Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.mft
File: NeZ2RZTgDZq4AXiTxxCSz1FrEB8.mft (raw, json)
Hash identifier: fRjQWGO4kbn2AduuCGmxvwdDUfASzPlx/dAYhBHa3YQ=
Subject key identifier: 7E:03:94:28:28:11:9E:26:D4:79:61:89:37:B9:AC:D1:A2:36:B9:AF
Authority key identifier: 35:E6:76:45:94:E0:0D:9A:B8:01:78:93:C7:10:92:CF:51:6B:10:1F
Certificate issuer: /CN=35e6764594e00d9ab8017893c71092cf516b101f
Certificate serial: 019A5187953BB2902CC3D78325F269B531AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.mft
Manifest number: 169C
Signing time: Wed 05 Nov 2025 01:00:31 +0000
Manifest this update: Wed 05 Nov 2025 01:00:31 +0000
Manifest next update: Thu 06 Nov 2025 01:00:31 +0000
Files and hashes: 1: NeZ2RZTgDZq4AXiTxxCSz1FrEB8.crl (hash: Eueq81F2iL3xNOu1cbq83ZFrpfQtaabogOtYW6qceus=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:95:3b:b2:90:2c:c3:d7:83:25:f2:69:b5:31:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35e6764594e00d9ab8017893c71092cf516b101f
Validity
Not Before: Nov 5 01:00:31 2025 GMT
Not After : Nov 6 01:00:31 2025 GMT
Subject: CN=7e03942828119e26d479618937b9acd1a236b9af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:11:fa:47:2b:99:43:8e:89:c5:fd:9e:03:a6:
52:88:00:97:f6:04:3e:64:62:22:37:08:4c:36:eb:
b9:f0:ca:66:71:73:70:5b:44:fc:45:fa:9c:59:19:
4d:c4:02:71:fb:d5:64:a5:8c:9a:5e:74:a3:33:25:
c5:fc:e4:65:62:06:86:27:ab:0c:df:b4:b9:b9:e2:
2a:5c:53:80:c0:82:1c:74:f8:c6:8a:5a:59:83:c2:
b1:a6:40:cc:f8:0b:9c:77:ee:b8:4b:02:cb:2e:3e:
98:d0:6e:89:ab:27:35:3f:aa:88:aa:d8:cb:58:18:
bc:d4:ff:ad:55:cc:b7:85:1b:91:c2:af:63:be:89:
7d:5b:f8:18:75:b2:db:fd:ef:ec:c8:9a:7e:3d:e1:
e2:69:51:f3:8f:a6:ee:e6:44:c3:0e:93:ea:ad:9e:
a9:80:83:ee:f4:36:5d:ee:f4:94:52:2c:c4:21:d4:
38:b1:48:32:40:9e:9f:09:ef:13:d5:14:cf:7e:6d:
b5:85:35:34:e8:e4:84:72:98:96:78:d3:f0:ba:ef:
21:80:56:f2:ba:3f:1d:e2:fa:74:c9:6a:fb:4b:ed:
83:18:52:5e:12:a5:46:4d:c6:3c:8d:20:cd:f9:51:
b3:33:c5:7c:6a:f8:81:18:65:08:58:e6:95:52:c5:
15:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:03:94:28:28:11:9E:26:D4:79:61:89:37:B9:AC:D1:A2:36:B9:AF
X509v3 Authority Key Identifier:
keyid:35:E6:76:45:94:E0:0D:9A:B8:01:78:93:C7:10:92:CF:51:6B:10:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:d1:64:79:73:97:fc:e6:02:51:44:48:82:ed:61:89:f7:05:
70:ba:53:f3:bf:9f:d4:68:bb:65:cd:35:c7:6f:97:89:c9:44:
5f:c8:0a:34:96:4f:ff:f0:e4:75:36:74:27:ba:3d:3e:7b:19:
67:7b:4e:37:84:b7:47:b9:40:29:9f:d1:47:f1:72:c0:7e:32:
c9:dc:cf:99:92:55:3d:bb:c7:60:2e:1d:00:0d:3e:13:7e:93:
4f:e9:f0:30:79:4b:98:eb:7b:22:e5:f4:6d:86:5f:2a:44:35:
8a:ec:5d:1c:e3:fc:64:db:40:55:08:4c:d1:f4:c4:a0:7f:29:
a2:e4:b3:11:b6:f9:19:e9:f3:4f:35:3d:5f:4c:56:d9:62:08:
0d:3b:f3:7a:02:43:56:b5:6b:70:fb:06:be:59:b8:d0:35:77:
d6:2a:3e:81:c7:a2:ec:3e:cf:eb:f5:f5:32:25:93:42:d5:e5:
49:78:4f:26:26:16:95:1d:d9:a4:c7:8d:18:c5:b0:78:5e:35:
38:f8:2e:ba:82:16:3d:93:06:3b:b1:14:49:87:4a:e7:71:37:
43:88:be:44:03:dc:2c:6f:ca:72:db:45:a6:51:68:ff:dc:ba:
4b:63:a5:7c:50:c0:04:01:94:96:c4:8a:06:55:16:ee:31:fc:
19:41:ec:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpRh5U7spAsw9eDJfJptTGsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1ZTY3NjQ1OTRlMDBkOWFiODAxNzg5M2M3MTA5MmNmNTE2
YjEwMWYwHhcNMjUxMTA1MDEwMDMxWhcNMjUxMTA2MDEwMDMxWjAzMTEwLwYDVQQD
Eyg3ZTAzOTQyODI4MTE5ZTI2ZDQ3OTYxODkzN2I5YWNkMWEyMzZiOWFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2xH6RyuZQ46Jxf2eA6ZSiACX9gQ+
ZGIiNwhMNuu58MpmcXNwW0T8RfqcWRlNxAJx+9VkpYyaXnSjMyXF/ORlYgaGJ6sM
37S5ueIqXFOAwIIcdPjGilpZg8KxpkDM+Aucd+64SwLLLj6Y0G6Jqyc1P6qIqtjL
WBi81P+tVcy3hRuRwq9jvol9W/gYdbLb/e/syJp+PeHiaVHzj6bu5kTDDpPqrZ6p
gIPu9DZd7vSUUizEIdQ4sUgyQJ6fCe8T1RTPfm21hTU06OSEcpiWeNPwuu8hgFby
uj8d4vp0yWr7S+2DGFJeEqVGTcY8jSDN+VGzM8V8aviBGGUIWOaVUsUVzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH4DlCgoEZ4m1HlhiTe5rNGiNrmvMB8GA1UdIwQY
MBaAFDXmdkWU4A2auAF4k8cQks9RaxAfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmVaMlJaVGdEWnE0QVhpVHh4Q1N6MUZyRUI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy80YzMxZjItOGYzMC00ZGJlLTkzOGQt
YjJmMGIxYmNhZTVjLzEvTmVaMlJaVGdEWnE0QVhpVHh4Q1N6MUZyRUI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy80YzMxZjItOGYzMC00ZGJlLTkzOGQtYjJmMGIxYmNhZTVj
LzEvTmVaMlJaVGdEWnE0QVhpVHh4Q1N6MUZyRUI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASNFkeXOX
/OYCUURIgu1hifcFcLpT87+f1Gi7Zc01x2+XiclEX8gKNJZP//DkdTZ0J7o9PnsZ
Z3tON4S3R7lAKZ/RR/FywH4yydzPmZJVPbvHYC4dAA0+E36TT+nwMHlLmOt7IuX0
bYZfKkQ1iuxdHOP8ZNtAVQhM0fTEoH8pouSzEbb5GenzTzU9X0xW2WIIDTvzegJD
VrVrcPsGvlm40DV31io+gcei7D7P6/X1MiWTQtXlSXhPJiYWlR3ZpMeNGMWweF41
OPguuoIWPZMGO7EUSYdK53E3Q4i+RAPcLG/KcttFplFo/9y6S2OlfFDABAGUlsSK
BlUW7jH8GUHstw==
-----END CERTIFICATE-----
Generated at Wed Nov 5 09:30:44 2025 by rpki-client