Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
File: NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft (raw, json)
Hash identifier: JsH1T6o3WX1QgF8KX9W7fA9st3puKrSvi5YSvNmf/Qc=
Subject key identifier: 12:3B:EE:51:C4:B7:28:63:E8:0D:96:6B:73:1F:E9:79:09:1B:57:76
Authority key identifier: 34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
Certificate issuer: /CN=34012343a62f3f09b55cdbc01e75c38212a235df
Certificate serial: 019A71EE741B478F2B45D3069389148E5C33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
Manifest number: 0F24
Signing time: Tue 11 Nov 2025 08:00:43 +0000
Manifest this update: Tue 11 Nov 2025 08:00:43 +0000
Manifest next update: Wed 12 Nov 2025 08:00:43 +0000
Files and hashes: 1: NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl (hash: g61BSpgR/8BRTrm5QCVcGdPBW8RTYIBuA7gnIBdE70c=)
2: hRAHaXw08T46yQXdPdRGo5FEyKc.roa (hash: kanS0GeR3i8daBZU7h/NZ29VRbj73ZfNj0diMdbJ7lg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:74:1b:47:8f:2b:45:d3:06:93:89:14:8e:5c:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34012343a62f3f09b55cdbc01e75c38212a235df
Validity
Not Before: Nov 11 08:00:43 2025 GMT
Not After : Nov 12 08:00:43 2025 GMT
Subject: CN=123bee51c4b72863e80d966b731fe979091b5776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2b:dd:25:2d:0b:f5:d6:91:9c:69:52:a2:10:
48:5e:8b:d2:ff:0b:4d:27:49:2a:0d:6a:9f:5b:93:
49:c4:ea:5a:1d:0f:91:6a:0c:b7:d0:3f:7f:a1:dd:
4c:39:c2:8c:19:d8:28:6d:b0:0b:ab:c2:bf:60:6a:
3b:ef:1c:4f:89:df:4f:17:f5:33:ff:19:24:d6:1f:
b4:b8:d1:45:ca:1e:1a:be:f6:e3:dd:7c:04:43:75:
06:09:b5:61:b7:77:46:76:c9:78:3a:de:b1:cd:28:
4a:51:fb:7d:a3:b8:72:0b:f7:b7:91:57:7c:5f:c7:
1b:04:bb:c1:96:40:72:fe:14:36:16:e6:c0:cf:ef:
d4:22:43:83:ed:22:09:03:85:3c:dd:db:d0:a4:8a:
ac:87:c8:8d:68:ae:ad:79:90:2e:d9:9b:40:57:4f:
97:10:cd:6b:59:73:6d:5f:10:ca:00:4a:d7:22:41:
c7:8c:c0:33:39:d4:95:e1:fc:20:bc:fe:f6:1d:80:
39:f8:ab:8e:67:1d:c4:f2:0a:a4:16:42:53:aa:70:
35:01:59:23:02:64:4b:1c:92:d9:1e:18:09:e1:6f:
18:16:88:9e:ad:ee:f6:eb:35:4a:f1:bb:b0:3c:cb:
80:66:56:83:32:da:93:72:9b:bf:44:5f:be:9a:2f:
b9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:3B:EE:51:C4:B7:28:63:E8:0D:96:6B:73:1F:E9:79:09:1B:57:76
X509v3 Authority Key Identifier:
keyid:34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:23:1f:60:7d:e6:e0:18:55:3b:89:5a:22:b0:3e:4c:a7:50:
e8:b2:0e:8c:08:89:5b:d0:91:55:1c:50:0b:5b:c4:a2:de:a2:
d8:15:60:f2:f8:d3:fb:16:c7:09:9a:4b:0a:81:f5:83:52:7f:
14:b7:51:44:b1:f4:03:22:72:a7:08:98:3c:e4:d6:06:fe:e2:
66:66:07:09:87:1b:75:b6:da:5c:e2:9e:16:87:74:0e:16:5e:
b1:92:f3:65:ba:12:ab:d1:b1:e4:f4:32:3c:b7:14:0d:20:68:
57:c4:b4:e0:d8:18:02:67:f9:3b:f5:f3:dc:39:de:11:fb:1f:
13:f9:8e:07:39:3a:0f:07:15:f8:9a:11:8d:73:10:23:2b:5e:
01:89:98:9b:49:cd:f6:36:16:58:66:75:eb:ae:43:5d:89:87:
e8:10:ac:6e:9f:c1:61:ae:67:9a:f2:7b:31:40:bc:d6:13:b6:
60:78:2d:4e:60:d8:83:e8:e8:56:5b:2f:5c:8a:e1:0c:3f:94:
f7:39:12:2e:54:4c:63:0b:c4:a3:0f:12:06:14:1d:98:fd:f2:
43:65:18:61:fd:61:6f:cf:ee:de:04:72:ff:53:04:d3:00:49:
51:76:74:ce:c1:5d:75:1b:54:bd:d1:f1:0e:c4:8b:b6:d8:c2:
e3:c9:19:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpx7nQbR48rRdMGk4kUjlwzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0MDEyMzQzYTYyZjNmMDliNTVjZGJjMDFlNzVjMzgyMTJh
MjM1ZGYwHhcNMjUxMTExMDgwMDQzWhcNMjUxMTEyMDgwMDQzWjAzMTEwLwYDVQQD
EygxMjNiZWU1MWM0YjcyODYzZTgwZDk2NmI3MzFmZTk3OTA5MWI1Nzc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4SvdJS0L9daRnGlSohBIXovS/wtN
J0kqDWqfW5NJxOpaHQ+Ragy30D9/od1MOcKMGdgobbALq8K/YGo77xxPid9PF/Uz
/xkk1h+0uNFFyh4avvbj3XwEQ3UGCbVht3dGdsl4Ot6xzShKUft9o7hyC/e3kVd8
X8cbBLvBlkBy/hQ2FubAz+/UIkOD7SIJA4U83dvQpIqsh8iNaK6teZAu2ZtAV0+X
EM1rWXNtXxDKAErXIkHHjMAzOdSV4fwgvP72HYA5+KuOZx3E8gqkFkJTqnA1AVkj
AmRLHJLZHhgJ4W8YFoiere726zVK8buwPMuAZlaDMtqTcpu/RF++mi+5bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBI77lHEtyhj6A2Wa3Mf6XkJG1d2MB8GA1UdIwQY
MBaAFDQBI0OmLz8JtVzbwB51w4ISojXfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkFFalE2WXZQd20xWE52QUhuWERnaEtpTmQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9iMjMwMmUtYWFkZS00NjVhLWFhOWIt
MzJkMmJkZDRiYmIxLzEvTkFFalE2WXZQd20xWE52QUhuWERnaEtpTmQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9iMjMwMmUtYWFkZS00NjVhLWFhOWItMzJkMmJkZDRiYmIx
LzEvTkFFalE2WXZQd20xWE52QUhuWERnaEtpTmQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIiMfYH3m
4BhVO4laIrA+TKdQ6LIOjAiJW9CRVRxQC1vEot6i2BVg8vjT+xbHCZpLCoH1g1J/
FLdRRLH0AyJypwiYPOTWBv7iZmYHCYcbdbbaXOKeFod0DhZesZLzZboSq9Gx5PQy
PLcUDSBoV8S04NgYAmf5O/Xz3DneEfsfE/mOBzk6DwcV+JoRjXMQIyteAYmYm0nN
9jYWWGZ1665DXYmH6BCsbp/BYa5nmvJ7MUC81hO2YHgtTmDYg+joVlsvXIrhDD+U
9zkSLlRMYwvEow8SBhQdmP3yQ2UYYf1hb8/u3gRy/1ME0wBJUXZ0zsFddRtUvdHx
DsSLttjC48kZkQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 17:16:51 2025 by rpki-client