Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
File: JOuXPcgi1CNuy911UB0mxD4chzk.mft (raw, json)
Hash identifier: 0Z9sGpeLFha2JcOsFwCxkmXwQ4ueICWxP6ZkCUyR8h0=
Subject key identifier: ED:46:8C:0F:50:BD:10:D2:5D:4F:A9:F8:99:70:A6:09:0F:08:56:8E
Authority key identifier: 24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39
Certificate issuer: /CN=24eb973dc822d4236ecbdd75501d26c43e1c8739
Certificate serial: 019A4EF42B7799C60E5869EC59FF76412509
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
Manifest number: 0BB1
Signing time: Tue 04 Nov 2025 13:00:15 +0000
Manifest this update: Tue 04 Nov 2025 13:00:15 +0000
Manifest next update: Wed 05 Nov 2025 13:00:15 +0000
Files and hashes: 1: JOuXPcgi1CNuy911UB0mxD4chzk.crl (hash: Ds4LlAG5/Bq3vtOdWcB0/9QA3LQz6sHrSNlS3u89pDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:2b:77:99:c6:0e:58:69:ec:59:ff:76:41:25:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24eb973dc822d4236ecbdd75501d26c43e1c8739
Validity
Not Before: Nov 4 13:00:15 2025 GMT
Not After : Nov 5 13:00:15 2025 GMT
Subject: CN=ed468c0f50bd10d25d4fa9f89970a6090f08568e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bf:9c:5a:61:d5:16:bb:e4:eb:42:51:8f:0d:
ce:47:b2:c8:a8:93:47:43:65:65:e7:7c:56:47:00:
16:47:dd:99:dc:7b:2d:76:e9:bc:a1:0c:52:08:79:
03:77:08:d1:2a:8e:a8:66:c4:c2:c7:54:11:9b:d4:
2f:51:7c:f0:d6:8e:c0:9d:86:3c:30:57:87:64:f7:
31:da:31:b2:c0:2e:d4:2a:17:ba:3a:32:02:d9:c0:
b5:a9:4e:24:f3:96:8c:1d:cc:9f:ec:4b:62:4c:62:
d0:03:cf:47:3a:8e:b2:e1:16:fd:07:6f:b8:84:96:
bb:39:18:15:01:2b:3d:eb:be:82:8c:de:fe:ce:da:
b3:be:f7:a5:42:fe:1f:ec:b2:c0:bf:a6:cd:bd:ea:
5f:93:c8:8c:32:8c:ea:73:b7:b3:d7:91:6f:a7:af:
3f:5a:d3:2c:05:50:14:5d:81:08:17:56:18:90:2f:
86:3a:e4:a7:97:6b:99:88:51:b8:f4:5c:05:5e:17:
d4:80:c9:f6:e4:18:91:3f:7e:24:fd:02:eb:70:bc:
54:3b:1a:fd:fe:2d:59:c5:c7:59:da:6f:8c:d7:35:
d9:14:10:bf:71:e4:eb:4e:4e:16:67:6f:58:fa:6e:
31:94:1a:08:3f:59:73:ab:0a:82:1b:71:e8:b7:2d:
a0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:46:8C:0F:50:BD:10:D2:5D:4F:A9:F8:99:70:A6:09:0F:08:56:8E
X509v3 Authority Key Identifier:
keyid:24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:d2:3d:a7:72:5d:05:1f:25:0f:fc:d1:6c:44:c3:79:13:0d:
ef:ed:1a:58:17:cb:97:0d:3b:a7:cb:0a:c1:43:55:ae:5d:01:
36:08:32:af:7c:87:8f:09:00:22:92:57:9f:5f:5c:97:ad:70:
ea:c6:0d:4e:82:68:06:79:6a:19:1b:fd:5d:95:fd:ea:c4:fb:
ba:c5:e1:6d:ee:21:44:a4:2e:b3:7c:fe:95:0e:f5:bd:45:65:
4a:fd:0d:ed:c4:95:fb:06:d2:2d:c6:76:12:e3:6a:8b:1f:ac:
f4:b6:38:1b:2c:8c:1b:61:e9:de:b5:a5:e0:8c:05:da:a4:dc:
63:9e:35:e0:d9:fe:c3:28:60:60:0f:eb:d8:9c:7f:f8:08:29:
a7:bc:c4:b6:ff:48:94:4a:5d:32:07:64:9e:69:cd:9f:59:53:
f2:cb:12:d1:fa:46:9d:53:43:9b:2a:f6:ec:72:2a:d5:0a:bd:
ae:df:93:35:ba:b5:ce:bb:1d:10:10:a8:44:a0:47:51:e9:62:
10:75:99:76:bb:b7:d8:93:a5:71:6e:2b:e6:4f:5a:f7:3e:91:
11:f0:dd:b4:1b:7e:ff:9f:95:57:96:e4:f3:eb:be:46:3e:7f:
69:a2:1e:62:83:5a:1f:81:1b:f3:77:9d:f8:52:5f:cd:32:11:
b5:49:c8:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9Ct3mcYOWGnsWf92QSUJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0ZWI5NzNkYzgyMmQ0MjM2ZWNiZGQ3NTUwMWQyNmM0M2Ux
Yzg3MzkwHhcNMjUxMTA0MTMwMDE1WhcNMjUxMTA1MTMwMDE1WjAzMTEwLwYDVQQD
EyhlZDQ2OGMwZjUwYmQxMGQyNWQ0ZmE5Zjg5OTcwYTYwOTBmMDg1NjhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxb+cWmHVFrvk60JRjw3OR7LIqJNH
Q2Vl53xWRwAWR92Z3Hstdum8oQxSCHkDdwjRKo6oZsTCx1QRm9QvUXzw1o7AnYY8
MFeHZPcx2jGywC7UKhe6OjIC2cC1qU4k85aMHcyf7EtiTGLQA89HOo6y4Rb9B2+4
hJa7ORgVASs9676CjN7+ztqzvvelQv4f7LLAv6bNvepfk8iMMozqc7ez15Fvp68/
WtMsBVAUXYEIF1YYkC+GOuSnl2uZiFG49FwFXhfUgMn25BiRP34k/QLrcLxUOxr9
/i1ZxcdZ2m+M1zXZFBC/ceTrTk4WZ29Y+m4xlBoIP1lzqwqCG3Hoty2gIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO1GjA9QvRDSXU+p+JlwpgkPCFaOMB8GA1UdIwQY
MBaAFCTrlz3IItQjbsvddVAdJsQ+HIc5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSk91WFBjZ2kxQ051eTkxMVVCMG14RDRjaHprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny85Y2VkZDktMTEzYi00MDYxLWE2MzIt
NGUxZDE2N2YwYTljLzEvSk91WFBjZ2kxQ051eTkxMVVCMG14RDRjaHprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny85Y2VkZDktMTEzYi00MDYxLWE2MzItNGUxZDE2N2YwYTlj
LzEvSk91WFBjZ2kxQ051eTkxMVVCMG14RDRjaHprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApdI9p3Jd
BR8lD/zRbETDeRMN7+0aWBfLlw07p8sKwUNVrl0BNggyr3yHjwkAIpJXn19cl61w
6sYNToJoBnlqGRv9XZX96sT7usXhbe4hRKQus3z+lQ71vUVlSv0N7cSV+wbSLcZ2
EuNqix+s9LY4GyyMG2Hp3rWl4IwF2qTcY5414Nn+wyhgYA/r2Jx/+Agpp7zEtv9I
lEpdMgdknmnNn1lT8ssS0fpGnVNDmyr27HIq1Qq9rt+TNbq1zrsdEBCoRKBHUeli
EHWZdru32JOlcW4r5k9a9z6REfDdtBt+/5+VV5bk8+u+Rj5/aaIeYoNaH4Eb83ed
+FJfzTIRtUnIQA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:41:11 2025 by rpki-client