Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
File: 02jCohY2GiT97Jfx838uHRIHEIc.mft (raw, json)
Hash identifier: MJpth8pT+O6Ezwzg8wlX1/Iiy5gzRyX281kAXJQKj40=
Subject key identifier: 36:FA:48:EC:63:2C:A9:1D:AE:25:6A:54:6C:AF:9B:E4:DD:CA:6B:5E
Authority key identifier: D3:68:C2:A2:16:36:1A:24:FD:EC:97:F1:F3:7F:2E:1D:12:07:10:87
Certificate issuer: /CN=d368c2a216361a24fdec97f1f37f2e1d12071087
Certificate serial: 019A71134912D3879962D301467512F43B3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
Manifest number: 171B
Signing time: Tue 11 Nov 2025 04:01:20 +0000
Manifest this update: Tue 11 Nov 2025 04:01:20 +0000
Manifest next update: Wed 12 Nov 2025 04:01:20 +0000
Files and hashes: 1: 02jCohY2GiT97Jfx838uHRIHEIc.crl (hash: FdIRTp5nTbAIXNfrjrTHzRvuVaqbKYRjTbO7WiFkB8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:49:12:d3:87:99:62:d3:01:46:75:12:f4:3b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d368c2a216361a24fdec97f1f37f2e1d12071087
Validity
Not Before: Nov 11 04:01:20 2025 GMT
Not After : Nov 12 04:01:20 2025 GMT
Subject: CN=36fa48ec632ca91dae256a546caf9be4ddca6b5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ca:64:58:ce:17:51:f3:a9:34:58:ee:e6:07:
51:e0:bb:3f:51:94:d7:34:62:47:54:8a:9c:11:22:
fb:07:fb:e6:19:5e:93:97:e7:6d:bc:05:99:d6:36:
84:59:2c:3c:90:1b:ef:44:06:62:53:51:be:67:ab:
10:7e:58:1d:9e:c9:5e:47:ac:34:3f:48:16:a5:6b:
cd:41:fb:4c:cf:11:56:2f:af:98:af:47:89:cd:a5:
32:04:0e:ec:5c:89:da:b2:4f:c2:7f:1b:8f:ef:27:
4b:f8:ac:4a:37:69:1b:2d:81:b8:c9:af:4e:ca:b7:
8d:a4:d1:b7:10:f9:9e:34:4f:15:c4:75:5a:89:16:
7f:e1:31:54:f8:e7:94:92:9b:2e:ad:00:d1:28:b8:
4b:0f:52:80:eb:a9:8c:e5:fb:35:7d:1c:3b:41:f5:
a5:1c:b7:0b:dd:34:72:97:cc:6e:40:f0:e1:f8:e3:
a0:4a:80:ff:7e:b1:32:ec:a2:ed:9c:29:6d:a9:ab:
60:51:51:ca:95:87:12:86:ef:8e:10:75:f0:d0:0f:
22:36:50:9d:fe:5c:f6:ed:ed:45:10:e2:cf:d8:ff:
cf:3b:49:3c:3c:95:50:41:b5:25:f2:35:b9:b6:ae:
89:50:12:88:54:42:9f:6d:08:2f:16:2d:a8:29:3d:
f0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:FA:48:EC:63:2C:A9:1D:AE:25:6A:54:6C:AF:9B:E4:DD:CA:6B:5E
X509v3 Authority Key Identifier:
keyid:D3:68:C2:A2:16:36:1A:24:FD:EC:97:F1:F3:7F:2E:1D:12:07:10:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:18:45:49:68:9e:78:01:48:98:f8:30:1a:54:03:e1:46:3c:
dc:c3:d7:8b:bd:8c:24:48:69:e5:12:9d:0e:42:6b:b2:82:06:
dc:8e:3d:1d:bc:32:93:58:39:6a:ee:85:8f:96:07:86:54:5d:
0c:da:f3:da:9f:1c:81:20:db:67:ab:6f:a9:05:b7:5b:b9:91:
fb:24:b0:eb:4b:8c:fc:af:41:9d:a0:b0:d3:1d:54:fa:b6:b5:
35:ec:8e:c3:3b:9a:78:95:b8:6a:df:b0:4b:f7:8b:03:f9:db:
07:ac:fa:52:83:25:e8:36:b2:11:3b:71:96:24:96:57:a1:15:
a1:5c:35:d8:29:19:92:c6:8d:4e:73:d2:a9:28:96:53:ea:83:
1e:9c:65:d1:4c:d3:a0:86:5c:bc:58:64:f7:fd:05:50:b1:82:
1b:78:b2:c2:15:6e:5f:05:11:61:3a:01:d1:97:fc:b0:2a:c6:
94:6e:a3:ba:6f:8f:b5:c5:6b:b5:f3:bd:b4:5e:f6:b8:f4:f2:
b0:22:85:9a:55:ca:a4:87:34:9c:5c:ca:1e:8b:aa:44:84:6f:
34:b9:6c:fa:4e:d7:36:e9:24:4b:f6:76:6c:50:7c:4d:4d:aa:
07:eb:b7:29:99:d1:ef:53:b0:7e:0f:2a:cc:67:e2:b2:20:28:
8e:87:13:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxE0kS04eZYtMBRnUS9Ds8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNjhjMmEyMTYzNjFhMjRmZGVjOTdmMWYzN2YyZTFkMTIw
NzEwODcwHhcNMjUxMTExMDQwMTIwWhcNMjUxMTEyMDQwMTIwWjAzMTEwLwYDVQQD
EygzNmZhNDhlYzYzMmNhOTFkYWUyNTZhNTQ2Y2FmOWJlNGRkY2E2YjVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmspkWM4XUfOpNFju5gdR4Ls/UZTX
NGJHVIqcESL7B/vmGV6Tl+dtvAWZ1jaEWSw8kBvvRAZiU1G+Z6sQflgdnsleR6w0
P0gWpWvNQftMzxFWL6+Yr0eJzaUyBA7sXInask/CfxuP7ydL+KxKN2kbLYG4ya9O
yreNpNG3EPmeNE8VxHVaiRZ/4TFU+OeUkpsurQDRKLhLD1KA66mM5fs1fRw7QfWl
HLcL3TRyl8xuQPDh+OOgSoD/frEy7KLtnCltqatgUVHKlYcShu+OEHXw0A8iNlCd
/lz27e1FEOLP2P/PO0k8PJVQQbUl8jW5tq6JUBKIVEKfbQgvFi2oKT3wTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDb6SOxjLKkdriVqVGyvm+TdymteMB8GA1UdIwQY
MBaAFNNowqIWNhok/eyX8fN/Lh0SBxCHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDJqQ29oWTJHaVQ5N0pmeDgzOHVIUklIRUljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kMjJlZGYtZmI0OS00ZTAxLThmZDQt
OTAyMDhlMWYzZGU2LzEvMDJqQ29oWTJHaVQ5N0pmeDgzOHVIUklIRUljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9kMjJlZGYtZmI0OS00ZTAxLThmZDQtOTAyMDhlMWYzZGU2
LzEvMDJqQ29oWTJHaVQ5N0pmeDgzOHVIUklIRUljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvRhFSWie
eAFImPgwGlQD4UY83MPXi72MJEhp5RKdDkJrsoIG3I49Hbwyk1g5au6Fj5YHhlRd
DNrz2p8cgSDbZ6tvqQW3W7mR+ySw60uM/K9BnaCw0x1U+ra1NeyOwzuaeJW4at+w
S/eLA/nbB6z6UoMl6DayETtxliSWV6EVoVw12CkZksaNTnPSqSiWU+qDHpxl0UzT
oIZcvFhk9/0FULGCG3iywhVuXwURYToB0Zf8sCrGlG6jum+PtcVrtfO9tF72uPTy
sCKFmlXKpIc0nFzKHouqRIRvNLls+k7XNukkS/Z2bFB8TU2qB+u3KZnR71Owfg8q
zGfisiAojocTWw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:41:47 2025 by rpki-client