Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
File: N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft (raw, json)
Hash identifier: N0QD97D+4730wKHIe4AUkxqgADMXArXR6ENj3MRruCI=
Subject key identifier: 72:3C:64:B0:92:14:A1:04:7D:08:49:51:0D:45:D9:72:9E:5F:55:31
Authority key identifier: 37:63:E4:5B:81:64:93:CC:DB:DD:4B:07:70:8A:21:FB:73:A1:E5:99
Certificate issuer: /CN=3763e45b816493ccdbdd4b07708a21fb73a1e599
Certificate serial: 0199FEEB9F5C5FFF5DC4247063D6AE410858
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
Manifest number: 0796
Signing time: Mon 20 Oct 2025 00:01:18 +0000
Manifest this update: Mon 20 Oct 2025 00:01:18 +0000
Manifest next update: Tue 21 Oct 2025 00:01:18 +0000
Files and hashes: 1: M2-x0b6h_vGkWR8MeQS23lu97CU.roa (hash: 3mmEcfVqYQ+5prex0V/rqUj30uad1M5q1mUqvz+8XW8=)
2: N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl (hash: 3U11ewHyei5n6mecA0gJAa2PXltRQg+ZNUpy5u7S1Nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:9f:5c:5f:ff:5d:c4:24:70:63:d6:ae:41:08:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3763e45b816493ccdbdd4b07708a21fb73a1e599
Validity
Not Before: Oct 20 00:01:18 2025 GMT
Not After : Oct 21 00:01:18 2025 GMT
Subject: CN=723c64b09214a1047d0849510d45d9729e5f5531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ec:a4:7a:2b:c7:21:36:c7:5a:44:fa:36:9f:
ea:e4:ee:31:eb:01:1f:b5:59:c2:a0:05:7f:2d:c3:
d7:be:92:23:cc:67:bc:14:0a:b2:18:c9:19:87:fb:
e8:7f:ec:c2:95:0a:1e:42:22:94:70:2b:2b:4a:0f:
45:52:3b:a1:39:f2:ac:9c:57:c6:d3:e9:0f:e8:af:
a1:b1:a8:0c:85:48:7e:75:41:63:37:9e:24:8b:e2:
2f:ec:ef:b1:43:eb:e0:4b:69:0f:e1:4b:92:c1:a6:
10:1c:5e:69:9c:cc:a7:f1:a6:4b:e5:3d:1f:3d:b7:
f9:4f:52:9e:70:85:b8:19:ee:4e:8d:d8:be:b7:f3:
92:5d:73:85:65:7e:20:af:ed:18:e6:c1:bb:cf:55:
5e:72:44:17:16:0c:98:ce:dc:fe:88:26:94:de:b4:
d0:23:49:a4:c0:7d:df:02:a9:3f:00:a2:18:c0:1e:
72:92:3c:ab:55:0f:02:65:72:21:1b:37:69:df:0e:
87:fc:59:76:67:4c:1f:1a:5f:d6:5d:39:be:15:58:
1e:ad:db:a3:40:93:3f:eb:12:ac:31:5a:5c:16:37:
34:9e:f2:1c:3f:70:9d:69:2a:86:8b:01:66:a9:d6:
37:85:9f:c2:71:ff:5c:62:19:74:1c:9c:43:49:6b:
9b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:3C:64:B0:92:14:A1:04:7D:08:49:51:0D:45:D9:72:9E:5F:55:31
X509v3 Authority Key Identifier:
keyid:37:63:E4:5B:81:64:93:CC:DB:DD:4B:07:70:8A:21:FB:73:A1:E5:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:06:57:9e:f2:5e:60:85:0b:fb:78:3b:7f:25:2e:cb:e9:e3:
68:37:95:4c:fb:16:75:f9:e9:0f:f7:05:05:aa:15:5b:44:e2:
b7:84:4d:b0:49:37:b8:c9:82:fe:92:c4:ac:ea:3a:5c:6f:24:
d6:98:78:ca:b6:63:d0:93:1c:6c:69:9c:d5:19:b6:7a:f5:ee:
77:37:86:c8:3f:4c:73:71:ba:6b:01:8b:b5:bd:0a:45:0c:9e:
14:4f:83:df:a8:31:c3:43:fd:67:2d:4f:7a:58:93:63:a7:97:
a6:db:58:b1:17:e5:ab:f9:46:e8:b9:50:fa:8a:34:c9:85:e8:
86:23:15:c6:8e:50:32:de:a9:6c:c9:0e:1e:85:d6:cc:c3:19:
02:44:a1:1d:3d:8a:5f:39:ef:f7:ab:72:06:90:c3:af:ab:26:
49:29:21:71:f0:0f:a8:7d:a1:d8:0c:18:51:37:a0:da:a2:58:
79:49:f7:ac:7f:73:18:1e:2b:e8:58:71:57:14:dc:0c:fa:f0:
fc:1f:35:21:ca:01:b8:43:a7:03:f0:e9:15:75:17:dc:b4:7c:
b9:58:91:39:bd:b2:c4:a1:b6:f2:c3:ce:de:d1:43:2a:03:98:
c2:b3:d9:f0:0c:88:30:a3:a8:71:2b:58:81:6a:9a:77:08:22:
94:4a:bc:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+659cX/9dxCRwY9auQQhYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3NjNlNDViODE2NDkzY2NkYmRkNGIwNzcwOGEyMWZiNzNh
MWU1OTkwHhcNMjUxMDIwMDAwMTE4WhcNMjUxMDIxMDAwMTE4WjAzMTEwLwYDVQQD
Eyg3MjNjNjRiMDkyMTRhMTA0N2QwODQ5NTEwZDQ1ZDk3MjllNWY1NTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+ykeivHITbHWkT6Np/q5O4x6wEf
tVnCoAV/LcPXvpIjzGe8FAqyGMkZh/vof+zClQoeQiKUcCsrSg9FUjuhOfKsnFfG
0+kP6K+hsagMhUh+dUFjN54ki+Iv7O+xQ+vgS2kP4UuSwaYQHF5pnMyn8aZL5T0f
Pbf5T1KecIW4Ge5Ojdi+t/OSXXOFZX4gr+0Y5sG7z1VeckQXFgyYztz+iCaU3rTQ
I0mkwH3fAqk/AKIYwB5ykjyrVQ8CZXIhGzdp3w6H/Fl2Z0wfGl/WXTm+FVgerduj
QJM/6xKsMVpcFjc0nvIcP3CdaSqGiwFmqdY3hZ/Ccf9cYhl0HJxDSWubFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHI8ZLCSFKEEfQhJUQ1F2XKeX1UxMB8GA1UdIwQY
MBaAFDdj5FuBZJPM291LB3CKIftzoeWZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjJQa1c0RmtrOHpiM1VzSGNJb2gtM09oNVprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9hZGJiNDctNTcyYS00OWNjLWE2ZDAt
NTFmZjIwZjlmZWY5LzEvTjJQa1c0RmtrOHpiM1VzSGNJb2gtM09oNVprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9hZGJiNDctNTcyYS00OWNjLWE2ZDAtNTFmZjIwZjlmZWY5
LzEvTjJQa1c0RmtrOHpiM1VzSGNJb2gtM09oNVprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWAZXnvJe
YIUL+3g7fyUuy+njaDeVTPsWdfnpD/cFBaoVW0Tit4RNsEk3uMmC/pLErOo6XG8k
1ph4yrZj0JMcbGmc1Rm2evXudzeGyD9Mc3G6awGLtb0KRQyeFE+D36gxw0P9Zy1P
eliTY6eXpttYsRflq/lG6LlQ+oo0yYXohiMVxo5QMt6pbMkOHoXWzMMZAkShHT2K
Xznv96tyBpDDr6smSSkhcfAPqH2h2AwYUTeg2qJYeUn3rH9zGB4r6FhxVxTcDPrw
/B81IcoBuEOnA/DpFXUX3LR8uViROb2yxKG28sPO3tFDKgOYwrPZ8AyIMKOocStY
gWqadwgilEq8GA==
-----END CERTIFICATE-----
Generated at Mon Oct 20 02:24:06 2025 by rpki-client