Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
File: NiQhSOPmNqkDQ_PpUES439udHNk.mft (raw, json)
Hash identifier: /PWyQtNuzZLd9Nv/WVVClnbXoGPy9sjED0GdtUXzRtg=
Subject key identifier: 49:02:73:94:BB:F8:70:6E:C3:41:15:34:A0:ED:FE:88:32:98:80:08
Authority key identifier: 36:24:21:48:E3:E6:36:A9:03:43:F3:E9:50:44:B8:DF:DB:9D:1C:D9
Certificate issuer: /CN=36242148e3e636a90343f3e95044b8dfdb9d1cd9
Certificate serial: 019D9D3FADA52B1216A1D05E50C8795F3E85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NiQhSOPmNqkDQ_PpUES439udHNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
Manifest number: 041E
Signing time: Fri 17 Apr 2026 21:01:29 +0000
Manifest this update: Fri 17 Apr 2026 21:01:29 +0000
Manifest next update: Sat 18 Apr 2026 21:01:29 +0000
Files and hashes: 1: Dr6F3L4xRt2i8RUfH4s0XX8o0U0.roa (hash: GCUyOT0XAk3FRNMCon8x2Cr9zKCfKsyTPv23kvE35X4=)
2: NiQhSOPmNqkDQ_PpUES439udHNk.crl (hash: zCBFikQNFbApoEcd+PwkBuX1aTQ59IuCwyDbwIhv6w0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
rsync://rpki.ripe.net/repository/DEFAULT/NiQhSOPmNqkDQ_PpUES439udHNk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:3f:ad:a5:2b:12:16:a1:d0:5e:50:c8:79:5f:3e:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36242148e3e636a90343f3e95044b8dfdb9d1cd9
Validity
Not Before: Apr 17 21:01:29 2026 GMT
Not After : Apr 18 21:01:29 2026 GMT
Subject: CN=49027394bbf8706ec3411534a0edfe8832988008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0e:79:4a:d7:14:f0:bc:5f:0c:c9:3d:ee:52:
ab:56:23:6e:f6:7a:87:78:fe:43:bf:85:e3:56:98:
b7:26:c0:47:09:c2:11:66:73:eb:5a:6a:95:36:32:
3d:72:4f:2c:78:13:59:ea:5b:c5:bb:87:ca:e5:e1:
2a:40:a5:51:3f:93:15:4a:5c:c1:9a:c8:76:be:b4:
df:45:79:00:c3:05:37:b6:c6:80:56:e5:7e:30:a6:
41:31:fe:bf:a9:a7:c9:8f:c0:f6:4c:16:5d:4b:0a:
e6:5a:36:ad:eb:41:4d:74:5c:5e:5e:59:f9:dd:b4:
d4:de:8c:7c:ce:d9:8d:93:44:14:43:4f:b2:8e:7c:
6d:ed:68:ce:da:9c:46:57:77:2d:5d:5c:fa:e1:c1:
bc:44:99:fc:fd:ed:51:01:fb:8b:11:a3:3d:07:37:
e1:23:b8:96:59:19:a8:00:fa:86:0e:0b:34:d0:fa:
fd:01:4e:d4:09:6d:46:7d:00:b5:97:f3:3a:3b:ca:
99:8e:62:b9:a9:d6:fb:89:40:21:bb:b8:21:2f:e2:
26:3a:41:7a:40:f3:03:cb:0f:be:d0:ac:0d:41:00:
e2:4a:6f:6b:08:c6:0c:fb:f9:6c:f6:07:86:59:34:
b2:0a:46:13:f1:e8:0b:59:47:e2:05:22:a7:a3:9d:
ef:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:02:73:94:BB:F8:70:6E:C3:41:15:34:A0:ED:FE:88:32:98:80:08
X509v3 Authority Key Identifier:
keyid:36:24:21:48:E3:E6:36:A9:03:43:F3:E9:50:44:B8:DF:DB:9D:1C:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NiQhSOPmNqkDQ_PpUES439udHNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3c3da0-d3f8-4aa2-8334-26d759365402/1/NiQhSOPmNqkDQ_PpUES439udHNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:bd:7d:ae:64:46:df:d2:2e:cf:4e:a5:44:a7:11:3c:32:fd:
8b:4c:a0:7a:ad:da:39:2e:75:08:76:4d:4a:d7:2c:62:fc:d8:
93:a1:12:1e:08:d4:1d:26:bf:aa:ca:00:78:75:87:1d:92:52:
81:6f:54:db:56:7f:ec:db:f0:33:31:88:15:03:a7:22:9b:53:
de:35:aa:0e:c0:0f:8e:de:10:9c:dd:f4:bc:d4:75:9e:48:80:
7d:15:fa:2a:23:91:50:e7:ef:db:87:16:84:b8:1b:f3:62:7a:
db:8e:50:fb:52:ad:e3:60:39:3e:29:4f:4a:53:eb:65:86:85:
92:23:8c:55:38:81:25:f4:24:a0:d3:df:69:92:2f:44:32:a0:
3e:e2:85:ce:bc:5f:bd:17:c5:24:5b:ce:5f:89:92:6d:e6:eb:
90:5a:c3:0f:0a:02:ef:99:f3:4c:19:75:c8:21:4f:c0:7b:51:
76:21:df:39:39:a8:f1:83:97:81:64:04:9a:ee:ed:cd:83:8d:
9b:cb:b8:f0:53:25:9b:35:f4:70:c0:e0:9d:bb:15:46:49:b6:
de:a3:8e:13:a0:f6:f7:bb:35:ce:26:b5:cd:4e:55:ef:80:e1:
6c:46:c6:6f:c1:94:27:34:2d:62:01:45:92:5a:94:32:b9:a1:
aa:b9:ee:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:40:43 2026 by rpki-client