Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: tDwVa8rm0P2iccguhFHU4SjFk/pinRfIDu5Sr75M3Ao=
Subject key identifier: F3:1E:3B:51:A3:A6:CD:F0:E3:CC:B7:C2:74:6B:23:FE:71:3F:41:C4
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 019A202D49AA2B8FD464FAD04ACB8B2E3BE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0980
Signing time: Sun 26 Oct 2025 11:00:30 +0000
Manifest this update: Sun 26 Oct 2025 11:00:30 +0000
Manifest next update: Mon 27 Oct 2025 11:00:30 +0000
Files and hashes: 1: If5j4KjsWFg3kwDUxrHpbFCCjpg.roa (hash: iGbVOgQjxfoZ4tZTHfIMlZvCv27war8Yd/ywUcGl39o=)
2: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: EUMNjEGf960S1PTrcspd6LrnVR7xC6hcd0bAZXTg+Gk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 11:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:20:2d:49:aa:2b:8f:d4:64:fa:d0:4a:cb:8b:2e:3b:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Oct 26 11:00:30 2025 GMT
Not After : Oct 27 11:00:30 2025 GMT
Subject: CN=f31e3b51a3a6cdf0e3ccb7c2746b23fe713f41c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d2:8a:64:04:6d:19:21:a4:03:da:d4:5b:c8:
f8:db:a2:c4:32:6c:ac:ca:84:83:aa:b2:e7:8d:1a:
e3:47:c2:c2:08:d1:d3:ef:03:b1:b3:ed:55:e3:c7:
8f:f6:10:32:fe:75:1d:11:44:43:81:1c:e7:27:6d:
f4:9d:c9:46:b0:dd:b0:64:74:cb:16:40:d0:d7:87:
04:c5:c5:0d:11:8f:33:f8:17:a8:6c:13:c3:fb:7e:
32:5e:d8:aa:44:e2:01:02:92:96:cf:00:9e:ee:66:
b2:33:0b:cf:ad:4a:55:a6:d6:5f:88:b4:c2:bf:46:
c0:a8:68:15:7f:12:78:be:3d:4a:aa:1b:8e:5c:87:
2b:0a:c3:82:c5:36:4f:0b:75:0e:c2:d8:57:4b:7a:
d8:34:1b:07:81:b1:0f:99:da:d2:0d:20:c1:24:b1:
21:a6:84:18:d7:2d:fb:6e:37:d8:67:28:65:fa:7a:
8a:b5:5f:24:d7:28:7c:f2:01:88:b4:89:65:bc:21:
02:19:f1:d1:b0:1b:4b:07:57:61:c0:fc:40:d3:bd:
c5:04:e9:d8:12:b7:85:6e:9a:4d:c0:12:24:0a:07:
2f:0a:dc:0a:0f:2e:c5:34:ed:8b:5d:ae:85:2d:e8:
82:e9:b2:17:ef:94:53:6a:37:c8:a5:b1:d0:0d:6b:
af:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:1E:3B:51:A3:A6:CD:F0:E3:CC:B7:C2:74:6B:23:FE:71:3F:41:C4
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:f0:26:ca:81:48:05:ee:2b:6a:be:63:b8:74:3f:c7:46:eb:
d3:4b:a4:91:32:68:a4:49:27:72:5d:51:2a:1e:37:95:be:42:
38:09:bd:06:4d:73:89:2e:84:dc:cb:91:08:df:62:24:75:8b:
72:ed:6b:79:55:3f:5f:32:0d:a8:57:e1:88:11:be:f8:94:04:
27:ac:63:02:79:8c:45:e4:7c:8b:74:65:5e:3c:8b:b4:cb:45:
24:a0:00:36:ff:13:5d:26:6e:07:f9:af:68:20:4d:40:d3:8d:
f1:3d:95:3f:34:75:fb:f6:69:78:33:3c:9e:76:d9:67:03:7b:
b3:43:e7:31:20:2e:b7:d6:ee:0a:cb:4c:11:9d:25:45:e7:0e:
53:de:bf:a5:50:98:ba:44:5c:1a:9f:f2:fe:a2:ed:46:be:bc:
da:77:3d:99:b4:c0:11:4e:4d:77:2d:d4:24:a4:5a:a8:92:fe:
8c:5e:6e:8c:2f:ad:54:9c:dc:d6:09:6e:a1:c6:17:38:57:29:
ce:55:25:aa:5d:bc:50:49:ab:91:ac:61:05:30:d8:33:41:87:
4d:e3:82:3f:7c:67:e8:53:33:25:dc:06:81:d3:7d:f3:94:62:
1a:00:20:fe:69:08:69:e5:6d:14:59:71:46:50:3d:ed:fb:82:
4f:9c:b3:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZogLUmqK4/UZPrQSsuLLjvkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzZTNhZWRkOTFiZTgyNDUxMzQyZGNkMWM5ODI4MzQ1ZGI2
NjFhNWYwHhcNMjUxMDI2MTEwMDMwWhcNMjUxMDI3MTEwMDMwWjAzMTEwLwYDVQQD
EyhmMzFlM2I1MWEzYTZjZGYwZTNjY2I3YzI3NDZiMjNmZTcxM2Y0MWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNKKZARtGSGkA9rUW8j426LEMmys
yoSDqrLnjRrjR8LCCNHT7wOxs+1V48eP9hAy/nUdEURDgRznJ230nclGsN2wZHTL
FkDQ14cExcUNEY8z+BeobBPD+34yXtiqROIBApKWzwCe7mayMwvPrUpVptZfiLTC
v0bAqGgVfxJ4vj1KqhuOXIcrCsOCxTZPC3UOwthXS3rYNBsHgbEPmdrSDSDBJLEh
poQY1y37bjfYZyhl+nqKtV8k1yh88gGItIllvCECGfHRsBtLB1dhwPxA073FBOnY
EreFbppNwBIkCgcvCtwKDy7FNO2LXa6FLeiC6bIX75RTajfIpbHQDWuv/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPMeO1Gjps3w48y3wnRrI/5xP0HEMB8GA1UdIwQY
MBaAFFPjrt2RvoJFE0Lc0cmCg0XbZhpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQt
YTdkOTQ1YWYxNGU1LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQtYTdkOTQ1YWYxNGU1
LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAePAmyoFI
Be4rar5juHQ/x0br00ukkTJopEkncl1RKh43lb5COAm9Bk1ziS6E3MuRCN9iJHWL
cu1reVU/XzINqFfhiBG++JQEJ6xjAnmMReR8i3RlXjyLtMtFJKAANv8TXSZuB/mv
aCBNQNON8T2VPzR1+/ZpeDM8nnbZZwN7s0PnMSAut9buCstMEZ0lRecOU96/pVCY
ukRcGp/y/qLtRr682nc9mbTAEU5Ndy3UJKRaqJL+jF5ujC+tVJzc1gluocYXOFcp
zlUlql28UEmrkaxhBTDYM0GHTeOCP3xn6FMzJdwGgdN985RiGgAg/mkIaeVtFFlx
RlA97fuCT5yzmw==
-----END CERTIFICATE-----
Generated at Sun Oct 26 17:37:55 2025 by rpki-client