Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
File: NM-cB0OwPV4EX0bprPToAKnxio4.mft (raw, json)
Hash identifier: Lqd9OzpfYkT3waciPW28K2O2dWZEjUMPLbR79mOzngU=
Subject key identifier: E9:D4:F5:4D:0C:3A:B9:3F:29:73:E7:EC:C8:1A:63:3A:68:A5:1A:FB
Authority key identifier: 34:CF:9C:07:43:B0:3D:5E:04:5F:46:E9:AC:F4:E8:00:A9:F1:8A:8E
Certificate issuer: /CN=34cf9c0743b03d5e045f46e9acf4e800a9f18a8e
Certificate serial: 019D2771D8A50CDA34D663BE62A5D280A123
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NM-cB0OwPV4EX0bprPToAKnxio4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
Manifest number: 0D92
Signing time: Thu 26 Mar 2026 00:01:05 +0000
Manifest this update: Thu 26 Mar 2026 00:01:05 +0000
Manifest next update: Fri 27 Mar 2026 00:01:05 +0000
Files and hashes: 1: NM-cB0OwPV4EX0bprPToAKnxio4.crl (hash: 6tM4nvHkhiRWRJrvoBKbsjtMatxmVJpe3rkhX6p4slQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NM-cB0OwPV4EX0bprPToAKnxio4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:d8:a5:0c:da:34:d6:63:be:62:a5:d2:80:a1:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34cf9c0743b03d5e045f46e9acf4e800a9f18a8e
Validity
Not Before: Mar 26 00:01:05 2026 GMT
Not After : Mar 27 00:01:05 2026 GMT
Subject: CN=e9d4f54d0c3ab93f2973e7ecc81a633a68a51afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:97:95:62:a0:dc:67:68:5b:5a:fc:51:3a:b3:
02:9f:fd:b0:85:c6:28:7b:bf:01:fd:a6:35:c2:96:
7e:0f:e1:7d:3d:5a:eb:80:57:ed:97:33:0c:8a:6b:
aa:68:d4:2f:66:18:fb:b3:c8:c6:d2:e9:e5:20:23:
6d:26:cc:66:48:b2:3c:c9:58:96:69:66:c8:f9:c2:
26:c9:c6:c3:5f:25:88:75:0e:c2:06:8d:97:c9:83:
68:60:53:6b:2f:5f:b7:61:d1:5b:fd:4b:c5:fe:c1:
d2:a8:fd:e7:33:ac:d7:c0:4d:25:c6:15:63:72:ce:
ec:db:0b:4d:78:22:48:da:6f:9a:73:02:e4:d3:bf:
c9:ce:97:5c:5e:4d:b7:31:f3:93:d6:6c:75:10:3a:
21:cb:e2:26:d9:ea:dc:a1:f5:d8:f4:9e:4e:18:e9:
5c:a2:2b:f3:9c:67:21:3d:3c:d6:62:d3:19:45:f8:
f7:84:a0:45:0c:ee:5d:0b:30:2d:98:be:b6:a1:04:
7e:d5:81:72:a7:37:83:70:90:96:cd:7f:09:25:25:
04:6c:d6:63:24:bc:68:c4:d6:68:7b:e1:93:d5:ca:
b5:5b:90:4c:cc:0d:ec:92:99:8e:90:80:ef:39:bf:
a2:d1:cf:e5:49:ab:88:5c:8c:12:33:8f:f0:14:71:
18:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D4:F5:4D:0C:3A:B9:3F:29:73:E7:EC:C8:1A:63:3A:68:A5:1A:FB
X509v3 Authority Key Identifier:
keyid:34:CF:9C:07:43:B0:3D:5E:04:5F:46:E9:AC:F4:E8:00:A9:F1:8A:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NM-cB0OwPV4EX0bprPToAKnxio4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/45e4e0-da19-4cb9-8c8c-ee8035bbb4c1/1/NM-cB0OwPV4EX0bprPToAKnxio4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:88:90:3e:d9:7d:31:b8:e4:c4:99:cc:3d:62:88:3d:22:c2:
6c:2c:50:7a:d6:23:ff:c8:af:52:75:56:c9:75:ec:8b:ad:28:
ee:68:c6:0a:11:05:63:5b:63:2a:a8:f7:7a:dc:37:d8:16:49:
f7:03:ab:68:2a:aa:a5:95:33:e2:6a:a4:1c:de:79:f8:87:66:
bc:72:c4:94:c2:a4:70:d5:c9:2c:2e:2b:23:e2:6b:87:e3:b0:
3a:b9:5e:a0:08:0b:87:74:ff:dd:b8:9e:bd:ac:24:3c:6c:98:
a6:ab:8e:6c:28:2d:aa:56:c6:ba:83:e8:52:b5:51:86:ed:18:
1d:14:6e:78:fb:3f:28:75:56:26:b4:40:ae:31:88:e1:d4:ed:
9e:74:f3:ef:a9:57:2b:27:13:bc:3a:e0:0e:2a:7c:2d:84:f5:
9e:9c:76:27:39:43:ea:c4:7b:b7:3f:fd:79:8a:b6:89:6a:9d:
25:0f:87:89:79:72:93:08:3b:ae:a5:b0:ed:c2:47:ba:01:3c:
0a:34:b9:b5:9e:f7:37:a2:63:89:62:00:c6:3f:26:ee:15:1e:
a6:30:9d:e6:ba:21:17:5f:d2:ff:52:8b:ca:e4:ef:fb:b6:89:
d6:aa:93:72:25:8c:d8:e4:f5:7c:c6:67:11:ec:24:c7:4c:aa:
3b:17:7c:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ncdilDNo01mO+YqXSgKEjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0Y2Y5YzA3NDNiMDNkNWUwNDVmNDZlOWFjZjRlODAwYTlm
MThhOGUwHhcNMjYwMzI2MDAwMTA1WhcNMjYwMzI3MDAwMTA1WjAzMTEwLwYDVQQD
EyhlOWQ0ZjU0ZDBjM2FiOTNmMjk3M2U3ZWNjODFhNjMzYTY4YTUxYWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAopeVYqDcZ2hbWvxROrMCn/2whcYo
e78B/aY1wpZ+D+F9PVrrgFftlzMMimuqaNQvZhj7s8jG0unlICNtJsxmSLI8yViW
aWbI+cImycbDXyWIdQ7CBo2XyYNoYFNrL1+3YdFb/UvF/sHSqP3nM6zXwE0lxhVj
cs7s2wtNeCJI2m+acwLk07/JzpdcXk23MfOT1mx1EDohy+Im2ercofXY9J5OGOlc
oivznGchPTzWYtMZRfj3hKBFDO5dCzAtmL62oQR+1YFypzeDcJCWzX8JJSUEbNZj
JLxoxNZoe+GT1cq1W5BMzA3skpmOkIDvOb+i0c/lSauIXIwSM4/wFHEYKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOnU9U0MOrk/KXPn7MgaYzpopRr7MB8GA1UdIwQY
MBaAFDTPnAdDsD1eBF9G6az06ACp8YqOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTk0tY0IwT3dQVjRFWDBicHJQVG9BS254aW80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80NWU0ZTAtZGExOS00Y2I5LThjOGMt
ZWU4MDM1YmJiNGMxLzEvTk0tY0IwT3dQVjRFWDBicHJQVG9BS254aW80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi80NWU0ZTAtZGExOS00Y2I5LThjOGMtZWU4MDM1YmJiNGMx
LzEvTk0tY0IwT3dQVjRFWDBicHJQVG9BS254aW80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP4iQPtl9
MbjkxJnMPWKIPSLCbCxQetYj/8ivUnVWyXXsi60o7mjGChEFY1tjKqj3etw32BZJ
9wOraCqqpZUz4mqkHN55+IdmvHLElMKkcNXJLC4rI+Jrh+OwOrleoAgLh3T/3bie
vawkPGyYpquObCgtqlbGuoPoUrVRhu0YHRRuePs/KHVWJrRArjGI4dTtnnTz76lX
KycTvDrgDip8LYT1npx2JzlD6sR7tz/9eYq2iWqdJQ+HiXlykwg7rqWw7cJHugE8
CjS5tZ73N6JjiWIAxj8m7hUepjCd5rohF1/S/1KLyuTv+7aJ1qqTciWM2OT1fMZn
Eewkx0yqOxd8/w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:59:41 2026 by rpki-client