Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
File: NiQhSOPmNqkDQ_PpUES439udHNk.mft (raw, json)
Hash identifier: Ijcaw5KIm+p04HmH/+bUmxaVZuvaj53RlZB3rUIr/AI=
Subject key identifier: 87:5D:82:48:92:97:90:D0:22:53:77:D9:F1:CC:9E:B8:C0:E1:6B:E0
Authority key identifier: 36:24:21:48:E3:E6:36:A9:03:43:F3:E9:50:44:B8:DF:DB:9D:1C:D9
Certificate issuer: /CN=36242148e3e636a90343f3e95044b8dfdb9d1cd9
Certificate serial: 019EC2C97E04371D300D35B659CB26ACD8D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NiQhSOPmNqkDQ_PpUES439udHNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
Manifest number: 04B6
Signing time: Sat 13 Jun 2026 21:00:45 +0000
Manifest this update: Sat 13 Jun 2026 21:00:45 +0000
Manifest next update: Sun 14 Jun 2026 21:00:45 +0000
Files and hashes: 1: Dr6F3L4xRt2i8RUfH4s0XX8o0U0.roa (hash: GCUyOT0XAk3FRNMCon8x2Cr9zKCfKsyTPv23kvE35X4=)
2: NiQhSOPmNqkDQ_PpUES439udHNk.crl (hash: vcebDaTDrzloZjN1Ivsn3ZqOds3HksoNRvfGAIW0Ag0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
rsync://rpki.ripe.net/repository/DEFAULT/NiQhSOPmNqkDQ_PpUES439udHNk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:7e:04:37:1d:30:0d:35:b6:59:cb:26:ac:d8:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36242148e3e636a90343f3e95044b8dfdb9d1cd9
Validity
Not Before: Jun 13 21:00:45 2026 GMT
Not After : Jun 14 21:00:45 2026 GMT
Subject: CN=875d8248929790d0225377d9f1cc9eb8c0e16be0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:81:b9:41:57:80:71:0e:09:69:be:71:e2:51:
22:89:6e:14:15:55:e8:e5:12:1b:6e:04:2f:24:2b:
45:ac:68:30:5d:36:f5:3d:25:de:92:1f:7e:29:bb:
7b:3c:a0:77:b3:3e:dc:cd:75:f4:25:03:d4:d6:fe:
f6:b3:b8:25:38:dc:1a:5b:66:4d:52:05:2b:17:3d:
fd:28:ea:25:25:72:90:11:4f:f4:68:f0:f5:80:36:
5d:7e:cb:6f:d2:5a:0a:46:35:3b:c6:a9:dd:33:aa:
1c:a4:e6:28:c7:93:4c:14:01:f4:f1:0b:6b:8a:cb:
17:e5:db:33:44:f8:9e:11:d4:d4:71:7e:13:07:23:
db:d5:eb:cc:65:af:d2:60:34:e7:23:8c:99:ff:bc:
f6:ed:19:df:bb:65:f3:f0:7f:06:a1:14:fb:7b:e4:
5c:a9:61:66:fa:1c:6b:4b:a7:5f:26:d4:67:6c:96:
eb:e5:ef:b9:d2:08:f3:26:50:6e:b0:01:db:07:ef:
ae:ca:06:50:9d:6d:85:26:d0:6d:d6:ae:61:2f:24:
30:d0:e3:66:9c:48:96:f8:33:74:cc:aa:41:97:26:
eb:56:d5:ce:11:13:f7:11:cc:79:e5:ed:13:6c:10:
6b:49:28:e8:9e:6f:b5:64:70:d4:09:ac:e7:25:b2:
9f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:5D:82:48:92:97:90:D0:22:53:77:D9:F1:CC:9E:B8:C0:E1:6B:E0
X509v3 Authority Key Identifier:
keyid:36:24:21:48:E3:E6:36:A9:03:43:F3:E9:50:44:B8:DF:DB:9D:1C:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NiQhSOPmNqkDQ_PpUES439udHNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:85:57:2d:d3:25:c2:96:70:dc:82:79:2e:93:d6:f1:d2:91:
10:3e:3c:a0:b4:32:2b:76:31:3d:69:89:4c:c1:ad:b3:7b:ba:
07:fc:16:e0:c8:09:0a:25:18:b0:33:34:99:c1:2a:90:8c:1f:
aa:ac:1c:66:5d:e8:d6:04:4c:c9:fa:50:54:4b:3e:3d:c5:99:
39:b8:4f:c1:72:1b:44:e6:6c:66:df:cc:c8:7f:5f:1c:71:da:
33:f7:2b:9e:74:5e:f2:01:d7:f0:93:ed:9f:ef:47:d3:ad:98:
79:38:f7:3c:a4:c3:c4:8c:87:fb:34:4f:d2:09:8d:56:ef:90:
35:16:27:52:5e:3f:93:8b:03:2e:b9:97:81:a1:bc:1c:72:20:
39:86:f7:b1:d9:a1:8f:d8:56:71:4c:32:5f:85:01:53:ec:a5:
10:ba:bd:02:f2:24:46:8b:61:42:10:f0:97:16:10:fc:01:89:
07:66:9f:d4:c0:c3:68:c3:49:16:26:aa:ac:0d:e9:61:b5:4c:
94:ff:63:a0:2d:d6:16:73:13:f5:99:a8:38:7d:b6:ff:93:d6:
34:13:d4:b0:bc:3f:3c:c8:f5:7d:7a:c8:4d:5c:e4:62:8b:3c:
07:5b:8a:7a:5b:85:34:c0:b7:7f:18:90:e5:a5:81:09:3d:8b:
83:68:2f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:35:10 2026 by rpki-client