Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
File: UYnbLl9XTdoOPBfjldXwW2YlTsU.mft (raw, json)
Hash identifier: jnA2xmwPDfNa8Y1AfxfFNRoOfyf1X1+9yao4bzYi5sA=
Subject key identifier: 58:8F:50:97:21:80:BC:DC:E1:FB:DC:92:E5:F5:C0:89:A7:8F:17:39
Authority key identifier: 51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
Certificate issuer: /CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Certificate serial: 019847091646C36C3589F303E895D3233D33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
Manifest number: 0CE7
Signing time: Sat 26 Jul 2025 14:00:34 +0000
Manifest this update: Sat 26 Jul 2025 14:00:34 +0000
Manifest next update: Sun 27 Jul 2025 14:00:34 +0000
Files and hashes: 1: BfyClB3XmviPfJ6xZ2InO7FtLcs.roa (hash: 3EeV7dZbc++zjvyl5M1yeUuYRy/Llocvb96yJLQ1iig=)
2: UYnbLl9XTdoOPBfjldXwW2YlTsU.crl (hash: Yf1B2+NdaFLKAZfcwHIw4/9N6MqtvtSx3JLLC0b2kJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:09:16:46:c3:6c:35:89:f3:03:e8:95:d3:23:3d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Validity
Not Before: Jul 26 14:00:34 2025 GMT
Not After : Jul 27 14:00:34 2025 GMT
Subject: CN=588f50972180bcdce1fbdc92e5f5c089a78f1739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fd:78:b8:55:74:58:e2:4d:85:a4:20:8c:16:
46:09:b5:72:b4:5e:f6:c9:46:e8:57:2a:00:3c:48:
61:f7:60:68:4f:d7:58:bb:68:55:d8:97:3f:37:f3:
4e:b4:17:be:1d:8c:10:76:6e:97:49:87:2d:5d:ef:
83:29:df:c6:30:c0:fa:5b:55:d0:b7:56:47:f6:00:
d5:ea:47:89:77:5e:d7:0d:65:ae:d1:98:73:68:1b:
ec:1d:9f:94:07:10:0a:d4:58:4a:2d:66:37:34:00:
96:d8:59:08:68:03:5b:b9:33:31:c0:a8:58:01:e8:
5d:a7:c7:64:ee:40:3c:74:6a:38:84:fd:0e:ef:b9:
33:d9:fe:75:86:3b:cb:0c:73:0e:6f:ae:39:7d:12:
97:bc:24:5c:d7:9d:f4:e5:50:81:d0:46:a2:2e:dc:
da:bd:8d:57:4e:2b:4d:05:f0:59:79:63:c8:55:96:
d6:17:9e:c5:d2:9a:8d:d2:bc:67:75:91:fb:d1:8c:
91:6d:86:2c:8a:9e:96:1a:83:b8:1f:05:77:b0:9b:
1f:26:59:de:0f:bf:09:74:30:ee:0c:1f:b1:b9:df:
31:cb:05:68:4b:ee:d4:4b:82:52:2f:ce:51:a7:9f:
5e:76:91:32:99:08:72:1e:72:db:83:ae:c2:70:c0:
ec:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8F:50:97:21:80:BC:DC:E1:FB:DC:92:E5:F5:C0:89:A7:8F:17:39
X509v3 Authority Key Identifier:
keyid:51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:9a:01:55:6d:ee:c4:ae:4c:9c:1f:33:99:0a:c4:7c:91:74:
34:ab:eb:39:94:62:ff:38:c3:42:e8:9e:b8:a0:ea:6f:63:ec:
d1:54:9c:49:c8:fb:f5:ae:03:02:19:2f:93:57:88:f9:bb:b4:
1f:a0:06:aa:9e:c4:08:0e:ac:1b:22:7e:15:44:68:1b:36:bc:
7e:1e:00:8d:19:51:7e:58:65:f6:df:42:99:43:4f:04:e7:fb:
3a:7a:6e:d5:77:e3:d0:5b:06:18:5b:0c:f1:8d:b8:6c:34:c7:
12:4c:7f:64:5e:0e:cc:89:42:b1:df:e5:a4:ef:36:62:94:b6:
26:42:55:bd:8f:d0:6d:aa:85:33:53:5f:9d:e3:88:22:95:90:
26:f8:e5:58:bb:cb:cd:3e:48:73:26:b9:76:a2:c8:b5:cf:3f:
7d:66:9f:62:e2:7a:bc:bf:08:b9:ea:0a:8c:7c:bb:56:ef:3e:
a5:30:d7:31:05:86:6a:f1:52:ab:47:d6:21:c6:cc:6f:c9:b3:
47:37:1d:5c:09:d4:d9:b7:9c:6c:28:56:23:b7:58:fa:39:83:
dd:de:b9:a1:cc:72:62:a4:71:c3:00:aa:35:70:1b:dd:1a:de:
48:bb:8e:cd:21:80:dc:7e:47:6e:0d:64:52:1c:68:01:39:6e:
60:e0:9f:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhHCRZGw2w1ifMD6JXTIz0zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxODlkYjJlNWY1NzRkZGEwZTNjMTdlMzk1ZDVmMDViNjYy
NTRlYzUwHhcNMjUwNzI2MTQwMDM0WhcNMjUwNzI3MTQwMDM0WjAzMTEwLwYDVQQD
Eyg1ODhmNTA5NzIxODBiY2RjZTFmYmRjOTJlNWY1YzA4OWE3OGYxNzM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzf14uFV0WOJNhaQgjBZGCbVytF72
yUboVyoAPEhh92BoT9dYu2hV2Jc/N/NOtBe+HYwQdm6XSYctXe+DKd/GMMD6W1XQ
t1ZH9gDV6keJd17XDWWu0ZhzaBvsHZ+UBxAK1FhKLWY3NACW2FkIaANbuTMxwKhY
Aehdp8dk7kA8dGo4hP0O77kz2f51hjvLDHMOb645fRKXvCRc15305VCB0EaiLtza
vY1XTitNBfBZeWPIVZbWF57F0pqN0rxndZH70YyRbYYsip6WGoO4HwV3sJsfJlne
D78JdDDuDB+xud8xywVoS+7US4JSL85Rp59edpEymQhyHnLbg67CcMDsXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFiPUJchgLzc4fvckuX1wImnjxc5MB8GA1UdIwQY
MBaAFFGJ2y5fV03aDjwX45XV8FtmJU7FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVluYkxsOVhUZG9PUEJmamxkWHdXMllsVHNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8zODBjM2MtZjMwOC00ZGZlLWEzYTMt
ZTIxYzZkMGY4ZjA0LzEvVVluYkxsOVhUZG9PUEJmamxkWHdXMllsVHNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8zODBjM2MtZjMwOC00ZGZlLWEzYTMtZTIxYzZkMGY4ZjA0
LzEvVVluYkxsOVhUZG9PUEJmamxkWHdXMllsVHNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHpoBVW3u
xK5MnB8zmQrEfJF0NKvrOZRi/zjDQuieuKDqb2Ps0VScScj79a4DAhkvk1eI+bu0
H6AGqp7ECA6sGyJ+FURoGza8fh4AjRlRflhl9t9CmUNPBOf7Onpu1Xfj0FsGGFsM
8Y24bDTHEkx/ZF4OzIlCsd/lpO82YpS2JkJVvY/QbaqFM1NfneOIIpWQJvjlWLvL
zT5Icya5dqLItc8/fWafYuJ6vL8IueoKjHy7Vu8+pTDXMQWGavFSq0fWIcbMb8mz
RzcdXAnU2becbChWI7dY+jmD3d65ocxyYqRxwwCqNXAb3RreSLuOzSGA3H5Hbg1k
UhxoATluYOCfbQ==
-----END CERTIFICATE-----
Generated at Sat Jul 26 23:18:30 2025 by rpki-client