Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
File: NgHDzOanHKshpLut8KuE3ePyurI.mft (raw, json)
Hash identifier: Ni+JG7eQUm/YJzoH5exZOH4Mh65k7ibGtrFMJ4JcNz0=
Subject key identifier: 3F:80:04:71:69:31:FB:0B:A1:D2:C4:88:5E:E4:BC:88:49:81:D1:99
Authority key identifier: 36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
Certificate issuer: /CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Certificate serial: 019D28BB6D2BFB9C950097A46266785838CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
Manifest number: 188A
Signing time: Thu 26 Mar 2026 06:01:04 +0000
Manifest this update: Thu 26 Mar 2026 06:01:04 +0000
Manifest next update: Fri 27 Mar 2026 06:01:04 +0000
Files and hashes: 1: NgHDzOanHKshpLut8KuE3ePyurI.crl (hash: oQsLk6Ex8C08XjZgUdXQipW8FEGbq4NOcmDuS53Bins=)
2: n4exwERefxehosNF3vrmda7cVQg.roa (hash: Yi7HEiIp9Gzv2dhWbsT1GkQVLHDCPjnmDLNUTFuloG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:6d:2b:fb:9c:95:00:97:a4:62:66:78:58:38:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Validity
Not Before: Mar 26 06:01:04 2026 GMT
Not After : Mar 27 06:01:04 2026 GMT
Subject: CN=3f8004716931fb0ba1d2c4885ee4bc884981d199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:38:84:f2:50:94:a8:bc:1b:d8:04:27:06:e0:
b6:a1:82:b2:d0:8e:f6:74:82:17:17:ca:93:3f:32:
d2:5d:33:b0:86:f0:2b:7e:a8:f9:eb:d6:4b:75:c9:
b5:81:0a:1e:d6:69:69:73:a7:95:c6:9b:16:5c:69:
8e:a9:98:be:be:33:5e:4b:2d:5e:41:3a:ea:b6:ac:
81:40:f9:70:94:ea:ab:1e:9d:e9:82:c1:c8:d2:b2:
b9:cc:43:21:36:3a:8b:e7:71:76:5c:d0:44:2c:fe:
52:08:31:01:1d:1d:9a:c4:d8:01:d6:1e:f8:cb:98:
c9:62:12:c1:27:c8:63:10:24:dc:cc:df:41:42:3c:
7b:65:97:cd:37:05:ce:dd:f0:15:da:a4:1b:da:15:
39:df:d8:5b:ba:a5:e7:7e:a8:23:5a:e7:14:7d:2f:
27:67:42:02:cd:e4:8a:02:e0:96:1d:c1:1d:05:20:
f5:0b:1e:9d:38:59:69:f6:51:53:e4:c7:df:c0:4c:
bb:ed:fc:0e:a1:6b:08:9b:ad:8b:ed:50:fc:59:46:
78:b8:aa:53:a5:0a:87:8e:5c:77:27:89:c8:2d:5a:
c1:cd:c9:34:83:e2:8f:c2:5d:b5:65:bd:01:3a:bf:
78:af:a1:0b:b1:76:1d:77:d1:55:78:ec:9b:ea:e1:
94:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:80:04:71:69:31:FB:0B:A1:D2:C4:88:5E:E4:BC:88:49:81:D1:99
X509v3 Authority Key Identifier:
keyid:36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:b2:38:cc:33:17:1e:a2:10:d8:59:2c:8a:fa:55:93:e9:cc:
06:42:56:1c:04:20:cb:d1:0b:9b:37:3f:b2:94:0b:00:1f:4d:
9c:a5:ab:ee:51:25:b7:eb:3c:76:ed:7e:b2:d1:8e:06:1a:68:
19:0b:33:2f:af:5b:c7:04:66:31:60:7a:de:14:81:e1:74:2d:
e6:84:07:68:8b:69:43:50:e9:77:a9:6b:63:60:06:ad:ce:69:
37:95:13:6a:23:1a:8d:a1:7a:18:ed:10:b3:64:0e:48:61:cd:
5d:ec:d2:9e:3f:c2:db:a4:97:1e:3a:2a:c4:bf:66:44:be:88:
64:31:fe:a7:d6:82:17:90:84:f2:5a:e5:8c:cf:43:0e:9d:5b:
44:d4:3c:a5:48:6e:fd:59:1b:fe:70:42:af:11:96:3e:2f:ba:
ce:c0:25:22:e8:b9:3b:48:00:b6:95:da:76:7b:e3:a8:ec:80:
39:53:9d:51:5f:8d:cb:33:92:12:7f:2a:da:60:76:c0:92:ce:
b4:a2:1a:73:08:d0:b6:ee:0e:cd:fc:3b:66:de:82:a6:89:87:
71:f1:58:e0:28:7c:28:a3:b1:e3:a9:7a:1e:5e:bc:94:2d:9d:
74:25:e4:f8:eb:1f:c4:66:ec:07:98:89:1f:48:b6:f4:7b:a4:
9a:ae:2a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:49:18 2026 by rpki-client