Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
File: NB--B1HiEYiTdNFdYxLCJPaV-qI.mft (raw, json)
Hash identifier: iUQQLQLYB5a4Ba/gO+EE84zAil9ENuWr8RRz03Dmb5M=
Subject key identifier: EB:41:95:02:45:ED:31:B9:D1:74:6E:67:71:94:09:D8:67:CA:A1:F9
Authority key identifier: 34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
Certificate issuer: /CN=341fbe0751e211889374d15d6312c224f695faa2
Certificate serial: 019CAA8F69B04828E48F7D4C738BD9440EA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
Manifest number: 116D
Signing time: Sun 01 Mar 2026 18:00:51 +0000
Manifest this update: Sun 01 Mar 2026 18:00:51 +0000
Manifest next update: Mon 02 Mar 2026 18:00:51 +0000
Files and hashes: 1: 6y5IU1Buu_iZrY4xAhwbUK1R0eM.roa (hash: HhCLXrLcGbigNeVXdGcxPmCrboPpVhlDFvIFgHb0IEM=)
2: NB--B1HiEYiTdNFdYxLCJPaV-qI.crl (hash: cO0jcKMjdbVz2owPgk0Q104J/kHv96TbogyYXNaeOqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:69:b0:48:28:e4:8f:7d:4c:73:8b:d9:44:0e:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=341fbe0751e211889374d15d6312c224f695faa2
Validity
Not Before: Mar 1 18:00:51 2026 GMT
Not After : Mar 2 18:00:51 2026 GMT
Subject: CN=eb41950245ed31b9d1746e67719409d867caa1f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:99:76:f2:19:2f:67:b7:25:4e:d3:18:53:16:
b1:a4:33:ab:4d:68:1e:37:9f:f2:47:d4:a9:f4:ff:
82:29:a3:39:19:ad:d1:42:14:9f:63:60:6c:c1:e3:
9f:57:74:ac:16:7e:32:6d:8d:9c:21:a4:5b:2d:0b:
14:ff:b7:d6:35:22:b2:27:43:6e:b2:10:ed:a5:9b:
3b:95:01:3c:66:48:9b:8c:dd:3d:b7:db:a4:8c:95:
89:0e:0a:84:b6:86:1f:27:90:6e:ad:38:35:47:b9:
f1:79:6f:42:c2:16:c1:de:01:d5:77:49:ca:8d:d9:
37:25:15:b8:ba:1a:b8:56:2f:68:77:13:ec:f8:f6:
d5:bf:7f:0e:5d:5b:59:12:2c:9d:a2:72:26:94:e2:
8e:da:e3:df:53:45:58:cf:d7:e3:0d:ec:14:98:b6:
1e:dc:98:aa:9f:fd:07:1c:8b:79:27:a9:da:28:d6:
5b:15:b1:9b:1d:31:25:53:59:c3:51:7a:a7:5d:00:
10:d6:ed:1a:a4:d8:3a:e5:fb:4e:5f:49:36:99:37:
80:fc:18:3a:0f:71:5d:ac:4a:2b:c3:1b:a3:9c:ef:
d5:81:13:69:c3:08:91:91:63:15:83:49:c9:5b:02:
f0:6d:03:95:3d:c5:ec:c3:73:a1:52:ce:dd:db:81:
5f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:41:95:02:45:ED:31:B9:D1:74:6E:67:71:94:09:D8:67:CA:A1:F9
X509v3 Authority Key Identifier:
keyid:34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:85:ee:2e:c4:40:cb:d5:32:0a:d7:cd:f3:79:46:e2:a8:42:
3d:b0:5c:8e:85:24:10:86:fe:d0:76:38:58:3a:d6:f1:ef:ae:
d2:0c:00:22:2d:76:ad:29:9d:b0:30:cc:30:03:98:13:88:d1:
08:05:80:91:20:ef:f8:d8:69:f7:aa:c4:b6:07:eb:62:b2:47:
93:25:f2:e1:76:1c:f4:cf:f1:28:2f:52:4c:da:cb:ff:ff:d8:
0e:c6:06:0d:3e:cb:3c:19:9b:6e:a6:81:c3:39:9d:2b:25:a5:
df:f1:f4:6d:41:3c:02:6c:f3:97:60:38:db:01:f5:96:a5:66:
b8:3f:07:ea:a0:82:72:76:25:81:e7:6d:ce:97:61:73:4a:7d:
41:45:db:9f:ee:94:41:e7:f1:9a:8d:fe:1c:83:3e:e9:87:a0:
0c:7b:86:d3:44:4c:bd:26:c6:b2:12:59:08:03:00:13:92:27:
60:3f:3b:36:c8:5e:55:e7:e6:65:a0:4d:58:68:9f:f1:87:02:
fe:73:ea:57:c3:63:e0:23:3a:b8:7e:9b:b0:9d:12:6b:ee:23:
c2:17:09:ef:83:80:f7:60:0a:b6:88:34:f0:79:3e:0b:ca:01:
e2:72:0b:a9:8f:fb:b7:7d:2d:d5:01:44:58:9a:1f:5b:3c:17:
3b:b7:21:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:49:47 2026 by rpki-client