Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft
File: aDLDLSJZATmRJg1TDZEgAxqu_NA.mft (raw, json)
Hash identifier: oo66tc7H6tdxJKq7tXugNgj8bCZ6UUTHKpS1U/aL4ps=
Subject key identifier: B8:B4:71:B4:95:31:FB:35:C7:D1:E8:BA:5A:97:3C:68:5B:72:EC:04
Authority key identifier: 68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
Certificate issuer: /CN=6832c32d2259013991260d530d9120031aaefcd0
Certificate serial: 019A522C4BA500B6ED36125DB577130D18C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft
Manifest number: 0CAE
Signing time: Wed 05 Nov 2025 04:00:25 +0000
Manifest this update: Wed 05 Nov 2025 04:00:25 +0000
Manifest next update: Thu 06 Nov 2025 04:00:25 +0000
Files and hashes: 1: 1-oXSUr0wwWM6bUdeuL56OFYZDI0.roa (hash: ncbwn+oJ9xxudk0G2RRlfn6p7YnDM2Topv72cCblM78=)
2: JmE2DotJFzee6ZEkJABlOvGfUi0.roa (hash: kTxgn5V7rU8GaSWrPY2IpRexVO3i36geJ6EK2nXDe04=)
3: aDLDLSJZATmRJg1TDZEgAxqu_NA.crl (hash: FBP/kgy1Lt5V2xz10Nf+N0gtuP510GH6CgSxZcQon04=)
4: cEY4_oxa006P5RDwnA1ZzqFve_U.roa (hash: aljeYfMZh5A8r1hZ1ho6VGSZLpMMc/WsIq8gaCshO9A=)
5: nTupOLnysHIU3jc5GcaguEHrGzQ.roa (hash: 7rA+K1p/TVuAVfQm4S6Vm6UJX0egR9dZCIKwnWvWs6k=)
6: nnxeUU87S1Fex4eT1VyslsBsqEs.roa (hash: reRLOJZlJItgnmYvk5ziSo/wJ6dbsJIWZ7vz95Z6+9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:4b:a5:00:b6:ed:36:12:5d:b5:77:13:0d:18:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6832c32d2259013991260d530d9120031aaefcd0
Validity
Not Before: Nov 5 04:00:25 2025 GMT
Not After : Nov 6 04:00:25 2025 GMT
Subject: CN=b8b471b49531fb35c7d1e8ba5a973c685b72ec04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:92:14:df:38:53:4b:af:23:46:2c:7e:7a:2e:
89:2b:b9:13:7e:c4:d8:b7:a5:7d:f4:6d:bb:ed:63:
e9:a8:8a:42:07:f4:97:97:7d:86:2c:5e:5f:bb:06:
13:40:49:90:00:cb:1b:42:4a:0b:ba:6f:7f:62:5f:
6c:12:af:a9:11:66:11:e3:cf:d1:70:f4:96:1e:9f:
2d:e4:bf:af:80:16:6f:17:36:8b:5f:2d:76:db:56:
bf:02:f2:a7:cd:12:1f:f4:77:e0:89:4f:b3:bc:8b:
1f:d5:15:5e:6b:7d:1e:57:76:34:68:06:1f:73:19:
f7:cf:8b:fd:86:79:cd:a2:31:13:9e:26:0a:5a:82:
b0:f5:34:7b:7c:cf:e9:2b:b4:3c:01:d0:e9:5b:c6:
e8:6e:07:a2:24:a9:b6:16:41:e9:1e:8d:91:c9:b8:
8e:db:1b:38:53:63:39:c8:a8:21:62:1d:c1:3d:9a:
af:f4:de:e7:7b:7f:91:44:7a:c4:52:2f:27:49:5e:
dc:92:61:8f:9c:3d:a4:9e:69:2b:50:d7:35:37:22:
6f:3f:71:96:87:07:5c:6c:37:c9:84:04:de:db:b9:
7f:cd:93:f6:63:22:bd:e5:8d:0c:e5:ee:e7:c3:91:
ad:75:35:bd:d7:22:77:39:76:ef:a3:2c:96:bd:7f:
2f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B4:71:B4:95:31:FB:35:C7:D1:E8:BA:5A:97:3C:68:5B:72:EC:04
X509v3 Authority Key Identifier:
keyid:68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:fd:2b:de:db:86:97:71:7e:ba:34:cc:c6:d3:77:f2:8e:6b:
2d:af:88:69:3f:b8:76:58:3d:98:58:5b:f6:dd:28:ec:db:d2:
a5:22:b4:cd:89:1c:bf:26:ce:46:8f:5d:94:c9:d2:5f:38:c1:
5e:e3:b5:65:f1:6b:a8:ac:33:95:56:f2:e3:cc:4b:47:0e:36:
e8:18:4a:8f:15:9d:5d:e1:0c:4e:93:15:8d:f0:a3:bc:96:f0:
e4:90:b6:c6:a1:72:4c:99:6e:a0:05:d6:24:23:52:cc:a9:6b:
33:32:b2:24:c1:9b:53:3a:8f:2a:c5:4a:59:bd:d8:79:3f:62:
5e:11:b4:79:db:31:f2:bf:7e:d4:8a:0e:4e:e5:fb:13:cf:a3:
d6:85:eb:58:16:ee:f1:e4:98:b4:13:7f:3c:2a:38:24:a7:51:
2e:26:bf:c3:7b:8a:52:f2:26:14:96:98:21:64:fa:1d:44:22:
3f:e2:b9:20:ff:96:cd:ee:b4:75:e5:77:ce:83:4a:41:cd:2a:
d8:1f:2e:b3:ce:04:97:ad:69:aa:f9:3d:57:eb:78:86:a2:ae:
65:09:6f:e3:e7:ec:f1:35:4e:b3:6a:2d:41:71:8b:73:d4:ed:
42:8e:11:a7:2a:1c:22:12:32:55:c4:17:bc:48:f7:ab:24:65:
31:17:27:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpSLEulALbtNhJdtXcTDRjCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzJjMzJkMjI1OTAxMzk5MTI2MGQ1MzBkOTEyMDAzMWFh
ZWZjZDAwHhcNMjUxMTA1MDQwMDI1WhcNMjUxMTA2MDQwMDI1WjAzMTEwLwYDVQQD
EyhiOGI0NzFiNDk1MzFmYjM1YzdkMWU4YmE1YTk3M2M2ODViNzJlYzA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZIU3zhTS68jRix+ei6JK7kTfsTY
t6V99G277WPpqIpCB/SXl32GLF5fuwYTQEmQAMsbQkoLum9/Yl9sEq+pEWYR48/R
cPSWHp8t5L+vgBZvFzaLXy1221a/AvKnzRIf9HfgiU+zvIsf1RVea30eV3Y0aAYf
cxn3z4v9hnnNojETniYKWoKw9TR7fM/pK7Q8AdDpW8bobgeiJKm2FkHpHo2RybiO
2xs4U2M5yKghYh3BPZqv9N7ne3+RRHrEUi8nSV7ckmGPnD2knmkrUNc1NyJvP3GW
hwdcbDfJhATe27l/zZP2YyK95Y0M5e7nw5GtdTW91yJ3OXbvoyyWvX8vyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLi0cbSVMfs1x9HoulqXPGhbcuwEMB8GA1UdIwQY
MBaAFGgywy0iWQE5kSYNUw2RIAMarvzQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURMRExTSlpBVG1SSmcxVERaRWdBeHF1X05BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85NGI2NmUtM2UwZC00MzMyLWFiNGYt
NzcwZjhlYWIyYWU3LzEvYURMRExTSlpBVG1SSmcxVERaRWdBeHF1X05BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC85NGI2NmUtM2UwZC00MzMyLWFiNGYtNzcwZjhlYWIyYWU3
LzEvYURMRExTSlpBVG1SSmcxVERaRWdBeHF1X05BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATP0r3tuG
l3F+ujTMxtN38o5rLa+IaT+4dlg9mFhb9t0o7NvSpSK0zYkcvybORo9dlMnSXzjB
XuO1ZfFrqKwzlVby48xLRw426BhKjxWdXeEMTpMVjfCjvJbw5JC2xqFyTJluoAXW
JCNSzKlrMzKyJMGbUzqPKsVKWb3YeT9iXhG0edsx8r9+1IoOTuX7E8+j1oXrWBbu
8eSYtBN/PCo4JKdRLia/w3uKUvImFJaYIWT6HUQiP+K5IP+Wze60deV3zoNKQc0q
2B8us84El61pqvk9V+t4hqKuZQlv4+fs8TVOs2otQXGLc9TtQo4RpyocIhIyVcQX
vEj3qyRlMRcnEw==
-----END CERTIFICATE-----
Generated at Wed Nov 5 11:09:20 2025 by rpki-client