Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.mft
File: Nqm4K9WaymNA9t9U_o0zYAt-keQ.mft (raw, json)
Hash identifier: 0ug6XDpeQjZOwmgN+DfH9TIPLF9JbW/C4vJxVakI5zQ=
Subject key identifier: A6:7C:D6:34:8B:95:20:3D:C9:AB:87:47:8A:B9:CC:5F:2B:F6:74:81
Authority key identifier: 36:A9:B8:2B:D5:9A:CA:63:40:F6:DF:54:FE:8D:33:60:0B:7E:91:E4
Certificate issuer: /CN=36a9b82bd59aca6340f6df54fe8d33600b7e91e4
Certificate serial: 019D2B853B6568860A2BEE309C34E1F4F512
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nqm4K9WaymNA9t9U_o0zYAt-keQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.mft
Manifest number: 01CB
Signing time: Thu 26 Mar 2026 19:00:44 +0000
Manifest this update: Thu 26 Mar 2026 19:00:44 +0000
Manifest next update: Fri 27 Mar 2026 19:00:44 +0000
Files and hashes: 1: Nqm4K9WaymNA9t9U_o0zYAt-keQ.crl (hash: bfZL8BoibVhBZOHdhCJxoFtTvtXX3ZtSxGGQn/pQjNQ=)
2: kGs2CN6_e0xkRivoWWWOkB6ji5k.roa (hash: vKSRNSEdzjM8f691yctADnRRRhHUZVtmMQKdxtUVPWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nqm4K9WaymNA9t9U_o0zYAt-keQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:85:3b:65:68:86:0a:2b:ee:30:9c:34:e1:f4:f5:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36a9b82bd59aca6340f6df54fe8d33600b7e91e4
Validity
Not Before: Mar 26 19:00:44 2026 GMT
Not After : Mar 27 19:00:44 2026 GMT
Subject: CN=a67cd6348b95203dc9ab87478ab9cc5f2bf67481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3e:59:ee:f4:58:2b:a0:87:0f:1c:6c:1e:30:
95:86:e3:a8:e6:02:4f:bd:e0:a4:25:96:c6:3a:ee:
a2:4f:d0:e8:ba:de:2d:c3:df:f3:c7:6c:ef:10:a8:
c3:b1:a1:dc:2f:09:08:de:a4:84:3e:2b:70:45:53:
1f:69:87:89:d3:34:8d:fc:9e:60:3b:90:0c:fc:62:
f7:88:a9:d2:f9:63:e4:e2:7d:ca:c9:d5:ca:25:aa:
36:12:14:b3:f2:8a:70:60:24:de:08:3b:a5:ed:2b:
e1:a7:3f:c6:e8:f0:b1:1e:0b:7d:e8:2b:76:18:88:
de:a1:06:25:b6:51:6b:dc:8d:19:54:36:69:fb:a0:
fe:95:11:73:a2:71:a9:5e:98:81:df:fe:a7:d4:89:
e0:3c:12:2b:24:e0:fe:d8:74:65:83:f9:53:28:e9:
e5:75:80:34:38:d9:53:67:3d:4a:1d:83:02:8d:2b:
5e:03:cd:8c:61:af:80:b5:15:41:0d:e4:87:96:13:
e8:1d:3a:98:67:4d:e9:fb:78:40:5f:00:da:23:65:
7a:c0:ca:6c:cc:93:60:52:8d:5b:75:b8:ec:64:e6:
e8:6c:79:bb:e9:98:fd:f7:11:13:af:6b:76:25:57:
9d:e1:bd:bc:8e:eb:42:fa:81:d6:0e:22:5f:69:d6:
b9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:7C:D6:34:8B:95:20:3D:C9:AB:87:47:8A:B9:CC:5F:2B:F6:74:81
X509v3 Authority Key Identifier:
keyid:36:A9:B8:2B:D5:9A:CA:63:40:F6:DF:54:FE:8D:33:60:0B:7E:91:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nqm4K9WaymNA9t9U_o0zYAt-keQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:0b:3d:df:d2:5e:01:1c:57:bb:0e:7e:14:b8:11:23:42:e5:
6c:cd:f0:64:35:3d:8f:a3:2c:27:37:a7:5b:2f:1f:b9:02:3d:
ce:48:8d:28:1d:70:1e:c9:87:94:bc:e8:79:b0:c0:23:09:c0:
6e:56:bb:85:54:c1:91:02:d2:b5:76:74:d6:0e:9f:2b:34:04:
27:e7:f9:4b:6e:bb:52:70:f7:6a:82:9c:4c:01:8e:5f:e0:f2:
b1:c1:a8:2f:0b:19:39:aa:a2:f3:3f:9e:af:1f:8d:55:3d:7b:
36:da:02:86:29:fe:29:3c:07:f6:29:6e:e8:6b:26:99:18:30:
9b:34:9f:20:1d:49:c5:14:26:0a:c7:ac:fc:ee:58:af:c4:d6:
9e:9c:a3:3c:16:04:2e:59:7d:c6:01:01:03:cf:02:74:73:89:
82:6e:50:9c:d1:c2:a2:00:cd:bd:76:75:a0:9c:22:ef:44:09:
0e:6d:51:a8:9e:fc:cd:d5:0c:f6:03:90:01:06:ba:9f:8d:4c:
6f:a3:5b:b1:e9:48:01:9e:40:79:11:ad:73:b0:1f:5d:07:e5:
ac:33:3a:54:39:e5:59:80:df:a4:ad:c2:af:fe:65:70:a0:a1:
72:34:fa:1d:b4:30:36:91:25:32:6a:7e:b5:bf:f1:5e:01:cd:
91:54:03:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0rhTtlaIYKK+4wnDTh9PUSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YTliODJiZDU5YWNhNjM0MGY2ZGY1NGZlOGQzMzYwMGI3
ZTkxZTQwHhcNMjYwMzI2MTkwMDQ0WhcNMjYwMzI3MTkwMDQ0WjAzMTEwLwYDVQQD
EyhhNjdjZDYzNDhiOTUyMDNkYzlhYjg3NDc4YWI5Y2M1ZjJiZjY3NDgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyj5Z7vRYK6CHDxxsHjCVhuOo5gJP
veCkJZbGOu6iT9Dout4tw9/zx2zvEKjDsaHcLwkI3qSEPitwRVMfaYeJ0zSN/J5g
O5AM/GL3iKnS+WPk4n3KydXKJao2EhSz8opwYCTeCDul7Svhpz/G6PCxHgt96Ct2
GIjeoQYltlFr3I0ZVDZp+6D+lRFzonGpXpiB3/6n1IngPBIrJOD+2HRlg/lTKOnl
dYA0ONlTZz1KHYMCjSteA82MYa+AtRVBDeSHlhPoHTqYZ03p+3hAXwDaI2V6wMps
zJNgUo1bdbjsZObobHm76Zj99xETr2t2JVed4b28jutC+oHWDiJfada5CQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKZ81jSLlSA9yauHR4q5zF8r9nSBMB8GA1UdIwQY
MBaAFDapuCvVmspjQPbfVP6NM2ALfpHkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnFtNEs5V2F5bU5BOXQ5VV9vMHpZQXQta2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC81NmI0YzEtODAxNS00MTg5LWEzZTUt
NWFkMzAyNmQ4ZjI4LzEvTnFtNEs5V2F5bU5BOXQ5VV9vMHpZQXQta2VRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC81NmI0YzEtODAxNS00MTg5LWEzZTUtNWFkMzAyNmQ4ZjI4
LzEvTnFtNEs5V2F5bU5BOXQ5VV9vMHpZQXQta2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArgs939Je
ARxXuw5+FLgRI0LlbM3wZDU9j6MsJzenWy8fuQI9zkiNKB1wHsmHlLzoebDAIwnA
bla7hVTBkQLStXZ01g6fKzQEJ+f5S267UnD3aoKcTAGOX+DyscGoLwsZOaqi8z+e
rx+NVT17NtoChin+KTwH9ilu6GsmmRgwmzSfIB1JxRQmCses/O5Yr8TWnpyjPBYE
Lll9xgEBA88CdHOJgm5QnNHCogDNvXZ1oJwi70QJDm1RqJ78zdUM9gOQAQa6n41M
b6NbselIAZ5AeRGtc7AfXQflrDM6VDnlWYDfpK3Cr/5lcKChcjT6HbQwNpElMmp+
tb/xXgHNkVQDlA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 22:11:30 2026 by rpki-client