Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json)
Hash identifier: nRviNNuTgL5BkXXPe7+52hpbGqyUQeNp8pIKn/AgRBU=
Subject key identifier: AF:55:54:34:45:5F:51:0E:8F:7C:8A:83:5C:1C:94:8F:2F:83:AC:BA
Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba
Certificate serial: 019D9886FAA99FBB1377475F8ABA58F7196A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
Manifest number: 18C0
Signing time: Thu 16 Apr 2026 23:01:15 +0000
Manifest this update: Thu 16 Apr 2026 23:01:15 +0000
Manifest next update: Fri 17 Apr 2026 23:01:15 +0000
Files and hashes: 1: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: gz8sgZzgunu/tyHZVxFECkkOLrCZyxcoaJIrt/Vxk9c=)
2: iZZcAtI6tX7pa2kx02V3Cb8900I.roa (hash: DpMSCiHNTOpSLZuOk1jeRKQ+RT6rgkZxlrfr955DoA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:fa:a9:9f:bb:13:77:47:5f:8a:ba:58:f7:19:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba
Validity
Not Before: Apr 16 23:01:15 2026 GMT
Not After : Apr 17 23:01:15 2026 GMT
Subject: CN=af555434455f510e8f7c8a835c1c948f2f83acba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bc:93:44:8f:68:61:4a:c6:89:25:d8:6f:fb:
c6:af:15:b4:9f:bc:37:7c:e0:08:ed:b6:04:66:c6:
cb:6d:74:dd:56:3f:c5:b6:3b:69:83:1d:03:b0:ce:
11:a5:9f:f3:f5:42:54:90:0b:ae:fe:ad:0e:88:56:
f7:b3:4f:4f:72:1b:0a:f1:4f:49:f9:1d:ab:d5:45:
25:bb:03:c0:42:ba:ba:d8:6d:21:a5:d4:5f:5a:6f:
ca:01:5d:af:97:02:70:58:39:10:64:47:d2:22:bb:
2b:a7:1c:2b:d7:40:7a:3b:49:5b:f8:cf:28:4b:19:
a2:36:72:eb:c0:ef:ea:ef:5e:a5:14:a6:9e:95:6f:
0e:79:11:63:86:3d:15:39:84:8a:f2:4a:59:a0:60:
64:80:f5:15:cd:8b:19:de:ef:31:17:a5:32:de:f3:
24:59:7d:a2:bd:5d:c8:30:9d:6c:17:57:11:02:6d:
4f:e3:06:11:64:fa:71:5f:45:11:e4:73:b8:ff:f3:
cd:68:56:9b:05:b7:83:75:82:99:b4:16:4c:96:a2:
ce:b1:d8:c6:5b:55:8f:fa:15:51:03:b1:e2:3d:49:
0b:36:a1:63:44:e6:99:02:b0:a7:be:38:fe:1c:eb:
27:98:fc:dc:91:95:1e:5c:5e:3b:fd:12:c0:ca:28:
c4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:55:54:34:45:5F:51:0E:8F:7C:8A:83:5C:1C:94:8F:2F:83:AC:BA
X509v3 Authority Key Identifier:
keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:81:ae:0b:d7:a9:3e:0c:de:92:f2:58:99:d7:c4:59:c5:b3:
d7:0c:9c:b3:f2:5f:e2:f2:8e:f7:ff:e0:4b:32:f3:10:98:62:
15:c3:71:07:ff:1d:ff:50:87:9a:34:ee:9b:d0:06:35:8e:76:
5c:c6:67:a2:f3:92:43:c1:69:7c:71:bb:1e:eb:fc:dd:d3:e5:
3e:00:c1:aa:69:fe:e9:b2:06:4e:27:07:3d:bf:f6:ff:8f:b3:
79:c2:0b:9f:dd:cc:07:57:5c:d3:d8:43:89:bc:e3:71:08:08:
5b:1e:69:90:3b:56:3d:97:15:1e:53:95:c9:e3:27:90:58:66:
9d:7d:23:00:2d:78:23:7d:ab:78:e6:76:f8:b4:a7:1c:21:40:
b6:da:b2:05:da:79:e8:b2:b8:4d:5f:92:c0:3a:bf:59:a2:92:
5c:8b:47:b7:41:37:c3:6a:7d:76:46:da:e4:c7:2d:e7:c0:19:
c6:34:ca:29:ef:a3:b4:0d:ec:fd:6d:c6:dc:70:f8:50:cc:64:
4b:af:f7:c6:21:40:59:9a:b3:08:3c:a7:09:52:df:13:1a:3c:
cc:8a:4d:05:e4:3a:e2:40:52:4d:9d:63:95:07:56:58:69:3f:
39:1c:8c:42:d3:7b:58:52:ef:ad:ae:07:35:d9:34:23:7d:50:
18:74:c1:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Yhvqpn7sTd0dfirpY9xlqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ODU2NjA2MWUzNjhjYWZmMTg4MWJlMmJhYzY3MzdkZmQz
YzFkYmEwHhcNMjYwNDE2MjMwMTE1WhcNMjYwNDE3MjMwMTE1WjAzMTEwLwYDVQQD
EyhhZjU1NTQzNDQ1NWY1MTBlOGY3YzhhODM1YzFjOTQ4ZjJmODNhY2JhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyryTRI9oYUrGiSXYb/vGrxW0n7w3
fOAI7bYEZsbLbXTdVj/Ftjtpgx0DsM4RpZ/z9UJUkAuu/q0OiFb3s09PchsK8U9J
+R2r1UUluwPAQrq62G0hpdRfWm/KAV2vlwJwWDkQZEfSIrsrpxwr10B6O0lb+M8o
SxmiNnLrwO/q716lFKaelW8OeRFjhj0VOYSK8kpZoGBkgPUVzYsZ3u8xF6Uy3vMk
WX2ivV3IMJ1sF1cRAm1P4wYRZPpxX0UR5HO4//PNaFabBbeDdYKZtBZMlqLOsdjG
W1WP+hVRA7HiPUkLNqFjROaZArCnvjj+HOsnmPzckZUeXF47/RLAyijEPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK9VVDRFX1EOj3yKg1wclI8vg6y6MB8GA1UdIwQY
MBaAFDSFZgYeNoyv8Ygb4rrGc339PB26MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUt
MDYyNzBlYTgyMTU0LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUtMDYyNzBlYTgyMTU0
LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqIGuC9ep
PgzekvJYmdfEWcWz1wycs/Jf4vKO9//gSzLzEJhiFcNxB/8d/1CHmjTum9AGNY52
XMZnovOSQ8FpfHG7Huv83dPlPgDBqmn+6bIGTicHPb/2/4+zecILn93MB1dc09hD
ibzjcQgIWx5pkDtWPZcVHlOVyeMnkFhmnX0jAC14I32reOZ2+LSnHCFAttqyBdp5
6LK4TV+SwDq/WaKSXItHt0E3w2p9dkba5Mct58AZxjTKKe+jtA3s/W3G3HD4UMxk
S6/3xiFAWZqzCDynCVLfExo8zIpNBeQ64kBSTZ1jlQdWWGk/ORyMQtN7WFLvra4H
Ndk0I31QGHTBOQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:49:51 2026 by rpki-client