Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
File: NVyaW8uDQBCKQchiduHLlKYefak.mft (raw, json)
Hash identifier: kAoBgnX9XJYNHUI+gt5hFN6v71oNPb7/1bmzTP0yALY=
Subject key identifier: 82:67:E8:50:96:B7:F1:57:24:63:F2:F4:76:B4:D2:61:E9:E9:B5:A7
Authority key identifier: 35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
Certificate issuer: /CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Certificate serial: 0199FE7DD66AE6964A52944D3F14E9D1993E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
Manifest number: 0F7C
Signing time: Sun 19 Oct 2025 22:01:23 +0000
Manifest this update: Sun 19 Oct 2025 22:01:23 +0000
Manifest next update: Mon 20 Oct 2025 22:01:23 +0000
Files and hashes: 1: 5KKpk9qEveM_ucLAOYR8lDjQsvs.roa (hash: FsEABHDgSk6DaTySsepeca9yMLpdy1J0E11YMBOaZ9k=)
2: NVyaW8uDQBCKQchiduHLlKYefak.crl (hash: twdwoEhh+qHB/qmcWexMcBkKnqAIuP9fQCA1sSb4g/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:d6:6a:e6:96:4a:52:94:4d:3f:14:e9:d1:99:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Validity
Not Before: Oct 19 22:01:23 2025 GMT
Not After : Oct 20 22:01:23 2025 GMT
Subject: CN=8267e85096b7f1572463f2f476b4d261e9e9b5a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:81:b4:fd:10:66:f4:57:58:41:a4:08:5e:a6:
09:97:8c:08:65:40:2f:49:0b:92:73:d3:a8:a0:10:
b2:8d:8e:a0:dc:5d:84:61:a2:a7:07:ac:8e:32:0a:
31:28:c1:57:66:c6:00:10:2e:1e:15:3b:cf:09:6e:
cc:39:5a:a3:88:c6:0a:44:a5:7c:53:84:a8:9d:38:
bc:f2:44:70:d3:8c:46:b3:c6:35:f2:e6:f5:7d:91:
da:6f:1c:1a:0a:ea:9e:d9:19:42:a1:a7:01:68:64:
46:39:94:4e:8a:ef:0b:a9:24:fd:ad:cf:85:65:bd:
0d:57:2e:9c:f4:9b:1c:ca:4a:19:87:e5:e7:38:a9:
0e:28:6c:bc:bd:77:38:d4:23:37:86:90:09:28:10:
55:22:20:b6:a2:d6:ad:f2:d7:ea:90:aa:c4:76:c6:
88:9b:50:12:7a:00:e3:10:01:7e:0b:82:aa:87:c5:
62:61:91:2b:bb:0b:fd:82:c4:66:c7:46:dc:f5:ba:
06:23:49:33:de:88:1e:23:e5:7e:cc:62:d4:6f:c2:
1e:5d:02:14:89:80:2c:04:b2:97:bf:b0:89:4e:60:
2d:cb:80:f6:a5:23:d6:67:d5:b8:19:8a:54:8c:79:
aa:0f:b6:8e:3b:cb:f0:e1:68:79:a6:ec:8f:8b:d0:
1a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:67:E8:50:96:B7:F1:57:24:63:F2:F4:76:B4:D2:61:E9:E9:B5:A7
X509v3 Authority Key Identifier:
keyid:35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:2d:e0:a9:cc:f5:fc:8c:33:e7:c7:7a:69:33:fe:47:01:2c:
9f:30:23:1f:6f:c3:22:62:67:f9:3c:bd:2a:6d:4b:08:a2:33:
8a:0e:0a:7f:c9:15:65:af:56:19:48:70:18:d1:67:99:73:8f:
09:b2:61:f1:94:4c:f0:93:8b:a9:02:a1:42:39:89:ca:dc:c6:
d5:c7:b2:62:2e:a7:14:3f:45:f4:95:39:6a:14:95:87:9c:22:
dd:f6:e3:12:34:40:11:f1:5c:b0:3b:32:15:b2:e7:d6:72:71:
37:bd:6f:71:52:e5:4a:11:22:c9:8a:02:10:ff:fe:6d:e8:fc:
68:86:c9:85:e5:07:d6:d0:ff:36:6f:72:85:e7:9d:fe:2f:33:
64:15:4e:46:09:5e:28:84:49:f8:fb:50:0e:13:29:35:1b:f8:
5d:4d:fc:93:9c:e6:46:f4:55:0e:35:33:60:d6:6e:8f:f9:dd:
e0:72:7a:61:54:8c:31:1b:db:b9:64:f2:b1:90:06:09:98:20:
fb:8a:0c:9a:a1:f9:61:fe:41:b1:dc:3e:08:9a:bc:01:c9:93:
93:be:32:ed:18:e3:92:c2:ee:56:6c:bc:90:18:c1:20:ea:17:
4f:86:87:33:94:4a:7a:e7:83:61:fd:6c:e1:c8:3a:3b:d3:32:
91:ca:67:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+fdZq5pZKUpRNPxTp0Zk+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NWM5YTViY2I4MzQwMTA4YTQxYzg2Mjc2ZTFjYjk0YTYx
ZTdkYTkwHhcNMjUxMDE5MjIwMTIzWhcNMjUxMDIwMjIwMTIzWjAzMTEwLwYDVQQD
Eyg4MjY3ZTg1MDk2YjdmMTU3MjQ2M2YyZjQ3NmI0ZDI2MWU5ZTliNWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYG0/RBm9FdYQaQIXqYJl4wIZUAv
SQuSc9OooBCyjY6g3F2EYaKnB6yOMgoxKMFXZsYAEC4eFTvPCW7MOVqjiMYKRKV8
U4SonTi88kRw04xGs8Y18ub1fZHabxwaCuqe2RlCoacBaGRGOZROiu8LqST9rc+F
Zb0NVy6c9JscykoZh+XnOKkOKGy8vXc41CM3hpAJKBBVIiC2otat8tfqkKrEdsaI
m1ASegDjEAF+C4Kqh8ViYZEruwv9gsRmx0bc9boGI0kz3ogeI+V+zGLUb8IeXQIU
iYAsBLKXv7CJTmAty4D2pSPWZ9W4GYpUjHmqD7aOO8vw4Wh5puyPi9AatwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIJn6FCWt/FXJGPy9Ha00mHp6bWnMB8GA1UdIwQY
MBaAFDVcmlvLg0AQikHIYnbhy5SmHn2pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlZ5YVc4dURRQkNLUWNoaWR1SExsS1llZmFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8zZjQyNmYtNzllZS00Y2IyLWFiMTct
MzBkNjRmZjcwYjkwLzEvTlZ5YVc4dURRQkNLUWNoaWR1SExsS1llZmFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS8zZjQyNmYtNzllZS00Y2IyLWFiMTctMzBkNjRmZjcwYjkw
LzEvTlZ5YVc4dURRQkNLUWNoaWR1SExsS1llZmFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyC3gqcz1
/Iwz58d6aTP+RwEsnzAjH2/DImJn+Ty9Km1LCKIzig4Kf8kVZa9WGUhwGNFnmXOP
CbJh8ZRM8JOLqQKhQjmJytzG1ceyYi6nFD9F9JU5ahSVh5wi3fbjEjRAEfFcsDsy
FbLn1nJxN71vcVLlShEiyYoCEP/+bej8aIbJheUH1tD/Nm9yheed/i8zZBVORgle
KIRJ+PtQDhMpNRv4XU38k5zmRvRVDjUzYNZuj/nd4HJ6YVSMMRvbuWTysZAGCZgg
+4oMmqH5Yf5Bsdw+CJq8AcmTk74y7RjjksLuVmy8kBjBIOoXT4aHM5RKeueDYf1s
4cg6O9MykcpnaA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 23:56:27 2025 by rpki-client