Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
File: jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft (raw, json)
Hash identifier: mAFOGVoPX5+Xg0bW0YOJ977ogichHHRgOSne8yAMDEE=
Subject key identifier: DE:4E:D1:4C:BC:FE:8E:C0:41:FA:75:95:B6:34:DA:96:E9:02:FF:63
Authority key identifier: 8D:C2:97:EF:18:59:CA:33:75:97:06:BD:C6:EE:79:25:CF:A5:14:1D
Certificate issuer: /CN=8dc297ef1859ca33759706bdc6ee7925cfa5141d
Certificate serial: 019923A0E82C3E8B9D5D5714741A5A620F52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
Manifest number: 0E4F
Signing time: Sun 07 Sep 2025 10:02:51 +0000
Manifest this update: Sun 07 Sep 2025 10:02:51 +0000
Manifest next update: Mon 08 Sep 2025 10:02:51 +0000
Files and hashes: 1: jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl (hash: zgWArFPYStDnRv0JgYHjMB4H2aZ754pfynsea3RBsoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:e8:2c:3e:8b:9d:5d:57:14:74:1a:5a:62:0f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dc297ef1859ca33759706bdc6ee7925cfa5141d
Validity
Not Before: Sep 7 10:02:51 2025 GMT
Not After : Sep 8 10:02:51 2025 GMT
Subject: CN=de4ed14cbcfe8ec041fa7595b634da96e902ff63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9c:a8:50:28:89:48:11:0e:8a:90:bc:3c:f8:
60:e0:ac:d8:62:7f:0e:2c:61:40:2f:41:f8:f9:a4:
d2:f5:68:1a:74:b0:18:7e:cc:e7:f0:47:05:2b:43:
fb:29:08:2c:a1:6b:98:f2:11:f4:45:cb:6c:f8:4e:
82:4d:aa:0d:21:6d:04:c6:9c:6a:aa:02:41:d1:11:
30:3a:1f:c4:bf:77:9b:56:71:31:5d:d4:f8:5b:9f:
36:4d:7c:c5:45:9c:2f:2c:33:e6:ce:ea:80:ec:5e:
1c:bd:c0:87:b1:a4:f7:73:fe:fa:76:84:ae:db:d2:
1b:9f:f9:67:b0:2a:0e:ff:24:31:71:17:aa:8a:54:
1f:29:bd:1f:6c:3a:a1:91:38:18:91:28:12:08:df:
39:ab:ce:e5:4d:9e:d0:29:13:b9:71:93:33:5e:c7:
3e:60:97:73:df:18:e7:0a:46:d6:d0:bc:cd:9c:cb:
bb:f1:a5:92:de:40:70:ec:39:6f:0b:70:0a:1c:85:
14:cc:53:62:e6:0b:c3:23:f1:d7:b7:7e:9e:58:fa:
e6:ac:c7:cf:6d:01:f6:2d:8a:16:af:27:1e:ab:de:
11:ee:a0:58:fd:d2:22:13:8a:47:b7:5b:ef:0d:a8:
c5:2a:0b:d4:20:ea:44:15:cf:59:75:7e:64:d0:6b:
32:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:4E:D1:4C:BC:FE:8E:C0:41:FA:75:95:B6:34:DA:96:E9:02:FF:63
X509v3 Authority Key Identifier:
keyid:8D:C2:97:EF:18:59:CA:33:75:97:06:BD:C6:EE:79:25:CF:A5:14:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:17:51:f3:0a:3e:f7:e5:7a:4e:ec:02:f5:8e:ab:dd:a7:dc:
27:50:f0:03:49:15:c5:c2:46:69:bd:51:f6:d0:5f:2e:65:4d:
6d:be:ef:01:fb:36:ed:5b:93:c6:3b:62:68:cd:97:59:bf:a7:
81:f2:33:a9:f0:e2:e7:36:d0:8e:df:91:6d:58:dc:0b:74:2d:
46:54:a7:11:03:18:2f:ed:a8:1d:4c:81:51:dd:bc:17:57:56:
19:02:91:df:34:85:7c:0f:6e:43:1b:39:57:10:f4:66:37:8e:
28:95:4b:a1:21:bb:c2:d0:44:ec:5b:42:ff:3e:86:3e:6e:8d:
aa:b5:08:7b:71:43:77:22:f2:91:f4:33:58:73:ed:68:d5:d1:
b9:5e:cf:ac:af:d8:02:e3:b5:e1:34:09:7b:3c:5c:99:3c:28:
13:44:d3:c7:3d:57:d7:1d:84:17:2d:6f:96:86:81:bd:66:17:
cd:d1:db:66:64:48:36:bc:0a:ca:e6:8a:8c:05:b8:41:63:67:
03:9a:49:4b:92:3a:09:b9:fd:d9:91:b8:22:c0:e5:da:cb:85:
72:a1:00:38:04:6a:6e:1c:67:ed:6e:6c:3c:92:c8:01:63:42:
86:90:fd:03:81:cf:47:f2:a8:d7:00:41:7e:96:f0:2f:49:ef:
04:bc:a1:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjoOgsPoudXVcUdBpaYg9SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkYzI5N2VmMTg1OWNhMzM3NTk3MDZiZGM2ZWU3OTI1Y2Zh
NTE0MWQwHhcNMjUwOTA3MTAwMjUxWhcNMjUwOTA4MTAwMjUxWjAzMTEwLwYDVQQD
EyhkZTRlZDE0Y2JjZmU4ZWMwNDFmYTc1OTViNjM0ZGE5NmU5MDJmZjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJyoUCiJSBEOipC8PPhg4KzYYn8O
LGFAL0H4+aTS9WgadLAYfszn8EcFK0P7KQgsoWuY8hH0Rcts+E6CTaoNIW0Expxq
qgJB0REwOh/Ev3ebVnExXdT4W582TXzFRZwvLDPmzuqA7F4cvcCHsaT3c/76doSu
29Ibn/lnsCoO/yQxcReqilQfKb0fbDqhkTgYkSgSCN85q87lTZ7QKRO5cZMzXsc+
YJdz3xjnCkbW0LzNnMu78aWS3kBw7DlvC3AKHIUUzFNi5gvDI/HXt36eWPrmrMfP
bQH2LYoWryceq94R7qBY/dIiE4pHt1vvDajFKgvUIOpEFc9ZdX5k0GsysQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN5O0Uy8/o7AQfp1lbY02pbpAv9jMB8GA1UdIwQY
MBaAFI3Cl+8YWcozdZcGvcbueSXPpRQdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamNLWDd4aFp5ak4xbHdhOXh1NTVKYy1sRkIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9hYWFmOTktYjFjNS00YmI1LTg5Mjgt
YjViYzc0Y2FhNDAyLzEvamNLWDd4aFp5ak4xbHdhOXh1NTVKYy1sRkIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9hYWFmOTktYjFjNS00YmI1LTg5MjgtYjViYzc0Y2FhNDAy
LzEvamNLWDd4aFp5ak4xbHdhOXh1NTVKYy1sRkIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlRdR8wo+
9+V6TuwC9Y6r3afcJ1DwA0kVxcJGab1R9tBfLmVNbb7vAfs27VuTxjtiaM2XWb+n
gfIzqfDi5zbQjt+RbVjcC3QtRlSnEQMYL+2oHUyBUd28F1dWGQKR3zSFfA9uQxs5
VxD0ZjeOKJVLoSG7wtBE7FtC/z6GPm6NqrUIe3FDdyLykfQzWHPtaNXRuV7PrK/Y
AuO14TQJezxcmTwoE0TTxz1X1x2EFy1vloaBvWYXzdHbZmRINrwKyuaKjAW4QWNn
A5pJS5I6Cbn92ZG4IsDl2suFcqEAOARqbhxn7W5sPJLIAWNChpD9A4HPR/Ko1wBB
fpbwL0nvBLyhDw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:08:23 2025 by rpki-client