Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
File: MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft (raw, json)
Hash identifier: g8sV28NhbFKKrXkw7fWtBerQOtWUczcifBA8DtSE7p8=
Subject key identifier: 7D:4D:F3:4F:23:50:94:F5:4C:7D:E1:46:27:30:4E:97:AE:4B:27:DC
Authority key identifier: 30:A2:42:CF:6C:15:29:AA:A0:69:33:67:E4:4C:84:A0:7D:8B:0C:9F
Certificate issuer: /CN=30a242cf6c1529aaa0693367e44c84a07d8b0c9f
Certificate serial: 019A71B88559F1FF5428BCF9767633F96294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
Manifest number: 0AA6
Signing time: Tue 11 Nov 2025 07:01:49 +0000
Manifest this update: Tue 11 Nov 2025 07:01:49 +0000
Manifest next update: Wed 12 Nov 2025 07:01:49 +0000
Files and hashes: 1: MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl (hash: vh1AwM/iJj26XoPZQTPDeMTwkGDODyZvJ8ZnVuu1VVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:85:59:f1:ff:54:28:bc:f9:76:76:33:f9:62:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a242cf6c1529aaa0693367e44c84a07d8b0c9f
Validity
Not Before: Nov 11 07:01:49 2025 GMT
Not After : Nov 12 07:01:49 2025 GMT
Subject: CN=7d4df34f235094f54c7de14627304e97ae4b27dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:10:cf:fb:c7:ae:90:64:ec:5f:10:38:ac:b4:
13:5d:34:86:31:aa:e9:98:9f:b6:66:91:3a:e0:39:
10:f1:d1:a1:b4:8f:2d:ea:1f:91:47:6f:3c:19:6b:
5c:08:40:a4:92:32:ee:e6:09:6b:df:bb:fc:7f:77:
4f:7b:2f:8e:06:28:f0:9f:d2:45:9c:2c:d6:f8:19:
43:f4:7a:b1:eb:3a:ee:c3:c1:9f:09:73:5f:43:ee:
d2:9d:83:01:aa:6d:62:18:39:db:64:6f:8a:20:f3:
75:9e:f6:4d:e2:1d:53:c1:78:de:2b:ed:a8:04:54:
1c:58:b0:03:23:ae:9f:3c:ee:eb:fa:35:ef:15:97:
e1:5c:b7:7e:53:7b:d9:51:1a:94:ff:f9:38:54:3c:
2d:ff:76:e7:17:1d:4d:bc:28:47:2e:95:25:17:83:
36:c6:19:d5:b1:68:81:c3:5f:e8:81:fc:26:f5:b9:
dc:b4:45:e3:e8:e2:f1:05:d1:e9:be:48:24:94:03:
2d:4b:c5:5f:e9:69:63:28:83:4f:a4:aa:70:ee:26:
f2:39:8d:61:09:68:3c:4f:f1:6f:7d:52:dc:91:57:
62:cb:43:0e:50:ef:be:cd:75:07:44:20:7f:8d:f8:
c2:9d:00:f7:32:ab:7c:3e:42:d9:ef:48:66:e4:52:
f3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4D:F3:4F:23:50:94:F5:4C:7D:E1:46:27:30:4E:97:AE:4B:27:DC
X509v3 Authority Key Identifier:
keyid:30:A2:42:CF:6C:15:29:AA:A0:69:33:67:E4:4C:84:A0:7D:8B:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:80:67:1c:ec:90:d9:05:4c:8b:49:3f:de:41:b3:ce:12:54:
1f:aa:fb:8b:cd:c4:7e:54:70:60:e4:95:ca:54:5d:ac:c8:dd:
fb:6a:9f:2a:bf:a3:57:12:d2:17:fb:06:ed:02:8d:43:b9:6b:
40:2d:a6:25:b5:6a:c0:ed:f6:ac:c6:ab:13:e9:c2:df:01:72:
ae:66:78:7b:27:5d:71:14:ef:7e:37:36:fe:a2:e4:26:27:1a:
e6:12:c6:eb:84:e6:0e:d1:cb:2a:8f:90:86:7c:d6:80:32:e2:
25:1f:90:98:3e:8d:cb:5e:f6:54:be:03:b5:50:61:f7:cc:5e:
75:75:df:cc:86:65:82:ea:7d:14:7c:87:fb:49:54:b4:0b:a7:
7b:68:19:cc:e4:62:f8:ac:4d:21:7d:ff:14:2f:29:8f:29:b5:
51:10:fd:42:11:07:0e:5a:4d:99:a1:22:28:2c:9a:fb:ed:07:
ed:33:7e:ae:c1:6b:e7:2f:4b:7a:43:ac:3c:c9:0b:88:1d:90:
4b:18:c0:1b:1f:fa:24:ef:45:d4:2b:be:fe:07:97:ca:1b:a0:
09:d9:12:a4:1b:5a:c4:de:f4:bb:4f:05:d1:13:a1:20:ab:24:
29:00:e8:aa:9e:51:ad:ac:41:c2:81:6f:b3:44:c5:d7:14:a9:
34:2e:34:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuIVZ8f9UKLz5dnYz+WKUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYTI0MmNmNmMxNTI5YWFhMDY5MzM2N2U0NGM4NGEwN2Q4
YjBjOWYwHhcNMjUxMTExMDcwMTQ5WhcNMjUxMTEyMDcwMTQ5WjAzMTEwLwYDVQQD
Eyg3ZDRkZjM0ZjIzNTA5NGY1NGM3ZGUxNDYyNzMwNGU5N2FlNGIyN2RjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxDP+8eukGTsXxA4rLQTXTSGMarp
mJ+2ZpE64DkQ8dGhtI8t6h+RR288GWtcCECkkjLu5glr37v8f3dPey+OBijwn9JF
nCzW+BlD9Hqx6zruw8GfCXNfQ+7SnYMBqm1iGDnbZG+KIPN1nvZN4h1TwXjeK+2o
BFQcWLADI66fPO7r+jXvFZfhXLd+U3vZURqU//k4VDwt/3bnFx1NvChHLpUlF4M2
xhnVsWiBw1/ogfwm9bnctEXj6OLxBdHpvkgklAMtS8Vf6WljKINPpKpw7ibyOY1h
CWg8T/FvfVLckVdiy0MOUO++zXUHRCB/jfjCnQD3Mqt8PkLZ70hm5FLzgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH1N808jUJT1TH3hRicwTpeuSyfcMB8GA1UdIwQY
MBaAFDCiQs9sFSmqoGkzZ+RMhKB9iwyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUtKQ3oyd1ZLYXFnYVRObjVFeUVvSDJMREo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8xN2NkODYtN2ZiYi00MDhmLWEyOGMt
ZmEyNjc2ZmUzOGZkLzEvTUtKQ3oyd1ZLYXFnYVRObjVFeUVvSDJMREo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC8xN2NkODYtN2ZiYi00MDhmLWEyOGMtZmEyNjc2ZmUzOGZk
LzEvTUtKQ3oyd1ZLYXFnYVRObjVFeUVvSDJMREo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoIBnHOyQ
2QVMi0k/3kGzzhJUH6r7i83EflRwYOSVylRdrMjd+2qfKr+jVxLSF/sG7QKNQ7lr
QC2mJbVqwO32rMarE+nC3wFyrmZ4eyddcRTvfjc2/qLkJica5hLG64TmDtHLKo+Q
hnzWgDLiJR+QmD6Ny172VL4DtVBh98xedXXfzIZlgup9FHyH+0lUtAune2gZzORi
+KxNIX3/FC8pjym1URD9QhEHDlpNmaEiKCya++0H7TN+rsFr5y9LekOsPMkLiB2Q
SxjAGx/6JO9F1Cu+/geXyhugCdkSpBtaxN70u08F0ROhIKskKQDoqp5RraxBwoFv
s0TF1xSpNC404Q==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:17:39 2025 by rpki-client