Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
File: NB--B1HiEYiTdNFdYxLCJPaV-qI.mft (raw, json)
Hash identifier: alS6h1m3OUhOI6RtiNg7m6GFDN4oN0gep/gCP8ar8nc=
Subject key identifier: CE:C9:0E:86:67:D6:7B:62:50:9C:57:02:09:E6:44:50:55:8D:7E:0E
Authority key identifier: 34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
Certificate issuer: /CN=341fbe0751e211889374d15d6312c224f695faa2
Certificate serial: 019D981864A0C3538BE261DEE3C081710487
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
Manifest number: 11E8
Signing time: Thu 16 Apr 2026 21:00:28 +0000
Manifest this update: Thu 16 Apr 2026 21:00:28 +0000
Manifest next update: Fri 17 Apr 2026 21:00:28 +0000
Files and hashes: 1: 6y5IU1Buu_iZrY4xAhwbUK1R0eM.roa (hash: HhCLXrLcGbigNeVXdGcxPmCrboPpVhlDFvIFgHb0IEM=)
2: NB--B1HiEYiTdNFdYxLCJPaV-qI.crl (hash: t6cnvWpC8annrb7bbIEcDlHU7qQd3a0/u1203iJzydg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:64:a0:c3:53:8b:e2:61:de:e3:c0:81:71:04:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=341fbe0751e211889374d15d6312c224f695faa2
Validity
Not Before: Apr 16 21:00:28 2026 GMT
Not After : Apr 17 21:00:28 2026 GMT
Subject: CN=cec90e8667d67b62509c570209e64450558d7e0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:06:03:ba:4c:b8:18:98:50:ac:c9:9f:72:03:
c2:c8:94:15:4d:96:82:fc:37:cb:64:33:10:2f:b7:
76:02:4c:f1:94:ef:0a:06:d6:99:c0:08:ff:91:7e:
80:95:a3:fa:e1:79:7f:40:3b:65:20:59:d9:0b:a1:
f5:be:cf:20:2c:2b:f1:47:c9:a4:b3:2d:8e:76:e4:
b0:25:13:07:34:50:3a:c7:7e:6b:bf:00:70:73:20:
13:94:1d:cc:b5:d8:9e:90:62:66:c4:a1:89:79:86:
6e:33:09:fa:40:15:1c:ca:50:6e:3d:67:18:fc:67:
90:4e:08:91:d4:1f:b1:b5:db:91:b0:03:fb:dc:30:
6c:50:56:48:71:0f:ff:9e:22:6b:d5:65:23:5d:e8:
9b:05:7c:12:f8:b8:62:ca:91:d9:07:5e:66:a0:d8:
5f:65:28:d7:19:50:3d:89:79:3b:6a:e6:39:40:ec:
d6:bc:f7:9b:e7:bc:01:c0:7f:1e:e5:20:fb:f7:c5:
77:55:fd:c2:22:ff:00:4d:67:01:67:9f:a6:4c:cc:
d2:97:a9:57:e3:e4:c3:3d:3a:cb:9e:83:bb:b5:42:
fd:aa:30:58:51:11:7f:5a:9f:5a:87:aa:98:45:f6:
a7:ed:54:4b:dd:77:b4:d5:0e:af:29:19:ce:19:1d:
6f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C9:0E:86:67:D6:7B:62:50:9C:57:02:09:E6:44:50:55:8D:7E:0E
X509v3 Authority Key Identifier:
keyid:34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:77:48:46:f4:68:2d:41:f6:db:7d:41:7f:1c:b8:a0:b2:cb:
47:9d:49:13:6d:b2:c8:8e:38:df:a8:be:5a:13:a6:8c:75:12:
7c:1c:f4:85:fd:77:90:b4:f4:da:6c:ed:4c:25:78:26:50:75:
dd:ee:7d:e1:ad:00:6d:f0:8a:19:b4:f0:ee:05:e6:6f:70:2f:
7b:ab:a2:01:cf:c7:eb:0f:ff:13:ae:cd:f8:e2:91:c2:72:23:
f1:c1:41:fe:d9:7b:60:5c:56:65:4a:f0:b1:37:d6:ea:bd:dd:
c1:b6:6d:57:56:91:7b:66:a3:c6:47:84:00:45:39:3e:93:3e:
bb:9b:8a:5d:3c:07:b1:c5:ad:11:2b:38:37:11:2b:2a:2b:5b:
83:a9:0c:19:de:2d:e8:15:f5:54:db:d2:00:d7:66:15:b9:a9:
42:c6:9e:24:dd:4a:79:c0:c4:6f:a7:7b:92:45:06:0f:4b:a7:
d2:27:7e:77:1b:e5:12:f0:32:7c:82:a1:88:dd:74:b1:22:fe:
50:83:6d:2b:93:bc:6e:12:a5:67:bb:0b:be:ec:cb:7b:c2:c4:
d6:82:6d:99:e7:31:29:db:ed:5c:80:52:5c:b8:f7:d2:fa:30:
1f:2a:04:2c:21:bd:4c:52:be:1f:13:de:d9:a5:9e:ad:17:72:
a9:ae:e7:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YGGSgw1OL4mHe48CBcQSHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0MWZiZTA3NTFlMjExODg5Mzc0ZDE1ZDYzMTJjMjI0ZjY5
NWZhYTIwHhcNMjYwNDE2MjEwMDI4WhcNMjYwNDE3MjEwMDI4WjAzMTEwLwYDVQQD
EyhjZWM5MGU4NjY3ZDY3YjYyNTA5YzU3MDIwOWU2NDQ1MDU1OGQ3ZTBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwYDuky4GJhQrMmfcgPCyJQVTZaC
/DfLZDMQL7d2AkzxlO8KBtaZwAj/kX6AlaP64Xl/QDtlIFnZC6H1vs8gLCvxR8mk
sy2OduSwJRMHNFA6x35rvwBwcyATlB3MtdiekGJmxKGJeYZuMwn6QBUcylBuPWcY
/GeQTgiR1B+xtduRsAP73DBsUFZIcQ//niJr1WUjXeibBXwS+LhiypHZB15moNhf
ZSjXGVA9iXk7auY5QOzWvPeb57wBwH8e5SD798V3Vf3CIv8ATWcBZ5+mTMzSl6lX
4+TDPTrLnoO7tUL9qjBYURF/Wp9ah6qYRfan7VRL3Xe01Q6vKRnOGR1vUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM7JDoZn1ntiUJxXAgnmRFBVjX4OMB8GA1UdIwQY
MBaAFDQfvgdR4hGIk3TRXWMSwiT2lfqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkItLUIxSGlFWWlUZE5GZFl4TENKUGFWLXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8wMTRhNjMtY2ExOC00MWRmLTkxZTkt
YzI4ZWU4NjlmYWEwLzEvTkItLUIxSGlFWWlUZE5GZFl4TENKUGFWLXFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi8wMTRhNjMtY2ExOC00MWRmLTkxZTktYzI4ZWU4NjlmYWEw
LzEvTkItLUIxSGlFWWlUZE5GZFl4TENKUGFWLXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVXdIRvRo
LUH2231Bfxy4oLLLR51JE22yyI4436i+WhOmjHUSfBz0hf13kLT02mztTCV4JlB1
3e594a0AbfCKGbTw7gXmb3Ave6uiAc/H6w//E67N+OKRwnIj8cFB/tl7YFxWZUrw
sTfW6r3dwbZtV1aRe2ajxkeEAEU5PpM+u5uKXTwHscWtESs4NxErKitbg6kMGd4t
6BX1VNvSANdmFbmpQsaeJN1KecDEb6d7kkUGD0un0id+dxvlEvAyfIKhiN10sSL+
UINtK5O8bhKlZ7sLvuzLe8LE1oJtmecxKdvtXIBSXLj30vowHyoELCG9TFK+HxPe
2aWerRdyqa7n2A==
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:34:02 2026 by rpki-client