Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
File: gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft (raw, json)
Hash identifier: xGXOgIPVZ3eOGV9fujO3Jc74rIKhF2cFzeum/I6O+zo=
Subject key identifier: EC:03:8C:CE:24:F0:D0:70:FA:74:5D:C2:F6:B6:0A:DF:3A:72:B3:84
Authority key identifier: 81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
Certificate issuer: /CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Certificate serial: 019A4EF439EE597DB4C39E5E89969988E217
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
Manifest number: 107B
Signing time: Tue 04 Nov 2025 13:00:19 +0000
Manifest this update: Tue 04 Nov 2025 13:00:19 +0000
Manifest next update: Wed 05 Nov 2025 13:00:19 +0000
Files and hashes: 1: gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl (hash: I0fj0HLG9/8sIv0AkFzTJe0KZykQmtnoH4wlnaSiHRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:39:ee:59:7d:b4:c3:9e:5e:89:96:99:88:e2:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Validity
Not Before: Nov 4 13:00:19 2025 GMT
Not After : Nov 5 13:00:19 2025 GMT
Subject: CN=ec038cce24f0d070fa745dc2f6b60adf3a72b384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:15:d2:5b:08:7e:c5:dd:1a:56:a4:a8:01:e8:
a5:03:e3:78:0a:ae:4c:b1:94:c6:90:d7:6c:0a:ce:
ab:da:c1:71:be:f8:04:5e:32:a4:8f:2b:a7:ac:93:
24:00:98:a3:c1:a9:43:75:e4:24:e7:63:08:80:03:
ce:d7:e6:2f:9b:a0:06:81:48:f9:15:27:3a:ac:ee:
7c:d5:66:30:ee:54:6c:68:fc:c8:f5:97:ba:b5:e6:
03:69:ca:4d:69:e4:1f:ff:54:44:4c:76:65:cc:dc:
92:59:85:70:a0:4a:27:e8:5e:c4:4b:71:a3:bd:7d:
38:aa:24:8a:d1:a7:d1:bb:90:ca:9e:d9:86:73:06:
9e:21:bf:28:a6:ae:70:8a:88:81:f3:aa:9e:f9:9f:
ee:dc:61:77:0e:85:35:3a:7b:a9:32:96:f1:62:93:
95:11:a4:ef:70:a1:62:e4:d6:e0:4c:da:71:46:23:
ab:55:89:94:77:67:2d:19:97:05:87:ea:87:19:b8:
9e:56:47:13:3f:fb:c0:5b:cd:f0:34:30:78:b1:be:
af:8c:c0:c6:1e:0b:d1:60:8b:e4:22:58:ce:4f:91:
0e:d7:31:cd:0f:1c:77:e8:a7:75:50:c3:c6:b4:db:
d9:ac:8a:e9:02:18:46:75:c5:4d:5d:7a:7d:4c:d1:
b0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:03:8C:CE:24:F0:D0:70:FA:74:5D:C2:F6:B6:0A:DF:3A:72:B3:84
X509v3 Authority Key Identifier:
keyid:81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:56:a6:4a:ee:93:bf:f0:a5:b6:d8:2f:97:57:f4:bd:27:0a:
4a:18:ca:63:c6:31:46:1c:a4:00:d9:52:a9:3b:81:31:23:1f:
23:a8:90:35:2c:89:99:33:98:37:cd:79:02:4c:47:39:ac:a3:
11:87:97:43:40:3a:ef:6e:93:8e:ab:32:be:15:76:33:24:ca:
e8:fe:3e:62:22:e9:80:eb:a7:e3:56:8a:b8:d9:b5:b1:b1:7e:
08:6b:80:0e:8c:28:fa:c0:d1:4b:d3:7f:55:c8:05:57:0e:a2:
d4:4b:7d:28:01:2e:b9:99:9c:04:36:4c:16:ec:2d:d9:22:ba:
e8:ca:38:4f:87:64:0e:1d:ee:a5:9e:27:36:52:11:29:5f:7c:
d5:15:a9:7d:e6:58:1e:e0:b8:98:bb:7d:d2:e4:2b:ec:69:72:
12:b7:07:f8:02:27:bf:bf:0c:45:9c:a0:22:05:4d:6a:cd:40:
c6:48:7d:4d:02:66:bc:79:47:25:a4:71:2d:71:83:37:96:fc:
1f:fe:bd:3c:94:2b:73:cf:9f:a4:87:df:f4:05:19:76:de:0b:
78:43:e6:54:75:ba:ed:11:ac:27:b9:b1:d1:93:82:bb:a3:14:
0d:8b:c3:bb:b2:2c:f0:82:a2:6b:a0:eb:99:7a:d0:ba:04:92:
3d:d0:08:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9DnuWX20w55eiZaZiOIXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxY2QwMjYyYTIyMWMzNWE2N2NmMTczYTYwZDFlY2Q5YWZh
YmRkYjUwHhcNMjUxMTA0MTMwMDE5WhcNMjUxMTA1MTMwMDE5WjAzMTEwLwYDVQQD
EyhlYzAzOGNjZTI0ZjBkMDcwZmE3NDVkYzJmNmI2MGFkZjNhNzJiMzg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhXSWwh+xd0aVqSoAeilA+N4Cq5M
sZTGkNdsCs6r2sFxvvgEXjKkjyunrJMkAJijwalDdeQk52MIgAPO1+Yvm6AGgUj5
FSc6rO581WYw7lRsaPzI9Ze6teYDacpNaeQf/1RETHZlzNySWYVwoEon6F7ES3Gj
vX04qiSK0afRu5DKntmGcwaeIb8opq5wioiB86qe+Z/u3GF3DoU1OnupMpbxYpOV
EaTvcKFi5NbgTNpxRiOrVYmUd2ctGZcFh+qHGbieVkcTP/vAW83wNDB4sb6vjMDG
HgvRYIvkIljOT5EO1zHNDxx36Kd1UMPGtNvZrIrpAhhGdcVNXXp9TNGw3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOwDjM4k8NBw+nRdwva2Ct86crOEMB8GA1UdIwQY
MBaAFIHNAmKiIcNaZ88XOmDR7Nmvq921MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2MwQ1lxSWh3MXBuenhjNllOSHMyYS1yM2JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83NDA4MTMtOTE4MC00MDZmLWFmNmEt
ZmRkMDk2MmNlYWFiLzEvZ2MwQ1lxSWh3MXBuenhjNllOSHMyYS1yM2JVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny83NDA4MTMtOTE4MC00MDZmLWFmNmEtZmRkMDk2MmNlYWFi
LzEvZ2MwQ1lxSWh3MXBuenhjNllOSHMyYS1yM2JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFFamSu6T
v/Clttgvl1f0vScKShjKY8YxRhykANlSqTuBMSMfI6iQNSyJmTOYN815AkxHOayj
EYeXQ0A6726TjqsyvhV2MyTK6P4+YiLpgOun41aKuNm1sbF+CGuADowo+sDRS9N/
VcgFVw6i1Et9KAEuuZmcBDZMFuwt2SK66Mo4T4dkDh3upZ4nNlIRKV981RWpfeZY
HuC4mLt90uQr7GlyErcH+AInv78MRZygIgVNas1Axkh9TQJmvHlHJaRxLXGDN5b8
H/69PJQrc8+fpIff9AUZdt4LeEPmVHW67RGsJ7mx0ZOCu6MUDYvDu7Is8IKia6Dr
mXrQugSSPdAI5w==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:20:32 2025 by rpki-client