Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json)
Hash identifier: 74+MGIqz8jK79G8OwZ939jmlwbtE4Es58WeAuhfXGL4=
Subject key identifier: 92:46:62:A9:28:65:76:74:7A:0B:7E:27:A5:95:79:80:F6:C9:68:F0
Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Certificate serial: 019A1A622161B091325A260308A5D8B19E66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
Manifest number: 1685
Signing time: Sat 25 Oct 2025 08:00:29 +0000
Manifest this update: Sat 25 Oct 2025 08:00:29 +0000
Manifest next update: Sun 26 Oct 2025 08:00:29 +0000
Files and hashes: 1: Kp9T4yQ0BWzmIgTW27o6VMb8qh4.roa (hash: 8tmSpbSEt6oRRtmXjjT27qxLy0bdW3q5K1nXAwi0cxU=)
2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: 5kHF7A3WYILVBWEKmTqNXt3l7okQ0RFtOJjQfeeUIaE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 08:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1a:62:21:61:b0:91:32:5a:26:03:08:a5:d8:b1:9e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Validity
Not Before: Oct 25 08:00:29 2025 GMT
Not After : Oct 26 08:00:29 2025 GMT
Subject: CN=924662a9286576747a0b7e27a5957980f6c968f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:be:fe:91:b5:19:ad:04:04:37:f8:f9:8f:2f:
04:7d:a7:ad:44:ed:5e:5f:06:aa:16:6f:6c:30:d4:
1c:ab:c1:33:c7:3c:9b:dc:b4:bf:f3:33:57:f2:c0:
a6:8e:68:f6:5f:a6:5f:87:97:ae:cb:4b:55:f0:bf:
6d:77:16:46:86:0f:cd:81:75:15:10:53:01:e1:e8:
84:e3:5e:a4:37:ab:32:02:ad:d1:f8:bc:52:60:b2:
7c:fb:7c:45:0f:8d:ae:59:e4:21:2c:3d:80:ae:33:
6c:f6:6a:1e:4f:21:27:db:2e:54:64:69:9e:48:1d:
fc:02:03:55:7c:86:15:b1:bc:2c:d5:d3:39:0a:e6:
c4:77:f4:b6:6d:2a:35:15:d4:51:56:24:23:d1:84:
20:a1:f8:af:1c:8c:07:ea:ff:98:57:1c:27:a2:c8:
b1:bb:de:ec:40:65:a5:f5:19:3f:26:75:f4:4f:46:
0d:d7:b6:76:73:eb:6f:ad:b4:45:30:d4:fe:a0:18:
50:a3:63:bb:f0:28:3d:0c:80:2c:08:d1:8a:92:5a:
71:0f:63:49:96:de:a2:b2:1e:35:5a:e6:11:d4:eb:
98:5b:11:d8:7f:10:2d:ae:4d:fc:20:d6:d0:9c:58:
63:71:06:43:aa:20:bb:6d:40:e0:51:31:ce:d9:16:
e4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:46:62:A9:28:65:76:74:7A:0B:7E:27:A5:95:79:80:F6:C9:68:F0
X509v3 Authority Key Identifier:
keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:72:f3:35:35:fb:7f:ba:01:2b:e4:2a:c0:00:c8:cb:61:ec:
f9:d1:40:bd:2a:7d:56:4c:32:31:d2:55:00:c3:82:36:8d:e6:
aa:c4:f6:e5:b4:6e:b9:04:f7:a4:6c:b3:81:08:8c:2a:ed:65:
3f:b6:68:0c:72:fa:6e:0f:4d:f0:0b:9d:97:f5:86:80:b9:6b:
ab:14:e9:4a:fe:b5:51:71:c5:6a:a4:a5:bb:9d:cb:71:37:7b:
63:cd:3f:f2:6d:c5:31:ad:ea:a6:89:7b:36:5a:8b:c4:44:74:
d0:9a:7c:92:c7:af:7b:df:13:e8:74:7c:92:88:82:3a:8c:56:
ff:cb:0b:a1:0f:4a:0a:ff:b4:ec:dc:2e:f2:fc:29:7a:99:ae:
85:0a:80:4a:d0:26:5a:52:0f:db:d9:89:5e:6a:46:de:51:b6:
7e:53:8a:06:68:a3:c3:63:1d:a9:29:1b:ab:ff:a0:3a:8c:84:
b7:1a:29:ee:f7:cc:fc:85:fe:d0:7d:a2:b4:dd:6e:98:a4:81:
0b:56:27:ca:f2:ce:81:3b:78:a2:0d:ff:5b:5c:0a:a9:00:ff:
f6:b4:2c:c0:fa:30:39:21:d9:43:bd:ff:07:28:59:dd:e0:54:
da:8a:4c:95:f8:4c:0a:6b:d8:dc:43:ae:1b:a3:0f:b0:7c:10:
6e:db:70:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoaYiFhsJEyWiYDCKXYsZ5mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhMmQ1ZmQzMDlkZDZjYzZjZjc4ODYwNDFlNWU5YzJjMWEy
NmNlYWIwHhcNMjUxMDI1MDgwMDI5WhcNMjUxMDI2MDgwMDI5WjAzMTEwLwYDVQQD
Eyg5MjQ2NjJhOTI4NjU3Njc0N2EwYjdlMjdhNTk1Nzk4MGY2Yzk2OGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnr7+kbUZrQQEN/j5jy8EfaetRO1e
XwaqFm9sMNQcq8Ezxzyb3LS/8zNX8sCmjmj2X6Zfh5euy0tV8L9tdxZGhg/NgXUV
EFMB4eiE416kN6syAq3R+LxSYLJ8+3xFD42uWeQhLD2ArjNs9moeTyEn2y5UZGme
SB38AgNVfIYVsbws1dM5CubEd/S2bSo1FdRRViQj0YQgofivHIwH6v+YVxwnosix
u97sQGWl9Rk/JnX0T0YN17Z2c+tvrbRFMNT+oBhQo2O78Cg9DIAsCNGKklpxD2NJ
lt6ish41WuYR1OuYWxHYfxAtrk38INbQnFhjcQZDqiC7bUDgUTHO2RbkiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJJGYqkoZXZ0egt+J6WVeYD2yWjwMB8GA1UdIwQY
MBaAFLotX9MJ3WzGz3iGBB5enCwaJs6rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2Yt
NmQ3NTUwNTJiYjI0LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2YtNmQ3NTUwNTJiYjI0
LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARXLzNTX7
f7oBK+QqwADIy2Hs+dFAvSp9VkwyMdJVAMOCNo3mqsT25bRuuQT3pGyzgQiMKu1l
P7ZoDHL6bg9N8Audl/WGgLlrqxTpSv61UXHFaqSlu53LcTd7Y80/8m3FMa3qpol7
NlqLxER00Jp8kseve98T6HR8koiCOoxW/8sLoQ9KCv+07Nwu8vwpepmuhQqAStAm
WlIP29mJXmpG3lG2flOKBmijw2MdqSkbq/+gOoyEtxop7vfM/IX+0H2itN1umKSB
C1YnyvLOgTt4og3/W1wKqQD/9rQswPowOSHZQ73/ByhZ3eBU2opMlfhMCmvY3EOu
G6MPsHwQbttwtg==
-----END CERTIFICATE-----
Generated at Sat Oct 25 13:33:37 2025 by rpki-client