Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
File: NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft (raw, json)
Hash identifier: 4kveNHsFfJiX/9mm3xzyFHRwN5ouyBQC4va3Euj1J10=
Subject key identifier: 00:FF:50:3E:6F:5A:6D:72:64:5C:98:11:4C:07:14:37:41:E1:54:08
Authority key identifier: 34:DD:CB:C8:F6:1B:26:0F:D3:F3:E7:8B:6B:86:87:7C:B9:5F:D8:3E
Certificate issuer: /CN=34ddcbc8f61b260fd3f3e78b6b86877cb95fd83e
Certificate serial: 019A71EE5CEA5B8700C759ADB57CC3874E05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
Manifest number: 12FF
Signing time: Tue 11 Nov 2025 08:00:37 +0000
Manifest this update: Tue 11 Nov 2025 08:00:37 +0000
Manifest next update: Wed 12 Nov 2025 08:00:37 +0000
Files and hashes: 1: NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl (hash: cypjQl9x/TSkfAtra2QIHSZqlOtVtGCUdx8cwZO2fRc=)
2: aPFNqKZrV_epMPFvc-8vIsgJFgg.roa (hash: 83I0vKl1m5ZTxLcVY4fj2guNAuZT35HFxx/AGVAfz8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:5c:ea:5b:87:00:c7:59:ad:b5:7c:c3:87:4e:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34ddcbc8f61b260fd3f3e78b6b86877cb95fd83e
Validity
Not Before: Nov 11 08:00:37 2025 GMT
Not After : Nov 12 08:00:37 2025 GMT
Subject: CN=00ff503e6f5a6d72645c98114c07143741e15408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:22:56:8f:c2:a4:a1:bb:ab:0a:31:80:5c:41:
7e:f8:5f:f6:72:8a:df:99:51:de:ed:8c:94:30:c6:
cf:e2:21:7a:98:d4:13:c1:99:74:e8:40:a3:8d:fa:
92:32:a8:01:41:34:b7:e0:3e:a8:4c:98:79:ac:5c:
18:bd:9a:59:45:5d:00:63:86:8a:97:8b:41:f5:29:
b0:a8:31:27:cc:98:f0:e2:ae:61:50:fc:3a:b2:e6:
9d:67:93:ca:c3:d4:28:da:76:1e:80:de:40:83:61:
81:09:40:c6:7f:2d:d6:a9:d6:3e:35:84:b8:da:0c:
33:2a:11:ce:6d:0a:d0:65:97:05:bd:10:71:8a:6c:
0e:28:59:03:39:7b:61:fb:05:3a:44:9c:a0:fe:48:
06:12:1c:b0:58:de:1e:a9:7d:a8:f3:b6:33:64:20:
2d:a4:ee:aa:ae:8c:75:29:c7:44:87:7f:19:2f:0c:
73:28:9f:69:d0:80:eb:ef:4a:78:53:29:64:59:1b:
c8:93:c2:3e:a4:2a:4b:2a:af:d2:1a:dc:1b:26:4e:
99:e7:1a:61:df:22:f1:2e:ac:f0:e9:b5:f1:bc:57:
3c:93:4b:94:bc:f2:33:08:f9:5c:e7:65:b5:61:c5:
c3:ae:93:58:d6:ff:3f:66:4e:f4:83:82:7f:20:57:
50:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:FF:50:3E:6F:5A:6D:72:64:5C:98:11:4C:07:14:37:41:E1:54:08
X509v3 Authority Key Identifier:
keyid:34:DD:CB:C8:F6:1B:26:0F:D3:F3:E7:8B:6B:86:87:7C:B9:5F:D8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NN3LyPYbJg_T8-eLa4aHfLlf2D4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/6508a1-4412-40c7-8a72-52cd6e89aa8d/1/NN3LyPYbJg_T8-eLa4aHfLlf2D4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:84:96:e6:3b:55:4b:d3:a5:54:e7:84:4b:d8:34:fb:3e:36:
12:50:85:4a:e1:f9:e8:7c:53:88:ee:f0:78:92:f0:09:bf:ca:
6e:29:00:b4:9e:06:f6:7b:5a:ab:56:21:d3:b2:c2:80:0f:65:
00:7a:46:a0:9f:d3:9b:ca:8c:5b:81:2c:fe:fa:cc:38:5d:2e:
c4:4e:f9:fd:47:24:6e:fd:1a:87:2c:e4:61:cf:cc:93:93:2b:
ec:1c:06:a7:ad:1f:58:b7:f3:51:24:eb:0a:5e:f0:f0:09:ef:
b0:96:c3:c5:1a:a1:6c:e5:16:fd:95:b1:c0:3d:5b:b5:a6:32:
32:26:44:a7:d5:c3:ec:e6:d1:94:04:4c:20:14:2e:02:1b:c5:
76:10:4b:fb:be:96:64:3f:34:02:1b:94:2e:b0:16:4a:f7:33:
a1:75:50:f3:2a:5b:cf:d7:c9:b6:74:4e:26:70:3b:07:d7:46:
50:ca:72:36:54:a1:99:3f:9f:2f:b4:82:82:0c:0d:33:6d:64:
be:22:f0:82:2e:fe:39:2d:1d:47:31:71:44:e3:91:77:f9:a6:
5c:6c:8e:16:2b:3d:2b:84:27:21:f5:c0:ac:36:06:ff:de:a4:
c6:b9:af:30:52:10:5a:9a:1f:d7:f9:3c:78:ba:f6:a3:c3:ff:
2a:fc:77:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:41:42 2025 by rpki-client