Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
File: 02JOkIx0mP22E1QnU-9Wx1zXBL0.mft (raw, json)
Hash identifier: IwDx7gIgvFhMnp94XsjT1/aNwP5F7hr9u8gMmH15NqM=
Subject key identifier: 82:DE:58:C8:86:E7:49:73:1D:94:7D:BD:0D:6A:F0:65:A4:EB:03:1C
Authority key identifier: D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
Certificate issuer: /CN=d3624e908c7498fdb613542753ef56c75cd704bd
Certificate serial: 019A4F9928FE8672F9CC297CD6D4BF2B9F72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
Manifest number: 0B49
Signing time: Tue 04 Nov 2025 16:00:28 +0000
Manifest this update: Tue 04 Nov 2025 16:00:28 +0000
Manifest next update: Wed 05 Nov 2025 16:00:28 +0000
Files and hashes: 1: 02JOkIx0mP22E1QnU-9Wx1zXBL0.crl (hash: hgjqCFWvbAt2SJpC1xCDgyBaV207l56VPx3pSSORnMM=)
2: _l8jrf0myWSyZHEusIZ6cmnQafE.roa (hash: gjseV+JPjv3tCrp8kMrsCJYjL6BjqLfcHlxvbKTgJog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:28:fe:86:72:f9:cc:29:7c:d6:d4:bf:2b:9f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3624e908c7498fdb613542753ef56c75cd704bd
Validity
Not Before: Nov 4 16:00:28 2025 GMT
Not After : Nov 5 16:00:28 2025 GMT
Subject: CN=82de58c886e749731d947dbd0d6af065a4eb031c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:73:fb:03:00:53:3a:98:06:55:16:8c:4d:c2:
6a:ef:d9:b0:ae:04:7c:f9:43:ae:ed:11:5b:9f:08:
92:3b:52:18:1b:44:88:23:c3:d5:38:c3:22:74:ca:
ea:a6:d2:c2:05:4b:e7:b5:6a:30:8a:e7:44:2a:fc:
9b:7a:35:d0:ee:19:76:d4:94:09:9a:c2:1f:13:cd:
1d:bb:76:1a:77:a3:98:71:c9:22:28:87:79:2f:29:
23:3a:e6:3c:4a:e7:dc:53:1b:7e:d5:2b:19:6d:54:
e3:68:8d:81:d5:66:46:75:9b:4a:46:c8:04:47:56:
b4:29:f9:54:c5:2c:60:e5:5c:57:66:61:ea:c0:5f:
b8:b6:b1:67:3e:9a:e3:1b:09:e6:59:f3:27:9b:c0:
42:87:25:08:26:67:da:c4:66:58:4f:a2:ba:78:21:
80:ac:1b:f0:8a:cf:f2:e3:07:50:3c:9d:69:68:67:
e1:3c:bb:cf:c1:58:56:39:be:a3:c2:3f:ba:3a:ab:
f9:6e:12:e7:26:64:51:7b:27:9a:44:0f:d0:f4:14:
1a:f5:94:6e:87:98:4b:ff:56:ba:54:87:29:d0:80:
76:2c:df:37:3f:b9:4b:6b:3f:a5:6f:f1:2e:fd:5c:
0e:b4:46:ea:37:64:3f:90:86:31:cb:23:ad:51:a8:
d8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:DE:58:C8:86:E7:49:73:1D:94:7D:BD:0D:6A:F0:65:A4:EB:03:1C
X509v3 Authority Key Identifier:
keyid:D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:30:1c:10:68:bc:93:60:28:7b:44:8f:32:83:aa:e2:e6:52:
66:0d:02:7c:d7:b3:22:e1:ca:4b:44:13:4c:e4:d8:e1:a5:ba:
91:d8:74:f0:ca:be:56:5d:d9:3a:11:02:b6:d0:60:3c:6a:c6:
11:e8:c4:5d:e1:8a:84:c9:d1:8d:9c:27:88:95:ad:2e:7a:ea:
9d:03:64:aa:82:9b:3f:aa:4c:5f:9e:41:c5:98:05:34:cb:0f:
46:a6:e8:be:9e:f5:76:b6:88:9f:d6:6c:8f:83:a6:24:11:c9:
31:75:89:ac:a2:67:ac:0b:bc:55:b8:76:88:9a:57:06:5b:c7:
40:d2:a7:c3:38:eb:13:0d:1a:9a:6a:d3:3f:da:19:c2:57:05:
3a:43:ed:f8:d0:e5:ac:a9:0b:b1:ac:f5:a1:de:25:f0:ec:79:
fa:64:6c:b0:ee:04:a2:1b:d2:b9:33:58:49:07:9d:64:66:90:
69:45:87:a6:8e:4d:05:69:58:90:16:ad:fc:11:b5:d9:3a:6a:
e5:e3:59:08:97:d6:36:0c:9f:71:3d:0c:78:f2:06:05:46:ec:
cc:af:49:db:83:85:81:51:5f:b6:85:08:63:6b:64:2a:9a:1a:
e2:7e:7f:ef:83:e8:6b:56:31:92:cb:ad:8e:71:0e:7c:bf:f3:
27:29:15:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:19:26 2025 by rpki-client