Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft
File: uO0-vNIVX5oXihA62rSP2osidaU.mft (raw, json)
Hash identifier: DM1onb2gbHlqzAp5+aeeyhgEQRRact/UBYbW2nNOLII=
Subject key identifier: 53:3C:89:7D:DE:64:DE:14:E3:62:5C:0C:CD:66:B1:05:FF:31:5B:FC
Authority key identifier: B8:ED:3E:BC:D2:15:5F:9A:17:8A:10:3A:DA:B4:8F:DA:8B:22:75:A5
Certificate issuer: /CN=b8ed3ebcd2155f9a178a103adab48fda8b2275a5
Certificate serial: 0199356EA7F250ABC54B58C817919C936928
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft
Manifest number: 11E2
Signing time: Wed 10 Sep 2025 21:01:08 +0000
Manifest this update: Wed 10 Sep 2025 21:01:08 +0000
Manifest next update: Thu 11 Sep 2025 21:01:08 +0000
Files and hashes: 1: Brko5nMKSPwBgCgkjjg5igCr-DI.roa (hash: 3fOnCI08ItaZVpBsarkgTQcdgGi7HK10nR8m2pkLLWI=)
2: RdMb9DZXvill1bIjga0E0ALFTSE.roa (hash: glVlBHXB1p3fuc6KcN7QeAF0s4whdubmLa4lXiIAO04=)
3: bGID9MISfapCQvxtnoK2mwgER1c.roa (hash: 48jEs1SYz7H/DF1j6XjhPt2MSQotOuG8cV4gNdbAuRU=)
4: uO0-vNIVX5oXihA62rSP2osidaU.crl (hash: WbA7ufc+Xm44A2Up78eGWpeTZA6glv0DgMgczWKKpsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:6e:a7:f2:50:ab:c5:4b:58:c8:17:91:9c:93:69:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8ed3ebcd2155f9a178a103adab48fda8b2275a5
Validity
Not Before: Sep 10 21:01:08 2025 GMT
Not After : Sep 11 21:01:08 2025 GMT
Subject: CN=533c897dde64de14e3625c0ccd66b105ff315bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:29:ac:f7:e7:87:d6:61:e8:87:07:49:a7:01:
df:7c:a3:7e:f4:d3:8a:3d:eb:7d:03:bd:1f:4d:c4:
02:da:06:55:27:4e:be:71:d5:bf:4c:ff:ae:da:f1:
ea:22:36:f0:9b:50:7e:a8:aa:d7:24:97:69:15:3d:
83:61:2d:71:f4:fa:14:30:b9:47:33:91:18:11:53:
33:bf:f6:78:1c:61:1c:3c:69:52:25:2c:81:d0:2d:
35:ab:99:d3:ec:7f:bf:52:25:bc:74:aa:7e:b9:6e:
c1:67:33:83:2b:cd:35:e3:fe:26:c5:3d:35:18:9d:
a4:a4:42:f1:09:f6:93:18:78:fb:04:76:67:8a:48:
54:60:2a:49:27:27:dc:7e:a9:59:97:26:27:86:b5:
0b:13:90:57:0a:b6:6b:78:6c:16:0c:9a:cc:94:29:
94:c3:62:a1:73:2c:7b:95:f8:17:32:57:1c:12:c4:
d6:f0:07:bc:cc:58:84:13:7f:37:e9:9d:09:56:64:
2f:4e:21:16:c5:3f:e7:c6:da:11:dc:55:f9:16:7e:
04:d4:14:f4:a7:e5:88:b9:ed:d4:9f:29:ac:ba:fa:
0f:16:bc:2e:8b:80:af:0c:17:f2:0c:ed:99:36:01:
b6:6e:0c:ae:47:96:a3:19:18:dd:2c:0c:8b:cf:55:
8e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:3C:89:7D:DE:64:DE:14:E3:62:5C:0C:CD:66:B1:05:FF:31:5B:FC
X509v3 Authority Key Identifier:
keyid:B8:ED:3E:BC:D2:15:5F:9A:17:8A:10:3A:DA:B4:8F:DA:8B:22:75:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:26:1a:f8:8a:ff:14:22:9d:e6:f0:95:c1:66:fe:3b:57:71:
4a:5d:f4:f1:7c:64:f5:fb:c3:d2:81:24:f8:ff:fb:cb:b7:fd:
1b:fe:63:a5:cc:05:39:0c:ac:31:23:ec:c3:7d:11:c0:77:7f:
22:14:f6:ec:73:8d:76:de:80:9d:a8:53:2d:81:2c:fa:5d:a2:
41:23:dd:0d:d5:02:ee:36:d9:b2:42:17:e9:28:d2:19:9b:18:
8a:43:eb:27:02:8f:58:37:7d:88:08:83:f6:08:9f:8d:92:6d:
49:96:f5:80:d9:66:3a:52:49:00:5a:6f:8b:31:02:37:33:6f:
15:53:f0:92:72:54:f7:a6:a7:60:32:28:37:01:00:8e:3e:3d:
44:80:98:a7:29:e3:d1:da:48:d9:46:f5:62:70:63:d4:da:c2:
96:f0:6f:d4:77:8e:b0:5a:e1:63:20:69:34:ec:c1:d5:6a:0e:
d3:d9:c9:15:fa:08:d2:a7:7b:b5:04:32:86:66:b9:2f:12:97:
e4:42:fe:8f:8d:c0:62:5e:94:5d:f2:7c:55:92:66:48:ad:d7:
22:63:fb:20:2b:29:7e:e6:e1:d0:20:e4:16:b4:e0:d4:d8:3f:
12:66:16:1e:2f:a1:00:26:cf:5c:1d:20:fc:23:bf:9a:9c:a1:
6f:ac:4f:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk1bqfyUKvFS1jIF5Gck2koMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4ZWQzZWJjZDIxNTVmOWExNzhhMTAzYWRhYjQ4ZmRhOGIy
Mjc1YTUwHhcNMjUwOTEwMjEwMTA4WhcNMjUwOTExMjEwMTA4WjAzMTEwLwYDVQQD
Eyg1MzNjODk3ZGRlNjRkZTE0ZTM2MjVjMGNjZDY2YjEwNWZmMzE1YmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnyms9+eH1mHohwdJpwHffKN+9NOK
Pet9A70fTcQC2gZVJ06+cdW/TP+u2vHqIjbwm1B+qKrXJJdpFT2DYS1x9PoUMLlH
M5EYEVMzv/Z4HGEcPGlSJSyB0C01q5nT7H+/UiW8dKp+uW7BZzODK8014/4mxT01
GJ2kpELxCfaTGHj7BHZnikhUYCpJJyfcfqlZlyYnhrULE5BXCrZreGwWDJrMlCmU
w2Khcyx7lfgXMlccEsTW8Ae8zFiEE3836Z0JVmQvTiEWxT/nxtoR3FX5Fn4E1BT0
p+WIue3UnymsuvoPFrwui4CvDBfyDO2ZNgG2bgyuR5ajGRjdLAyLz1WOZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFM8iX3eZN4U42JcDM1msQX/MVv8MB8GA1UdIwQY
MBaAFLjtPrzSFV+aF4oQOtq0j9qLInWlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdU8wLXZOSVZYNW9YaWhBNjJyU1Ayb3NpZGFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi80MjFjNmQtNTM1Yy00YzEzLThkYTMt
ZGVhMTJkZDhjN2Y0LzEvdU8wLXZOSVZYNW9YaWhBNjJyU1Ayb3NpZGFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi80MjFjNmQtNTM1Yy00YzEzLThkYTMtZGVhMTJkZDhjN2Y0
LzEvdU8wLXZOSVZYNW9YaWhBNjJyU1Ayb3NpZGFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADSYa+Ir/
FCKd5vCVwWb+O1dxSl308Xxk9fvD0oEk+P/7y7f9G/5jpcwFOQysMSPsw30RwHd/
IhT27HONdt6AnahTLYEs+l2iQSPdDdUC7jbZskIX6SjSGZsYikPrJwKPWDd9iAiD
9gifjZJtSZb1gNlmOlJJAFpvizECNzNvFVPwknJU96anYDIoNwEAjj49RICYpynj
0dpI2Ub1YnBj1NrClvBv1HeOsFrhYyBpNOzB1WoO09nJFfoI0qd7tQQyhma5LxKX
5EL+j43AYl6UXfJ8VZJmSK3XImP7ICspfubh0CDkFrTg1Ng/EmYWHi+hACbPXB0g
/CO/mpyhb6xP2w==
-----END CERTIFICATE-----
Generated at Thu Sep 11 00:20:57 2025 by rpki-client