Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json)
Hash identifier: XOdV12k/D2PCkrDXHTIz+SV0KWdMl4plG3XxJWl1PJw=
Subject key identifier: BC:53:E5:25:3C:4C:40:E2:30:62:6D:18:41:8E:84:84:B4:4A:04:CE
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 019E1FB58D9A81775689E8487BAA3CFFBAB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
Manifest number: 0EEC
Signing time: Wed 13 May 2026 05:00:52 +0000
Manifest this update: Wed 13 May 2026 05:00:52 +0000
Manifest next update: Thu 14 May 2026 05:00:52 +0000
Files and hashes: 1: GEk2YBzVV2gm-LB4E-0QcSjlOaw.roa (hash: 6ltbKXfP63Sbrv2a4WDFBu+kJMReN4SiNF3HfveZocU=)
2: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: x0gMcCaoz6M6606uoBcfYXQOafJhNe8sYtbNwBvY2oY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 05:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:8d:9a:81:77:56:89:e8:48:7b:aa:3c:ff:ba:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: May 13 05:00:52 2026 GMT
Not After : May 14 05:00:52 2026 GMT
Subject: CN=bc53e5253c4c40e230626d18418e8484b44a04ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:aa:a8:0f:bb:cb:6c:92:c2:96:15:69:10:8f:
34:82:a8:4b:11:36:bb:d4:0c:57:90:61:97:1c:9c:
11:26:05:3e:88:59:59:49:37:ac:1f:f4:f8:08:1b:
95:8e:e4:6f:5e:bf:02:69:76:25:70:bd:94:0d:e6:
c7:76:52:87:29:a1:af:57:54:33:88:ad:0d:86:4f:
bf:b2:05:37:58:04:a9:ba:45:bc:8f:ad:16:47:a0:
a5:3f:7a:26:2e:3c:b4:36:31:17:e7:24:1d:b8:2e:
1f:ca:b4:45:22:2d:a5:9e:25:c7:5f:07:3a:ac:81:
f0:1f:de:f1:ff:46:68:de:29:a6:36:8e:4b:5f:57:
8b:23:41:5b:d6:7a:4e:6a:f1:f8:33:a1:8d:b7:d8:
a1:fe:12:5c:f2:28:89:0b:ff:0e:90:1c:54:f6:5f:
0a:0c:04:2e:c5:84:38:c2:c0:93:9c:5f:3d:5b:f4:
04:41:d6:09:38:ed:f8:8b:6a:80:e4:bc:89:9a:ae:
ed:ba:a8:d5:9a:c1:5d:2d:89:10:89:ee:89:cd:c8:
50:7c:c3:83:f5:4d:22:d1:01:3c:25:e8:45:a6:92:
cf:55:35:49:c0:e9:b2:48:7d:1f:40:38:28:24:15:
c3:2f:2f:83:a1:28:bd:65:d8:d3:6b:97:52:ca:d2:
19:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:53:E5:25:3C:4C:40:E2:30:62:6D:18:41:8E:84:84:B4:4A:04:CE
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:a9:fb:b5:0d:9e:30:29:c9:f8:87:c4:fc:dd:05:b3:5c:32:
94:17:66:d4:51:8a:79:f6:3e:b3:5f:38:27:47:f8:ba:b8:2c:
f4:89:e6:52:c5:ad:84:eb:42:00:66:92:8d:c5:07:2c:1e:cb:
11:c4:69:d6:c9:d8:3c:55:06:d8:af:7d:cd:df:b8:5e:f2:3e:
db:21:1a:8c:36:08:76:8d:62:fc:9c:f3:31:43:83:23:88:c7:
5c:34:e1:dc:a4:01:00:5d:bc:c2:be:18:32:b0:ad:81:b5:19:
1c:40:57:ac:30:52:a1:05:ea:71:81:09:6d:f5:48:d3:0f:f4:
ea:3c:9b:37:19:e6:8f:27:49:8d:6b:22:2b:48:84:05:49:3f:
1a:07:5d:11:25:78:cf:ec:21:19:9e:4d:75:52:56:39:67:c9:
82:8d:a2:8b:65:e9:62:22:ff:f2:bf:82:a8:dd:2f:a4:1a:94:
1d:01:b0:1d:17:89:b6:5d:b3:56:ef:4d:d0:47:54:39:fe:f9:
64:95:b6:b6:b5:f0:83:68:a8:df:62:a9:41:ae:f3:07:93:60:
94:4a:0b:dc:17:cd:8a:1c:60:b5:46:f4:79:4e:99:6f:5d:76:
2e:3e:e8:2b:04:d0:55:dd:3b:62:cd:6f:42:aa:a1:35:e9:97:
a9:6c:15:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:13:39 2026 by rpki-client