Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
File: NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft (raw, json)
Hash identifier: q+xygfux1x+mZBBYjlWM/MeWbGBi+JYxnuI1GnrPtJo=
Subject key identifier: 6C:DF:DD:41:F7:95:34:8C:24:5E:0F:8D:F0:B5:7A:8D:34:1A:70:72
Authority key identifier: 34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76
Certificate issuer: /CN=34803a2cf290b0bdc69addc003d564a234aa4f76
Certificate serial: 019A526349BD25BC91D9458235C06A6D4E83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
Manifest number: 11A4
Signing time: Wed 05 Nov 2025 05:00:29 +0000
Manifest this update: Wed 05 Nov 2025 05:00:29 +0000
Manifest next update: Thu 06 Nov 2025 05:00:29 +0000
Files and hashes: 1: JscmxGl_L2E7JnV0mfv32RHUpNw.roa (hash: 8j6EFW05T3ckFd0k6CAkZlDvS05KieVcVNbYKlWGlos=)
2: NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl (hash: MuwJjTzlsuzTUA1W9y8ZoiuA+/UocFfJyT4A/gR09EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:63:49:bd:25:bc:91:d9:45:82:35:c0:6a:6d:4e:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34803a2cf290b0bdc69addc003d564a234aa4f76
Validity
Not Before: Nov 5 05:00:29 2025 GMT
Not After : Nov 6 05:00:29 2025 GMT
Subject: CN=6cdfdd41f795348c245e0f8df0b57a8d341a7072
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a2:60:55:69:0f:fb:8c:62:f8:1f:95:74:da:
55:6f:a2:b5:99:ec:b4:ff:04:b2:7a:ff:4b:8c:f6:
e4:45:a4:e9:89:45:6a:ce:e6:04:b3:67:57:30:68:
c1:d0:81:51:b5:60:ce:d8:10:97:97:d1:c2:7a:1e:
f0:ad:60:ed:72:5d:70:4a:85:da:f4:ed:d9:7a:8c:
89:d9:d1:5a:27:b1:32:9b:2a:50:5c:2a:bd:b6:22:
8e:76:e1:8b:58:95:63:3f:f3:3f:56:94:fc:a3:a1:
28:a3:02:bc:91:0f:3d:ab:7a:24:da:94:2c:88:b2:
3a:73:3a:21:11:e3:4c:ae:e0:c7:a2:d7:c7:fd:53:
e7:03:71:4b:67:58:2c:a3:68:7d:11:5e:cc:11:3e:
10:8f:ef:34:f2:cd:b5:48:44:5d:f0:1f:d4:a5:62:
94:ce:29:22:62:8a:b2:65:4a:e4:ff:c6:b4:d4:78:
ea:94:de:dd:6c:f3:a8:72:57:58:ef:e8:64:3e:c3:
2f:72:da:33:4a:00:fd:65:6e:59:78:ca:5b:a7:b7:
d0:d8:25:20:a2:31:29:67:2f:16:49:a3:9b:a3:17:
2f:fa:a4:23:61:11:9d:79:10:75:b8:88:21:5d:00:
c3:93:bb:86:8b:46:4b:7d:d1:77:70:9e:1f:df:56:
fb:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DF:DD:41:F7:95:34:8C:24:5E:0F:8D:F0:B5:7A:8D:34:1A:70:72
X509v3 Authority Key Identifier:
keyid:34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:15:71:c3:e7:1d:8e:06:28:14:b0:bb:9b:b5:15:c5:b4:78:
0d:cf:9d:ad:76:24:80:91:ac:f3:7f:52:50:21:82:70:25:18:
be:17:d7:26:ed:40:e3:60:a5:52:a2:29:02:44:cc:bc:d2:75:
19:49:42:de:08:d9:57:b9:56:65:f8:ac:c9:59:83:64:4a:08:
e3:a4:73:76:ec:f4:74:99:74:6d:04:44:b6:95:5c:42:b0:1a:
4c:89:34:65:1f:41:60:30:89:7c:86:af:88:5c:d1:ac:7c:ef:
ec:44:b3:84:ba:d4:b2:92:fc:32:e8:8d:e5:88:8d:2b:ea:eb:
a5:da:0f:13:ab:a2:6b:57:56:12:53:3b:fc:26:70:0d:cb:7d:
4b:32:fc:4c:55:11:92:7c:01:ed:3a:db:e9:21:ef:f8:be:eb:
2a:a8:30:88:d5:cc:ce:31:67:69:e3:39:a5:a1:e3:35:31:e4:
41:54:50:3a:ab:d7:39:40:75:4e:c8:32:72:70:f2:cc:7d:62:
24:ee:70:03:ab:33:b3:2b:5e:f7:07:3c:a2:46:b1:56:83:65:
4d:63:09:58:25:ec:6b:d3:3e:8c:0f:ba:32:c5:24:2a:16:00:
ae:bc:13:c5:e7:dd:d3:4a:7c:4c:ae:24:96:c6:5c:74:c3:85:
01:ef:a4:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:12:16 2025 by rpki-client