:a4:96:72:34:ab:ec:92:25:13:2d:
cb:ab:e8:02:24:c0:1d:53:d7:1e:7b:62:e5:99:8e:01:70:c2:
2a:84:8a:f8:58:d3:d3:8c:00:94:a0:61:5a:6e:28:19:fa:fe:
95:37:a1:48:33:96:be:00:df:8a:6d:be:e7:69:f9:82:21:5a:
7d:a6:87:61:df:a2:d1:ce:be:39:44:6c:c3:f6:80:cb:b7:27:
56:4d:10:2d:83:5f:32:e6:27:d1:14:ce:dc:21:b7:d6:92:a8:
e7:56:11:98:bf:fe:65:75:ac:18:76:02:43:3f:b0:8d:ad:67:
6e:d8:d7:ba:3a:9a:26:ce:ad:40:7b:ac:49:81:9c:da:58:f1:
1e:49:f3:9a:05:4c:aa:2d:69:be:45:4e:9b:0d:9f:0d:b3:3f:
68:c0:84:bc:60:b5:f9:b8:56:f6:79:10:c2:a7:75:e2:27:09:
aa:3d:d0:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:10:31 2026 by rpki-client