Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
File: 02JOkIx0mP22E1QnU-9Wx1zXBL0.mft (raw, json)
Hash identifier: tooNpMzMfIuY5d5GFbMQQ+t7M+ndBfVNcDF4zPilkuI=
Subject key identifier: 61:8F:D1:D4:67:1A:31:29:7F:C1:22:77:49:AF:D8:6A:25:46:32:6E
Authority key identifier: D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
Certificate issuer: /CN=d3624e908c7498fdb613542753ef56c75cd704bd
Certificate serial: 0199FC8F361E63D4E7A532268F4036940DBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
Manifest number: 0B1E
Signing time: Sun 19 Oct 2025 13:01:07 +0000
Manifest this update: Sun 19 Oct 2025 13:01:07 +0000
Manifest next update: Mon 20 Oct 2025 13:01:07 +0000
Files and hashes: 1: 02JOkIx0mP22E1QnU-9Wx1zXBL0.crl (hash: 5VIJZnt3X+BqVEnhUR+CKVrFuOJg3GvugMXBNN3ViBg=)
2: _l8jrf0myWSyZHEusIZ6cmnQafE.roa (hash: gjseV+JPjv3tCrp8kMrsCJYjL6BjqLfcHlxvbKTgJog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:36:1e:63:d4:e7:a5:32:26:8f:40:36:94:0d:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3624e908c7498fdb613542753ef56c75cd704bd
Validity
Not Before: Oct 19 13:01:07 2025 GMT
Not After : Oct 20 13:01:07 2025 GMT
Subject: CN=618fd1d4671a31297fc1227749afd86a2546326e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7c:75:06:a6:ff:9a:f7:d7:a0:e8:4d:6b:38:
f6:bc:f7:0e:b0:7b:1a:bc:34:73:a5:77:3a:2c:44:
9b:8d:33:ec:f7:4f:f2:72:cf:49:91:0d:ce:0f:3e:
64:b5:2f:76:5f:fa:7a:e9:e7:2e:b0:b2:55:2f:72:
aa:b8:52:05:88:43:81:2f:1c:70:db:db:bc:df:3d:
a8:f4:30:8f:09:0d:58:2a:2b:c6:2d:ab:d0:06:4e:
6f:d5:9f:23:77:87:43:a1:15:08:a9:e3:93:b8:44:
d9:30:3a:56:c7:9a:5b:e2:dd:a9:a6:79:74:f7:46:
1f:0f:3d:1a:90:fc:94:9f:9f:5d:41:a0:65:57:18:
5a:c6:f4:cf:54:c9:9b:de:2f:67:51:fb:12:cc:5f:
6d:f5:ad:d0:78:cd:ef:07:46:8b:dc:bb:7a:93:a5:
c5:60:a2:5b:d9:a2:ac:8c:f1:5a:f2:ba:62:9c:da:
7c:3e:41:b2:60:be:ab:4a:2c:c3:ae:62:41:be:9e:
ae:41:9e:ed:1a:61:3b:f0:0d:74:0a:7b:45:cc:b8:
15:c1:ce:c1:e6:a0:e4:5d:e3:55:7a:f7:5b:c9:a9:
91:4b:27:f6:bd:f3:27:88:d1:db:31:23:55:b6:d5:
94:d0:f9:31:fb:50:80:6f:cb:1d:d8:bc:8f:b6:36:
57:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:8F:D1:D4:67:1A:31:29:7F:C1:22:77:49:AF:D8:6A:25:46:32:6E
X509v3 Authority Key Identifier:
keyid:D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:2f:c0:69:6f:e3:8e:0e:c3:69:82:69:fc:66:d4:4e:07:e3:
29:a7:18:76:51:98:97:df:4a:8a:25:cc:34:3c:01:87:cc:12:
d0:df:ff:df:f9:87:f9:3b:c3:30:b3:d7:71:dc:2c:02:5e:1f:
ab:c9:bd:34:4e:9f:81:91:51:de:f3:72:c2:3c:e2:da:b4:b8:
f5:2b:a4:5f:dd:20:07:40:a0:23:48:9c:1a:14:a0:34:5a:a8:
8d:e8:6a:c8:c3:e9:67:20:ea:bf:cf:c2:e0:5a:48:0f:a5:ef:
93:e5:fe:f9:43:34:04:24:46:55:36:86:8f:da:d7:ba:ae:78:
86:f3:15:37:da:93:e0:2a:f2:12:0e:70:70:29:07:c9:75:b7:
10:ee:46:9b:d3:a5:43:44:bd:cb:9a:73:1c:1a:7e:01:c0:a3:
75:74:bd:4c:b8:a2:07:53:6f:6c:f2:c5:3a:60:1b:0d:38:6e:
db:43:b6:5a:61:f2:12:07:6f:0f:c1:63:d7:19:cf:42:76:54:
17:6b:c3:51:7c:6e:5d:9a:c4:8f:db:b7:5e:e0:39:38:3d:cc:
16:9f:1b:1d:f1:ae:ff:e8:7d:c2:53:8d:ac:34:65:a4:de:b2:
dc:74:97:55:9e:4f:9b:e1:cd:b6:d6:20:29:74:81:ff:61:ce:
a2:8d:fc:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8jzYeY9TnpTImj0A2lA26MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNjI0ZTkwOGM3NDk4ZmRiNjEzNTQyNzUzZWY1NmM3NWNk
NzA0YmQwHhcNMjUxMDE5MTMwMTA3WhcNMjUxMDIwMTMwMTA3WjAzMTEwLwYDVQQD
Eyg2MThmZDFkNDY3MWEzMTI5N2ZjMTIyNzc0OWFmZDg2YTI1NDYzMjZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Hx1Bqb/mvfXoOhNazj2vPcOsHsa
vDRzpXc6LESbjTPs90/ycs9JkQ3ODz5ktS92X/p66ecusLJVL3KquFIFiEOBLxxw
29u83z2o9DCPCQ1YKivGLavQBk5v1Z8jd4dDoRUIqeOTuETZMDpWx5pb4t2ppnl0
90YfDz0akPyUn59dQaBlVxhaxvTPVMmb3i9nUfsSzF9t9a3QeM3vB0aL3Lt6k6XF
YKJb2aKsjPFa8rpinNp8PkGyYL6rSizDrmJBvp6uQZ7tGmE78A10CntFzLgVwc7B
5qDkXeNVevdbyamRSyf2vfMniNHbMSNVttWU0Pkx+1CAb8sd2LyPtjZXiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGGP0dRnGjEpf8Eid0mv2GolRjJuMB8GA1UdIwQY
MBaAFNNiTpCMdJj9thNUJ1PvVsdc1wS9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDJKT2tJeDBtUDIyRTFRblUtOVd4MXpYQkwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC80MmVmMWItMTBjNy00ZGFjLTljMTMt
NjQ1MGYxODQxMTIyLzEvMDJKT2tJeDBtUDIyRTFRblUtOVd4MXpYQkwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC80MmVmMWItMTBjNy00ZGFjLTljMTMtNjQ1MGYxODQxMTIy
LzEvMDJKT2tJeDBtUDIyRTFRblUtOVd4MXpYQkwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARS/AaW/j
jg7DaYJp/GbUTgfjKacYdlGYl99KiiXMNDwBh8wS0N//3/mH+TvDMLPXcdwsAl4f
q8m9NE6fgZFR3vNywjzi2rS49SukX90gB0CgI0icGhSgNFqojehqyMPpZyDqv8/C
4FpID6Xvk+X++UM0BCRGVTaGj9rXuq54hvMVN9qT4CryEg5wcCkHyXW3EO5Gm9Ol
Q0S9y5pzHBp+AcCjdXS9TLiiB1NvbPLFOmAbDThu20O2WmHyEgdvD8Fj1xnPQnZU
F2vDUXxuXZrEj9u3XuA5OD3MFp8bHfGu/+h9wlONrDRlpN6y3HSXVZ5Pm+HNttYg
KXSB/2HOoo38JQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:38:35 2025 by rpki-client