Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: JCiLRUTFI7t07RPE64dcIvsfH8QxebIT0uD6HsQ5c2M=
Subject key identifier: D4:6E:FE:D0:DA:75:2D:FC:A9:94:E9:71:4E:F7:31:86:D2:00:C1:C8
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 019CAAFD2CF2C221B14096E454CF7A3E8866
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 1845
Signing time: Sun 01 Mar 2026 20:00:44 +0000
Manifest this update: Sun 01 Mar 2026 20:00:44 +0000
Manifest next update: Mon 02 Mar 2026 20:00:44 +0000
Files and hashes: 1: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: ok8XROVGBPYxAeusObMRGMdFAkkpg7ejPJdHkbGYbw0=)
2: iZZcAtI6tX7pa2kx02V3Cb8900I.roa (hash: DpMSCiHNTOpSLZuOk1jeRKQ+RT6rgkZxlrfr955DoA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:2c:f2:c2:21:b1:40:96:e4:54:cf:7a:3e:88:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Mar 1 20:00:44 2026 GMT
Not After : Mar 2 20:00:44 2026 GMT
Subject: CN=d46efed0da752dfca994e9714ef73186d200c1c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:be:cd:ef:51:c0:73:dc:90:77:15:da:ee:63:
c3:32:d6:f6:b9:c5:00:10:93:9c:34:6b:cf:76:85:
7f:22:57:43:7a:6f:34:4e:a5:e8:a5:02:34:f4:0e:
80:86:f4:f7:97:bf:0d:73:cd:46:88:02:d1:f9:19:
78:c8:69:51:d0:a5:2e:0e:93:5e:30:44:eb:84:c0:
88:2e:fe:3a:4c:e7:a5:59:03:97:c3:dd:4b:1c:8e:
51:53:fb:c8:87:80:85:f5:0f:9b:a4:34:99:03:6e:
55:79:93:bc:26:6a:12:55:05:dc:b4:70:d2:64:da:
76:24:5a:8e:8e:33:06:13:41:0f:50:ce:79:d7:5d:
96:89:70:71:30:14:e1:10:87:59:41:7b:82:74:80:
fb:94:d5:47:a8:e3:97:cd:94:09:12:e9:b1:f5:30:
fe:9e:3b:ef:14:80:d7:57:5d:47:dc:a0:21:61:ce:
ae:19:b7:a7:ba:89:a4:94:20:1c:f0:50:4e:f4:75:
8a:54:97:b4:c2:64:c6:89:10:ff:d0:7d:9c:8b:7e:
31:46:19:04:e0:38:3f:35:60:f6:e9:09:bc:d2:cf:
2a:da:f2:88:3e:20:1e:3b:bc:bc:c9:5a:d0:8d:91:
aa:e5:0e:b4:15:39:02:9f:1e:4a:f7:b7:50:ae:b0:
02:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:6E:FE:D0:DA:75:2D:FC:A9:94:E9:71:4E:F7:31:86:D2:00:C1:C8
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:bd:ba:79:dd:bf:98:b9:ad:8d:70:ba:c7:b6:d4:cb:27:e9:
7e:1e:d7:27:87:b1:20:05:86:91:23:63:6f:9c:4b:29:74:50:
2f:45:68:ad:79:eb:4a:f7:9a:1e:85:c9:92:53:c5:d2:ef:89:
d4:b5:81:20:96:cf:c9:c5:92:a2:14:e1:c5:80:a0:d3:ef:8e:
19:af:a6:b0:55:44:6d:a2:67:f4:bd:c3:36:8e:7c:b9:49:cc:
22:d1:20:ab:39:9e:1a:7b:c5:92:a7:32:02:50:88:49:61:9f:
d5:96:bd:9e:08:6f:c2:75:e2:80:68:a9:5b:ef:e7:76:be:40:
bf:c5:de:35:b9:fb:57:c5:86:96:28:41:86:29:b7:55:2f:01:
58:63:ea:7c:08:32:dc:cf:e7:20:9c:64:18:06:97:4b:85:09:
ab:4a:45:35:50:ad:01:f4:1e:f9:aa:05:ee:a2:31:6b:17:87:
52:8e:b5:ba:70:74:2a:61:a5:2d:f7:46:3a:12:2a:cc:10:0b:
33:ff:e5:12:f7:17:2c:fc:cf:5f:92:3b:81:aa:a2:84:b9:08:
b9:74:71:ea:18:af:5b:19:01:1a:bb:e1:10:64:c1:d1:53:88:
62:8e:01:1a:66:d0:76:f3:17:c6:70:3e:80:40:fd:13:a2:a7:
84:62:78:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:22:00 2026 by rpki-client