Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
File: NB--B1HiEYiTdNFdYxLCJPaV-qI.mft (raw, json)
Hash identifier: H6LF9u094/C9pXrqWxzfVt4BiADqgrP6uSqDkxM+TBE=
Subject key identifier: D1:78:35:E1:50:4F:5B:10:C0:3A:40:85:65:78:26:0C:DE:C8:B4:25
Authority key identifier: 34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
Certificate issuer: /CN=341fbe0751e211889374d15d6312c224f695faa2
Certificate serial: 019A559B84FF1BF05AC0F8F79A0DF96F27B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
Manifest number: 1037
Signing time: Wed 05 Nov 2025 20:00:46 +0000
Manifest this update: Wed 05 Nov 2025 20:00:46 +0000
Manifest next update: Thu 06 Nov 2025 20:00:46 +0000
Files and hashes: 1: Giw6c3ykUw3nYPNE5UpuuM_ybFY.roa (hash: 4QE8zLtdTCj1Z8B1PqQUFcIb6Is1jjshW97EzIqWBB0=)
2: NB--B1HiEYiTdNFdYxLCJPaV-qI.crl (hash: 8lRk07O/wFLGntRS0EeFethNv53rwVk3Y+JSuzVVbaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 20:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:55:9b:84:ff:1b:f0:5a:c0:f8:f7:9a:0d:f9:6f:27:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=341fbe0751e211889374d15d6312c224f695faa2
Validity
Not Before: Nov 5 20:00:46 2025 GMT
Not After : Nov 6 20:00:46 2025 GMT
Subject: CN=d17835e1504f5b10c03a40856578260cdec8b425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:39:e9:6b:13:71:e1:76:4e:3e:33:07:6f:a7:
69:38:ea:2b:e5:da:06:6d:23:35:07:7b:b6:65:df:
70:dd:71:52:35:fa:c3:eb:e1:68:aa:2f:94:c9:bf:
d3:39:b0:5f:39:70:11:ce:d0:aa:e2:f0:cb:ae:48:
66:07:f1:f8:bd:a6:9f:94:48:3f:11:8a:67:0b:2c:
c8:39:4e:42:97:06:46:25:32:9b:7a:95:77:22:dc:
a1:b9:3a:a8:02:c9:8c:33:bb:17:6f:70:63:94:bd:
fe:bd:48:d1:47:0c:b0:0e:23:57:37:dd:82:3b:ec:
39:8d:97:15:71:98:4f:dc:88:bb:2e:46:27:82:9d:
58:1c:1c:17:6d:28:5b:ef:89:c5:10:43:b4:9d:dd:
69:77:ff:95:7a:34:17:40:fa:fb:32:0c:97:0e:27:
a5:70:72:2b:e1:e2:2a:34:63:4a:b7:1d:f6:4f:17:
10:d1:80:64:9c:f0:73:f0:eb:72:7b:f9:30:86:c7:
8f:f6:04:67:a6:aa:55:9c:23:ec:17:ec:e4:5a:c8:
87:c0:0f:08:f1:2c:6e:26:2f:22:d1:07:83:0d:1c:
4f:1b:ed:5b:58:55:ba:cf:d6:90:dd:18:2d:e0:c1:
ad:9d:f3:f3:4c:7c:46:91:03:4e:d0:5e:83:cd:35:
a9:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:78:35:E1:50:4F:5B:10:C0:3A:40:85:65:78:26:0C:DE:C8:B4:25
X509v3 Authority Key Identifier:
keyid:34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:78:40:d0:bc:61:e1:76:f2:f9:9d:4d:e8:01:23:f6:ba:fa:
6d:9e:8f:6c:b6:5b:27:b6:df:ab:85:e9:d4:52:84:2e:97:36:
7d:d9:45:c1:ad:4e:bf:bd:92:97:db:6f:6c:b3:f3:d5:fa:92:
de:14:06:17:5b:0e:88:b3:e8:78:d3:9d:92:df:d7:c4:ea:eb:
8a:3b:5a:1d:b0:f5:14:74:f4:6a:4a:68:37:05:ca:d8:47:3d:
82:db:51:27:13:5c:d0:ff:8c:bd:7d:52:1c:aa:32:78:b9:0e:
42:b3:6d:4f:bb:91:94:74:de:a0:d5:a5:67:84:36:d3:c9:e7:
15:98:98:0d:b4:04:73:81:11:9b:80:89:cb:ce:a8:c6:83:b2:
86:c1:3c:0b:90:9e:f4:2c:10:9f:9b:85:9f:ee:a6:ae:b0:a6:
83:27:05:17:82:6b:a9:dd:b7:27:d7:21:a1:8b:b7:72:41:81:
b4:cb:10:3e:90:98:e5:26:1e:e6:71:4e:30:bd:a8:d4:a5:f2:
df:30:ed:be:47:54:fd:b4:66:2f:f9:6f:d4:60:80:88:e2:55:
75:f8:2e:c9:c4:56:48:8f:38:1e:2f:c0:d2:35:b2:b0:88:a5:
67:ae:d4:f6:90:db:c7:c1:02:98:bb:72:f6:60:07:2b:65:76:
42:01:23:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpVm4T/G/BawPj3mg35bye1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0MWZiZTA3NTFlMjExODg5Mzc0ZDE1ZDYzMTJjMjI0ZjY5
NWZhYTIwHhcNMjUxMTA1MjAwMDQ2WhcNMjUxMTA2MjAwMDQ2WjAzMTEwLwYDVQQD
EyhkMTc4MzVlMTUwNGY1YjEwYzAzYTQwODU2NTc4MjYwY2RlYzhiNDI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyznpaxNx4XZOPjMHb6dpOOor5doG
bSM1B3u2Zd9w3XFSNfrD6+Foqi+Uyb/TObBfOXARztCq4vDLrkhmB/H4vaaflEg/
EYpnCyzIOU5ClwZGJTKbepV3ItyhuTqoAsmMM7sXb3BjlL3+vUjRRwywDiNXN92C
O+w5jZcVcZhP3Ii7LkYngp1YHBwXbShb74nFEEO0nd1pd/+VejQXQPr7MgyXDiel
cHIr4eIqNGNKtx32TxcQ0YBknPBz8Otye/kwhseP9gRnpqpVnCPsF+zkWsiHwA8I
8SxuJi8i0QeDDRxPG+1bWFW6z9aQ3Rgt4MGtnfPzTHxGkQNO0F6DzTWpwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNF4NeFQT1sQwDpAhWV4JgzeyLQlMB8GA1UdIwQY
MBaAFDQfvgdR4hGIk3TRXWMSwiT2lfqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkItLUIxSGlFWWlUZE5GZFl4TENKUGFWLXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8wMTRhNjMtY2ExOC00MWRmLTkxZTkt
YzI4ZWU4NjlmYWEwLzEvTkItLUIxSGlFWWlUZE5GZFl4TENKUGFWLXFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi8wMTRhNjMtY2ExOC00MWRmLTkxZTktYzI4ZWU4NjlmYWEw
LzEvTkItLUIxSGlFWWlUZE5GZFl4TENKUGFWLXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWHhA0Lxh
4Xby+Z1N6AEj9rr6bZ6PbLZbJ7bfq4Xp1FKELpc2fdlFwa1Ov72Sl9tvbLPz1fqS
3hQGF1sOiLPoeNOdkt/XxOrrijtaHbD1FHT0akpoNwXK2Ec9gttRJxNc0P+MvX1S
HKoyeLkOQrNtT7uRlHTeoNWlZ4Q208nnFZiYDbQEc4ERm4CJy86oxoOyhsE8C5Ce
9CwQn5uFn+6mrrCmgycFF4Jrqd23J9choYu3ckGBtMsQPpCY5SYe5nFOML2o1KXy
3zDtvkdU/bRmL/lv1GCAiOJVdfguycRWSI84Hi/A0jWysIilZ67U9pDbx8ECmLty
9mAHK2V2QgEjdA==
-----END CERTIFICATE-----
Generated at Thu Nov 6 06:04:37 2025 by rpki-client