Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
File: nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft (raw, json)
Hash identifier: HJzh62/IdHU6Lj0HXWl9msZr5IY4t0mF1B1AgBG38uY=
Subject key identifier: D7:8A:E2:41:81:65:3F:CA:C0:90:6A:97:E3:23:72:71:5D:E8:28:8E
Authority key identifier: 9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
Certificate issuer: /CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Certificate serial: 019A7293AC41DF73BA0312E5C9CACCA32183
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
Manifest number: 1045
Signing time: Tue 11 Nov 2025 11:01:11 +0000
Manifest this update: Tue 11 Nov 2025 11:01:11 +0000
Manifest next update: Wed 12 Nov 2025 11:01:11 +0000
Files and hashes: 1: nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl (hash: rTu/sC/chLCNkjU0sAIyeFM7xbnGHegkHXKCvwT3xuo=)
2: xk36of5GcRMNZGUJt-_5r_QctTo.roa (hash: BbMVXEvQwTUOBV0n4W+iUw7Na6Uh7I6Smkrm6hqGQWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:ac:41:df:73:ba:03:12:e5:c9:ca:cc:a3:21:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f24064f95331cf1f315dc50de4db05ff95aa410
Validity
Not Before: Nov 11 11:01:11 2025 GMT
Not After : Nov 12 11:01:11 2025 GMT
Subject: CN=d78ae24181653fcac0906a97e32372715de8288e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:77:16:0b:63:ad:ae:d4:f4:14:d0:05:7d:e0:
e6:de:d5:65:09:cf:0a:c9:65:e7:bb:df:af:87:73:
0f:21:e8:72:20:6f:c3:25:b3:f1:de:57:48:1b:99:
dd:0a:ba:86:cb:09:a0:0b:18:14:66:19:77:50:80:
e9:54:51:42:73:7e:af:12:17:15:ad:69:65:13:dc:
cb:61:d2:d5:a5:ec:18:8f:a8:a9:4e:72:8c:0f:15:
16:77:0e:7d:a6:8e:42:69:95:a5:1d:42:34:fe:97:
3f:62:52:c5:95:b4:26:51:b1:b8:6b:af:e9:1f:36:
94:25:28:37:c0:97:66:7e:86:6d:c4:c3:4f:cb:85:
5b:23:63:73:be:c4:a5:b3:27:01:27:ba:91:7d:55:
9e:96:7c:84:59:ab:9b:68:d7:63:65:39:c7:74:4e:
b8:2b:59:72:c6:13:eb:e4:63:0c:d5:fc:60:87:e8:
94:11:1b:c4:04:84:1f:f9:8a:c1:1a:43:90:9b:eb:
1b:dc:01:98:58:9b:ef:8d:9f:3a:ba:4e:e8:ef:55:
1f:b6:47:92:5f:f4:87:bc:8e:39:81:d6:2e:b6:c2:
b1:65:8d:b2:4f:d4:2b:26:ec:33:71:f2:ae:fc:c2:
0e:9a:e1:78:c7:68:32:5c:2c:29:aa:11:31:e1:2e:
d7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8A:E2:41:81:65:3F:CA:C0:90:6A:97:E3:23:72:71:5D:E8:28:8E
X509v3 Authority Key Identifier:
keyid:9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:d5:ea:21:04:80:02:82:87:c5:3f:82:85:40:3e:31:a1:52:
28:e5:50:17:e7:71:54:60:a0:78:55:d4:af:d8:c7:66:6c:5d:
ee:b4:7b:0d:46:f4:23:40:77:c5:82:df:41:6c:b0:7c:f8:af:
f0:e0:3f:02:8e:28:70:10:95:0c:1e:c6:b0:33:15:74:de:12:
c3:fc:bf:96:c5:57:50:e2:0e:a3:a6:a9:58:5b:85:ac:fd:c9:
34:6a:ed:b0:75:3c:bd:c6:51:e6:f0:56:72:88:fd:b2:77:81:
ad:81:1c:7a:a9:42:30:13:ff:cb:fc:ee:ba:a4:24:a2:71:8c:
4f:41:da:9a:e6:46:8d:9a:19:41:b4:bc:31:75:4f:e2:a3:ad:
19:2d:be:49:71:cb:00:82:5f:ef:03:3c:53:60:27:fe:f0:90:
ee:b3:43:89:c0:76:ae:55:19:29:54:d8:73:20:a5:8f:f8:16:
a2:ee:e1:53:c0:47:98:22:27:72:8e:cb:6b:f6:d0:a2:ab:97:
e4:44:62:f2:a5:16:61:ad:8c:58:ba:78:cc:25:9a:a7:fe:8a:
56:e4:19:54:7b:68:2b:53:f9:d3:8d:58:29:00:3a:19:8c:3d:
51:38:6b:09:29:de:5c:14:95:92:3b:86:f7:8c:38:79:da:06:
c6:e7:cb:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyk6xB33O6AxLlycrMoyGDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMjQwNjRmOTUzMzFjZjFmMzE1ZGM1MGRlNGRiMDVmZjk1
YWE0MTAwHhcNMjUxMTExMTEwMTExWhcNMjUxMTEyMTEwMTExWjAzMTEwLwYDVQQD
EyhkNzhhZTI0MTgxNjUzZmNhYzA5MDZhOTdlMzIzNzI3MTVkZTgyODhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHcWC2OtrtT0FNAFfeDm3tVlCc8K
yWXnu9+vh3MPIehyIG/DJbPx3ldIG5ndCrqGywmgCxgUZhl3UIDpVFFCc36vEhcV
rWllE9zLYdLVpewYj6ipTnKMDxUWdw59po5CaZWlHUI0/pc/YlLFlbQmUbG4a6/p
HzaUJSg3wJdmfoZtxMNPy4VbI2NzvsSlsycBJ7qRfVWelnyEWaubaNdjZTnHdE64
K1lyxhPr5GMM1fxgh+iUERvEBIQf+YrBGkOQm+sb3AGYWJvvjZ86uk7o71UftkeS
X/SHvI45gdYutsKxZY2yT9QrJuwzcfKu/MIOmuF4x2gyXCwpqhEx4S7XLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNeK4kGBZT/KwJBql+MjcnFd6CiOMB8GA1UdIwQY
MBaAFJ8kBk+VMxzx8xXcUN5NsF/5WqQQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnlRR1Q1VXpIUEh6RmR4UTNrMndYX2xhcEJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80MDA3OWItZmNhYS00NmQ5LTgxNjEt
NjZhNmM4MGQyNmE1LzEvbnlRR1Q1VXpIUEh6RmR4UTNrMndYX2xhcEJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi80MDA3OWItZmNhYS00NmQ5LTgxNjEtNjZhNmM4MGQyNmE1
LzEvbnlRR1Q1VXpIUEh6RmR4UTNrMndYX2xhcEJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqNXqIQSA
AoKHxT+ChUA+MaFSKOVQF+dxVGCgeFXUr9jHZmxd7rR7DUb0I0B3xYLfQWywfPiv
8OA/Ao4ocBCVDB7GsDMVdN4Sw/y/lsVXUOIOo6apWFuFrP3JNGrtsHU8vcZR5vBW
coj9sneBrYEceqlCMBP/y/zuuqQkonGMT0HamuZGjZoZQbS8MXVP4qOtGS2+SXHL
AIJf7wM8U2An/vCQ7rNDicB2rlUZKVTYcyClj/gWou7hU8BHmCInco7La/bQoquX
5ERi8qUWYa2MWLp4zCWap/6KVuQZVHtoK1P5041YKQA6GYw9UThrCSneXBSVkjuG
94w4edoGxufLXA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:10:23 2025 by rpki-client