Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
File: NEGOJrKutuqoFD_XGDD5s1Sue7w.mft (raw, json)
Hash identifier: AI3YaF+o4g0TQAxwf7K+ED9CqA3qI+XHqYao1hXSNXQ=
Subject key identifier: 1F:9C:CD:D1:5B:84:5B:82:02:BB:CA:F4:30:A4:13:4B:46:DD:06:A7
Authority key identifier: 34:41:8E:26:B2:AE:B6:EA:A8:14:3F:D7:18:30:F9:B3:54:AE:7B:BC
Certificate issuer: /CN=34418e26b2aeb6eaa8143fd71830f9b354ae7bbc
Certificate serial: 019A71B889FF8AE4A1E66D5076ADFA068BB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
Manifest number: 0FF4
Signing time: Tue 11 Nov 2025 07:01:50 +0000
Manifest this update: Tue 11 Nov 2025 07:01:50 +0000
Manifest next update: Wed 12 Nov 2025 07:01:50 +0000
Files and hashes: 1: NEGOJrKutuqoFD_XGDD5s1Sue7w.crl (hash: T6PaudfczJbyARqhvxfYTsmpE3et9pzFfkblitoNb1Q=)
2: nsObN2DjPGcwLXn29XqybNz0hdw.roa (hash: LniUQovzLZtOR3Vslt1uv0Oiv/eQZfXqUz8XebxPz+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:89:ff:8a:e4:a1:e6:6d:50:76:ad:fa:06:8b:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34418e26b2aeb6eaa8143fd71830f9b354ae7bbc
Validity
Not Before: Nov 11 07:01:50 2025 GMT
Not After : Nov 12 07:01:50 2025 GMT
Subject: CN=1f9ccdd15b845b8202bbcaf430a4134b46dd06a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f2:49:72:90:8d:ab:8f:39:4e:2c:9c:f9:55:
aa:0e:39:52:ce:bd:8e:b5:56:d5:04:09:9a:38:1c:
bd:90:e6:80:7b:24:b9:42:f0:ae:02:11:da:a7:e7:
c3:3e:d3:fa:dc:57:3f:8d:73:2b:07:e4:b0:f9:47:
dc:5c:d6:ef:2e:3f:a1:1d:c3:7f:a6:3f:50:7a:20:
9d:17:e7:1a:62:48:ae:fc:b8:7f:a5:3e:ea:10:a6:
53:e2:a9:af:d0:8c:9c:86:89:fa:26:9c:1e:1d:37:
b1:83:c7:c2:33:77:3c:79:7c:aa:50:db:ae:51:b4:
92:72:d8:a3:0e:21:b1:60:c7:8f:63:90:3c:8e:69:
85:ea:5a:aa:0a:ab:f3:67:4c:17:be:95:11:80:dd:
fa:6e:f6:d6:e9:b1:39:b6:3b:67:1e:7c:56:d9:36:
6a:fb:f7:51:23:fd:35:88:75:d9:ac:08:3a:ee:18:
d7:ed:dc:09:b7:82:70:05:ce:e9:b2:9d:84:8a:71:
d2:6d:78:4f:1f:8b:6f:06:ad:56:c5:22:56:86:39:
98:a8:42:a8:95:8b:27:7e:c4:e9:ba:88:60:13:46:
57:58:55:43:83:90:23:a2:92:1a:2f:2d:38:d4:8f:
d8:3a:91:58:f1:a4:24:5e:43:3f:40:c5:7e:33:f5:
66:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:9C:CD:D1:5B:84:5B:82:02:BB:CA:F4:30:A4:13:4B:46:DD:06:A7
X509v3 Authority Key Identifier:
keyid:34:41:8E:26:B2:AE:B6:EA:A8:14:3F:D7:18:30:F9:B3:54:AE:7B:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NEGOJrKutuqoFD_XGDD5s1Sue7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1d4f36-b97d-4d98-bb2c-b8a27472a896/1/NEGOJrKutuqoFD_XGDD5s1Sue7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:28:4a:d6:4e:70:bf:da:ed:e8:cf:77:23:5d:0f:52:e2:50:
3a:33:e1:f8:6a:05:6a:cb:83:1d:8e:df:a3:f7:cd:43:be:f5:
24:d6:b9:90:9c:6b:25:0f:66:cc:19:ab:cf:17:59:3a:9c:ab:
3b:a1:5e:21:68:8f:f3:98:09:29:19:1b:6a:7c:b1:d9:1d:7d:
44:23:56:bd:c4:68:bd:d9:09:4a:5b:af:e1:7f:54:75:c3:d2:
c1:81:4f:06:dd:23:26:01:b8:80:03:9b:f0:d9:a3:58:93:73:
57:48:95:84:d5:71:19:55:17:09:c4:1f:29:49:ee:13:62:fb:
5f:0e:48:12:48:54:85:8e:8a:f0:66:be:f1:35:4e:13:ef:ce:
26:9f:5f:6c:50:24:07:95:b7:ee:aa:b4:b0:09:97:a8:40:59:
5d:8a:68:66:f4:ab:33:d8:45:7f:3d:66:94:19:87:9a:ca:0e:
62:fc:4b:6e:c5:7b:b2:db:be:3d:11:ab:5f:08:b2:59:c9:3f:
db:70:86:a7:f2:07:10:f6:66:29:b0:52:22:e4:75:77:d9:8b:
76:68:0c:30:9a:7b:f2:cb:47:e1:18:0a:17:6f:63:21:98:ac:
ff:50:7e:00:db:c5:d8:df:84:c7:0d:4b:1e:04:be:73:fc:eb:
70:85:98:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuIn/iuSh5m1Qdq36BouzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0NDE4ZTI2YjJhZWI2ZWFhODE0M2ZkNzE4MzBmOWIzNTRh
ZTdiYmMwHhcNMjUxMTExMDcwMTUwWhcNMjUxMTEyMDcwMTUwWjAzMTEwLwYDVQQD
EygxZjljY2RkMTViODQ1YjgyMDJiYmNhZjQzMGE0MTM0YjQ2ZGQwNmE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAovJJcpCNq485Tiyc+VWqDjlSzr2O
tVbVBAmaOBy9kOaAeyS5QvCuAhHap+fDPtP63Fc/jXMrB+Sw+UfcXNbvLj+hHcN/
pj9QeiCdF+caYkiu/Lh/pT7qEKZT4qmv0Iychon6JpweHTexg8fCM3c8eXyqUNuu
UbSSctijDiGxYMePY5A8jmmF6lqqCqvzZ0wXvpURgN36bvbW6bE5tjtnHnxW2TZq
+/dRI/01iHXZrAg67hjX7dwJt4JwBc7psp2EinHSbXhPH4tvBq1WxSJWhjmYqEKo
lYsnfsTpuohgE0ZXWFVDg5AjopIaLy041I/YOpFY8aQkXkM/QMV+M/VmTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB+czdFbhFuCArvK9DCkE0tG3QanMB8GA1UdIwQY
MBaAFDRBjiayrrbqqBQ/1xgw+bNUrnu8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkVHT0pyS3V0dXFvRkRfWEdERDVzMVN1ZTd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8xZDRmMzYtYjk3ZC00ZDk4LWJiMmMt
YjhhMjc0NzJhODk2LzEvTkVHT0pyS3V0dXFvRkRfWEdERDVzMVN1ZTd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My8xZDRmMzYtYjk3ZC00ZDk4LWJiMmMtYjhhMjc0NzJhODk2
LzEvTkVHT0pyS3V0dXFvRkRfWEdERDVzMVN1ZTd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAByhK1k5w
v9rt6M93I10PUuJQOjPh+GoFasuDHY7fo/fNQ771JNa5kJxrJQ9mzBmrzxdZOpyr
O6FeIWiP85gJKRkbanyx2R19RCNWvcRovdkJSluv4X9UdcPSwYFPBt0jJgG4gAOb
8NmjWJNzV0iVhNVxGVUXCcQfKUnuE2L7Xw5IEkhUhY6K8Ga+8TVOE+/OJp9fbFAk
B5W37qq0sAmXqEBZXYpoZvSrM9hFfz1mlBmHmsoOYvxLbsV7stu+PRGrXwiyWck/
23CGp/IHEPZmKbBSIuR1d9mLdmgMMJp78stH4RgKF29jIZis/1B+ANvF2N+Exw1L
HgS+c/zrcIWYSQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:40:20 2025 by rpki-client