Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
File: NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft (raw, json)
Hash identifier: kv8mFGjO7UeI1ZLV6P57YxxUM0U5SJ4A95Da/YFsXiM=
Subject key identifier: 0C:B8:7E:66:41:04:83:E5:33:3B:B7:89:56:01:40:BA:C7:5A:C0:42
Authority key identifier: 34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76
Certificate issuer: /CN=34803a2cf290b0bdc69addc003d564a234aa4f76
Certificate serial: 019D97AA9C8A44049ADA9CE8B78529BB5AEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
Manifest number: 1356
Signing time: Thu 16 Apr 2026 19:00:33 +0000
Manifest this update: Thu 16 Apr 2026 19:00:33 +0000
Manifest next update: Fri 17 Apr 2026 19:00:33 +0000
Files and hashes: 1: 95fE5XU1a1pGoSxnu5vxMKDbXJg.roa (hash: 4/Ix+l1myZu6RT/8dZ3jkzpVwV0AaDZm+INviGp4TeQ=)
2: NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl (hash: S1ilrQPAArc+mj4QxUlrtIrE5lDfvTLllphveW04A+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 19:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:aa:9c:8a:44:04:9a:da:9c:e8:b7:85:29:bb:5a:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34803a2cf290b0bdc69addc003d564a234aa4f76
Validity
Not Before: Apr 16 19:00:33 2026 GMT
Not After : Apr 17 19:00:33 2026 GMT
Subject: CN=0cb87e66410483e5333bb789560140bac75ac042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:73:68:e8:7b:18:b6:57:38:c4:8e:30:71:5e:
b2:44:25:78:e9:76:91:8f:fe:a8:d6:fa:e5:ca:84:
a2:73:ae:6d:26:22:47:3d:a8:85:82:03:02:97:d0:
0e:b3:07:6f:b8:b6:39:ca:71:0c:51:b9:8a:3b:d5:
81:28:ec:60:2f:eb:2e:fe:47:14:b9:21:fd:71:00:
16:f2:41:07:4c:a6:76:c0:fd:48:f9:73:c8:9d:cd:
60:af:11:0b:0c:a2:ae:ca:05:38:e3:b3:4a:a9:62:
3b:72:f4:27:42:36:25:26:65:de:bb:0a:65:62:a6:
7b:cc:72:72:88:4b:da:43:71:b3:e2:27:e2:4c:a0:
e5:f8:e8:e4:b3:ff:40:19:5b:86:86:4d:a8:26:4c:
99:c9:a5:8c:08:d3:02:59:69:24:98:b4:f5:0c:79:
95:4e:3e:3e:80:8c:a8:1f:a1:30:9a:f9:88:e3:db:
e1:87:9d:56:72:c4:30:a4:c1:c2:01:97:55:2e:fb:
a4:44:54:0a:d8:39:8b:f7:7c:47:fc:28:b2:bb:61:
a9:dc:0f:4a:7f:33:93:ba:98:04:d2:ac:1d:ec:2b:
af:c8:9e:44:5d:a8:f2:f2:d9:67:9a:75:fe:6a:c1:
5b:2f:72:f0:51:a7:9f:99:07:9d:88:b6:71:f1:8e:
88:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B8:7E:66:41:04:83:E5:33:3B:B7:89:56:01:40:BA:C7:5A:C0:42
X509v3 Authority Key Identifier:
keyid:34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:6f:38:84:19:e7:5c:20:17:de:32:26:a9:ac:c2:db:e7:53:
86:52:d2:c3:1e:07:01:70:cd:4d:20:17:ef:9e:eb:76:a6:d7:
81:2d:d9:32:04:8b:64:4a:6b:ff:f0:55:89:1c:fa:70:22:c8:
9c:93:22:24:21:7e:a0:24:70:32:09:b0:72:1e:e6:ac:d2:7a:
48:ef:4e:8f:34:7b:bb:8d:17:05:7f:2a:75:db:4a:66:67:7a:
f3:43:7a:28:ee:b7:35:3b:98:5f:63:9d:47:dd:1c:5c:51:b5:
b5:ab:b7:a3:9d:20:aa:42:f6:1e:75:e5:9f:34:d0:5e:fd:64:
c4:0a:b7:28:08:cc:62:2e:a0:7c:42:09:4c:f0:42:0e:2e:71:
5f:20:d2:8a:a1:2b:03:cc:cf:f4:e9:b1:c0:14:77:11:ed:b4:
c4:5b:cb:26:e6:cc:7f:fc:3f:92:6f:c9:63:f6:d8:e0:59:37:
78:9a:8c:1b:9e:ff:7d:97:99:4d:45:9b:5b:5e:24:48:f4:e1:
60:b0:46:53:3d:50:f8:2b:38:f5:fe:71:18:9f:56:a8:d0:e0:
9c:7a:19:c8:b8:25:a0:a7:71:cf:78:bd:9f:ae:6d:e8:f0:be:
cf:23:1b:ff:e0:85:49:c1:ec:81:41:ed:8b:39:9a:20:8a:1d:
a6:af:32:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2XqpyKRASa2pzot4Upu1rvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ODAzYTJjZjI5MGIwYmRjNjlhZGRjMDAzZDU2NGEyMzRh
YTRmNzYwHhcNMjYwNDE2MTkwMDMzWhcNMjYwNDE3MTkwMDMzWjAzMTEwLwYDVQQD
EygwY2I4N2U2NjQxMDQ4M2U1MzMzYmI3ODk1NjAxNDBiYWM3NWFjMDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnNo6HsYtlc4xI4wcV6yRCV46XaR
j/6o1vrlyoSic65tJiJHPaiFggMCl9AOswdvuLY5ynEMUbmKO9WBKOxgL+su/kcU
uSH9cQAW8kEHTKZ2wP1I+XPInc1grxELDKKuygU447NKqWI7cvQnQjYlJmXeuwpl
YqZ7zHJyiEvaQ3Gz4ifiTKDl+Ojks/9AGVuGhk2oJkyZyaWMCNMCWWkkmLT1DHmV
Tj4+gIyoH6EwmvmI49vhh51WcsQwpMHCAZdVLvukRFQK2DmL93xH/Ciyu2Gp3A9K
fzOTupgE0qwd7CuvyJ5EXajy8tlnmnX+asFbL3LwUaefmQediLZx8Y6I+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAy4fmZBBIPlMzu3iVYBQLrHWsBCMB8GA1UdIwQY
MBaAFDSAOizykLC9xprdwAPVZKI0qk92MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTklBNkxQS1FzTDNHbXQzQUE5VmtvalNxVDNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9mZTYyMzQtNjQzNy00OTY3LWJhNjMt
ODVjM2ZhNzllYmMxLzEvTklBNkxQS1FzTDNHbXQzQUE5VmtvalNxVDNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9mZTYyMzQtNjQzNy00OTY3LWJhNjMtODVjM2ZhNzllYmMx
LzEvTklBNkxQS1FzTDNHbXQzQUE5VmtvalNxVDNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjm84hBnn
XCAX3jImqazC2+dThlLSwx4HAXDNTSAX757rdqbXgS3ZMgSLZEpr//BViRz6cCLI
nJMiJCF+oCRwMgmwch7mrNJ6SO9OjzR7u40XBX8qddtKZmd680N6KO63NTuYX2Od
R90cXFG1tau3o50gqkL2HnXlnzTQXv1kxAq3KAjMYi6gfEIJTPBCDi5xXyDSiqEr
A8zP9OmxwBR3Ee20xFvLJubMf/w/km/JY/bY4Fk3eJqMG57/fZeZTUWbW14kSPTh
YLBGUz1Q+Cs49f5xGJ9WqNDgnHoZyLgloKdxz3i9n65t6PC+zyMb/+CFScHsgUHt
izmaIIodpq8yzA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 04:51:10 2026 by rpki-client