Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
File: cnegKqVG3RoKaoLQXZCwkX4VRe0.mft (raw, json)
Hash identifier: B1L/PetjOuO5cYUuHDhPOaROUpksBJipDmlyW24ozJI=
Subject key identifier: 2F:C1:35:DA:35:C7:BD:DE:5E:DC:1F:89:33:C5:D2:F8:30:CC:21:97
Authority key identifier: 72:77:A0:2A:A5:46:DD:1A:0A:6A:82:D0:5D:90:B0:91:7E:15:45:ED
Certificate issuer: /CN=7277a02aa546dd1a0a6a82d05d90b0917e1545ed
Certificate serial: 019A71132F0FFA40E918EC16113F41F8DED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
Manifest number: 132A
Signing time: Tue 11 Nov 2025 04:01:13 +0000
Manifest this update: Tue 11 Nov 2025 04:01:13 +0000
Manifest next update: Wed 12 Nov 2025 04:01:13 +0000
Files and hashes: 1: 30-4U9nQ-D0aJwZBJ1-bMuclPkc.roa (hash: B7rpxNi8g0T+2AMmv+mqO6f85+SxNjEeES2xtaw9X3k=)
2: cnegKqVG3RoKaoLQXZCwkX4VRe0.crl (hash: 243HXNlcCE/G5P9ySbrO1xyHT2Le9H0dtxkNXYa2BNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:2f:0f:fa:40:e9:18:ec:16:11:3f:41:f8:de:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7277a02aa546dd1a0a6a82d05d90b0917e1545ed
Validity
Not Before: Nov 11 04:01:13 2025 GMT
Not After : Nov 12 04:01:13 2025 GMT
Subject: CN=2fc135da35c7bdde5edc1f8933c5d2f830cc2197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:70:be:c6:86:b4:a4:1f:c3:11:17:0b:c3:05:
f5:9a:bb:85:df:82:87:07:a8:77:71:84:7f:87:b1:
41:0f:b0:d9:24:80:f8:3c:16:85:e6:61:28:23:a1:
33:9a:31:00:b0:be:d9:e8:1e:f0:6e:62:88:0f:5e:
5b:6a:d5:87:7f:6a:13:39:63:02:0c:65:f8:ce:a8:
9e:ac:dc:12:6e:67:c7:dc:ba:66:c9:b2:25:e7:75:
0e:a0:9e:89:44:3e:5b:37:82:be:4b:96:f1:44:bd:
52:4f:d3:23:ce:fe:42:37:0f:ba:a4:f4:df:b4:cf:
0a:c4:d1:af:a0:f9:ea:da:2f:1a:ba:41:98:04:db:
33:48:de:f6:f3:93:f9:c9:56:dc:ca:6c:e6:58:f3:
91:ed:48:7d:33:df:62:ff:95:77:14:92:2a:51:bb:
1a:b8:42:05:a0:5e:90:1f:88:db:48:12:91:2b:fe:
d8:df:dc:0a:ca:02:16:b8:a6:73:87:2b:4b:88:c5:
a4:ce:72:49:11:a8:ca:af:ac:53:4e:19:ba:24:a3:
42:98:88:40:d5:f8:96:0c:36:fd:92:1a:2f:67:82:
4a:35:25:e9:45:ab:76:56:0d:d5:f9:34:34:f9:09:
d6:70:26:c9:4c:51:de:6b:fb:5b:55:59:85:ad:59:
cf:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C1:35:DA:35:C7:BD:DE:5E:DC:1F:89:33:C5:D2:F8:30:CC:21:97
X509v3 Authority Key Identifier:
keyid:72:77:A0:2A:A5:46:DD:1A:0A:6A:82:D0:5D:90:B0:91:7E:15:45:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:8a:f7:cc:7b:a7:59:d8:86:3f:3d:e2:bf:49:15:09:48:bc:
39:70:0e:6a:40:b9:73:7e:8c:7a:c5:c9:05:5f:c3:9f:d3:11:
0a:5f:5e:8d:e5:a1:cd:98:c3:5f:d8:a7:6c:e3:f2:75:88:c8:
29:0a:79:f0:f5:ae:c1:f6:99:fa:ca:6a:39:fc:e4:ac:3d:16:
ed:b2:61:55:2e:8a:99:0e:6e:a7:49:d6:d0:ad:75:7b:a4:70:
1c:8b:d3:cd:a9:86:2b:83:ee:23:4b:c1:39:86:e7:5f:88:1d:
9a:bf:e9:05:9e:f7:7d:1c:af:69:fa:b0:dc:8f:9a:44:55:c1:
20:d0:4b:3d:1c:6f:f8:f7:4e:7d:39:3e:8d:83:f5:6c:97:e2:
6b:44:17:66:3a:13:d2:15:39:d2:d1:00:6f:a7:3e:2e:b0:b6:
73:f4:42:23:ca:79:59:2d:4f:4c:11:04:b3:d4:60:5d:48:45:
ba:3c:18:23:57:81:4c:a2:52:2c:b0:35:aa:1f:4b:39:2e:5d:
7d:ac:fe:1c:a1:f2:ff:00:bd:9d:00:ac:1f:2a:73:f6:f2:bc:
af:b2:3c:ef:22:c4:b7:a7:81:33:e8:10:de:51:90:75:ac:8b:
75:04:da:e4:2c:e8:37:3d:b0:cf:c6:85:d7:28:7c:d7:40:04:
e6:62:78:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxEy8P+kDpGOwWET9B+N7TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyNzdhMDJhYTU0NmRkMWEwYTZhODJkMDVkOTBiMDkxN2Ux
NTQ1ZWQwHhcNMjUxMTExMDQwMTEzWhcNMjUxMTEyMDQwMTEzWjAzMTEwLwYDVQQD
EygyZmMxMzVkYTM1YzdiZGRlNWVkYzFmODkzM2M1ZDJmODMwY2MyMTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXC+xoa0pB/DERcLwwX1mruF34KH
B6h3cYR/h7FBD7DZJID4PBaF5mEoI6EzmjEAsL7Z6B7wbmKID15batWHf2oTOWMC
DGX4zqierNwSbmfH3LpmybIl53UOoJ6JRD5bN4K+S5bxRL1ST9Mjzv5CNw+6pPTf
tM8KxNGvoPnq2i8aukGYBNszSN7285P5yVbcymzmWPOR7Uh9M99i/5V3FJIqUbsa
uEIFoF6QH4jbSBKRK/7Y39wKygIWuKZzhytLiMWkznJJEajKr6xTThm6JKNCmIhA
1fiWDDb9khovZ4JKNSXpRat2Vg3V+TQ0+QnWcCbJTFHea/tbVVmFrVnPKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC/BNdo1x73eXtwfiTPF0vgwzCGXMB8GA1UdIwQY
MBaAFHJ3oCqlRt0aCmqC0F2QsJF+FUXtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY25lZ0txVkczUm9LYW9MUVhaQ3drWDRWUmUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi85N2FkN2UtZmNiZS00ZmNjLTljM2Yt
ZjQ4OTMwZTQyNjQxLzEvY25lZ0txVkczUm9LYW9MUVhaQ3drWDRWUmUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi85N2FkN2UtZmNiZS00ZmNjLTljM2YtZjQ4OTMwZTQyNjQx
LzEvY25lZ0txVkczUm9LYW9MUVhaQ3drWDRWUmUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjYr3zHun
WdiGPz3iv0kVCUi8OXAOakC5c36MesXJBV/Dn9MRCl9ejeWhzZjDX9inbOPydYjI
KQp58PWuwfaZ+spqOfzkrD0W7bJhVS6KmQ5up0nW0K11e6RwHIvTzamGK4PuI0vB
OYbnX4gdmr/pBZ73fRyvafqw3I+aRFXBINBLPRxv+PdOfTk+jYP1bJfia0QXZjoT
0hU50tEAb6c+LrC2c/RCI8p5WS1PTBEEs9RgXUhFujwYI1eBTKJSLLA1qh9LOS5d
faz+HKHy/wC9nQCsHypz9vK8r7I87yLEt6eBM+gQ3lGQdayLdQTa5CzoNz2wz8aF
1yh810AE5mJ4IQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:19 2025 by rpki-client