Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
File: NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft (raw, json)
Hash identifier: KrTanfeAcMEHORhmS0vt+nUh/ksZqXWrG1uao9+PbZQ=
Subject key identifier: CA:48:98:23:5F:70:9E:95:B0:11:29:9D:9C:8D:DA:AD:DA:6B:F3:4B
Authority key identifier: 34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76
Certificate issuer: /CN=34803a2cf290b0bdc69addc003d564a234aa4f76
Certificate serial: 019CAA21A865D43CB1A4D7C0ED2F3A4F34B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
Manifest number: 12DB
Signing time: Sun 01 Mar 2026 16:00:58 +0000
Manifest this update: Sun 01 Mar 2026 16:00:58 +0000
Manifest next update: Mon 02 Mar 2026 16:00:58 +0000
Files and hashes: 1: 95fE5XU1a1pGoSxnu5vxMKDbXJg.roa (hash: 4/Ix+l1myZu6RT/8dZ3jkzpVwV0AaDZm+INviGp4TeQ=)
2: NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl (hash: lvbR1aWA87fPyfb5cVxdT8MTn2tOzFS5VlHTtlagSnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:a8:65:d4:3c:b1:a4:d7:c0:ed:2f:3a:4f:34:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34803a2cf290b0bdc69addc003d564a234aa4f76
Validity
Not Before: Mar 1 16:00:58 2026 GMT
Not After : Mar 2 16:00:58 2026 GMT
Subject: CN=ca4898235f709e95b011299d9c8ddaadda6bf34b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:63:55:4d:ab:03:f6:16:b0:0e:a9:63:b0:db:
f4:61:96:1e:f6:41:8f:ed:23:e8:e1:e1:ec:5d:77:
a2:43:7b:25:5f:95:f6:4e:72:ca:cb:7f:ac:16:00:
32:09:12:b1:90:5f:15:53:20:a1:44:d7:5a:14:a0:
6c:fd:46:f9:f1:1e:a0:be:16:ce:f8:43:15:a0:a1:
94:44:07:3a:04:aa:9e:f4:45:96:3e:eb:26:a2:c7:
8d:0a:ba:b1:97:6c:10:f6:20:82:58:18:fd:e6:da:
ad:9e:3b:fe:fa:1b:7d:fa:5b:d4:af:24:c0:76:90:
5e:ff:ac:7c:a7:78:38:e8:6e:27:60:78:ce:07:cf:
f5:44:2f:03:b8:ea:6a:57:4d:f6:f4:3a:db:23:26:
23:15:51:6b:13:84:1e:e8:79:89:5b:7f:a2:b1:5f:
21:cb:bf:83:8d:f3:ee:49:cd:fc:bf:76:43:b4:96:
4e:50:86:67:8a:70:42:ec:e5:d6:b9:21:d7:de:b3:
38:8a:82:19:a8:0e:8a:3d:e6:26:83:b2:e6:7b:31:
0d:47:a7:1a:38:7f:73:f7:38:26:a9:ce:be:d4:dd:
93:8e:fe:68:8d:c4:6f:ab:f0:ab:28:95:f7:4a:ab:
76:da:01:18:c6:93:26:72:f3:21:a2:12:d1:fa:e3:
a7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:48:98:23:5F:70:9E:95:B0:11:29:9D:9C:8D:DA:AD:DA:6B:F3:4B
X509v3 Authority Key Identifier:
keyid:34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:08:9a:d3:34:c9:38:fc:fe:1a:18:de:b4:64:ba:11:ce:bf:
67:65:9c:25:e8:59:9d:27:b4:79:f3:d2:39:6c:69:36:16:10:
25:c4:f2:f6:6a:9c:dc:12:7a:9e:ef:69:fc:1f:54:f3:5f:b1:
38:25:33:03:ca:7b:0d:43:eb:01:85:22:2a:ec:f8:e1:dc:9a:
df:cc:d1:0d:1b:41:9c:f8:e0:a5:89:ec:b0:4b:5c:b8:17:1c:
25:43:d5:e0:e0:cc:e4:eb:74:30:00:a6:d4:e2:eb:a2:19:79:
fe:d2:31:e3:cc:a8:4c:87:8b:fa:e0:4f:7d:2b:eb:49:c5:11:
6e:ea:af:c8:4c:16:5a:c7:b2:c8:fd:2f:81:b0:77:19:36:ae:
13:91:65:68:a1:01:54:1a:a6:2f:d5:ac:0b:04:23:07:6e:bd:
e6:3e:95:e7:6e:27:cf:87:f3:d0:c6:75:1e:86:a0:fd:6e:6d:
67:36:41:7d:d6:f9:d5:34:1d:a9:84:5f:83:a5:17:1b:40:d8:
22:7d:c6:39:1f:99:69:22:ba:48:4b:3c:18:4f:9c:a3:11:94:
19:a8:21:75:7b:b7:36:86:1e:51:30:67:62:3c:0e:d7:f8:a7:
92:e5:1e:6e:d4:02:30:3c:46:de:3f:03:75:c8:ec:8d:e5:3d:
a0:d6:4c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:26:36 2026 by rpki-client