Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
File: uHt2aWhxYpblu6C86DhWrnFluLg.mft (raw, json)
Hash identifier: U3JqU4iQrP8xk+LmCX/L0WmKCxV1iDs1hkwddnjPHbk=
Subject key identifier: 12:FB:15:24:E0:FE:D7:6F:4F:88:3D:26:C9:4D:9A:AC:6E:CF:C1:F9
Authority key identifier: B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
Certificate issuer: /CN=b87b766968716296e5bba0bce83856ae7165b8b8
Certificate serial: 01993FBACFD89FEB3D2A7FBD1645A568933E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
Manifest number: 1686
Signing time: Fri 12 Sep 2025 21:00:31 +0000
Manifest this update: Fri 12 Sep 2025 21:00:31 +0000
Manifest next update: Sat 13 Sep 2025 21:00:31 +0000
Files and hashes: 1: EMnxCwOEWhhPugjrcZ3jtYAbiJc.roa (hash: ioXKgGTre/pDJJ5LrVdx9gIh66mx4jxeELCjJSUVqnM=)
2: ft2mxf9aaNoul-AnIThMbBr-lps.roa (hash: xnKzHyjITrVDUs70AuSd+gwg5cbW8huGbxIys16mcfk=)
3: uHt2aWhxYpblu6C86DhWrnFluLg.crl (hash: lqYHWhe96dRRhkT6+9yjbhaYd5+OY7iNOYHAKYPZBrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Sep 2025 21:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:3f:ba:cf:d8:9f:eb:3d:2a:7f:bd:16:45:a5:68:93:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87b766968716296e5bba0bce83856ae7165b8b8
Validity
Not Before: Sep 12 21:00:31 2025 GMT
Not After : Sep 13 21:00:31 2025 GMT
Subject: CN=12fb1524e0fed76f4f883d26c94d9aac6ecfc1f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1e:fe:10:29:23:35:01:41:fa:66:84:0d:00:
b1:2d:19:bb:14:74:a4:84:a3:24:20:27:f2:b9:26:
ba:48:eb:b2:68:99:d7:cc:54:cc:75:7f:32:b9:95:
23:8e:61:be:a7:d1:f0:57:cd:14:f2:cf:ab:f8:69:
97:72:cd:03:c8:1f:f6:61:03:4c:07:a1:97:18:3f:
93:18:67:33:bb:87:97:ad:07:45:cf:6d:08:20:bb:
94:2d:2a:ec:e3:a0:18:7c:59:7c:41:c4:19:23:51:
bb:98:56:84:0a:7c:25:2b:ef:b3:ac:c3:7f:9d:0c:
22:ca:b8:dd:b2:37:58:c1:90:9b:fb:0e:ea:32:16:
ec:6c:c4:56:b0:6d:5d:14:04:74:37:56:a9:52:c0:
d2:29:b5:04:00:0f:2b:e9:6f:40:55:e3:97:ce:f9:
e9:7b:68:66:b5:1a:73:f9:3b:f8:5a:bf:c3:84:11:
cf:41:f3:61:6b:5c:38:01:0b:68:68:ad:81:89:df:
46:93:40:8b:b4:94:34:dd:04:ee:a1:a8:fc:b2:4f:
cc:8e:0b:05:1f:ab:4d:f7:45:b3:72:e7:15:15:f0:
84:54:ca:78:3f:23:06:78:0a:b9:69:94:45:c9:f8:
55:84:c5:e8:37:dd:66:08:1a:de:72:82:46:72:e4:
70:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:FB:15:24:E0:FE:D7:6F:4F:88:3D:26:C9:4D:9A:AC:6E:CF:C1:F9
X509v3 Authority Key Identifier:
keyid:B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:a3:e7:60:a4:4f:97:bf:78:3d:1a:36:72:eb:2e:98:4b:43:
d1:58:4f:78:5d:30:91:43:8d:63:68:06:0c:86:b4:75:98:0f:
05:16:a0:4a:c0:31:d4:40:ea:78:fb:79:fc:01:a3:66:b6:44:
54:e2:c4:e0:02:a8:bf:81:85:4e:26:19:da:35:15:ab:2c:84:
ed:2d:c5:64:15:08:22:cd:47:57:37:6a:40:d7:01:dc:56:f8:
62:4e:2c:a8:c6:bb:a8:ea:fe:0c:6a:66:a5:11:ec:8c:26:da:
bb:ef:c2:ba:e8:3e:1f:5e:09:a6:61:ce:3e:61:52:71:52:3b:
4a:2e:b5:85:b9:d3:88:09:1f:00:94:f2:2f:d3:5a:30:64:c6:
58:fc:03:fe:98:06:fa:1e:eb:9f:05:87:71:2b:5d:a7:bd:6f:
e3:5b:48:27:a7:d6:47:43:9c:7d:a0:f5:63:d6:35:5b:f1:c3:
9f:d1:3b:1e:43:03:6e:59:e9:17:2d:f8:5a:37:8c:f5:0d:2f:
ce:a6:c2:e5:12:75:08:a5:b7:33:3e:92:fb:de:b1:73:16:4b:
a4:e1:e9:10:89:11:ae:70:94:5a:34:39:5c:7e:fb:c8:46:dc:
b2:a9:a9:9c:c1:a7:4d:53:96:2a:40:08:71:cb:2b:58:d4:8e:
f7:e3:34:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk/us/Yn+s9Kn+9FkWlaJM+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4N2I3NjY5Njg3MTYyOTZlNWJiYTBiY2U4Mzg1NmFlNzE2
NWI4YjgwHhcNMjUwOTEyMjEwMDMxWhcNMjUwOTEzMjEwMDMxWjAzMTEwLwYDVQQD
EygxMmZiMTUyNGUwZmVkNzZmNGY4ODNkMjZjOTRkOWFhYzZlY2ZjMWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2B7+ECkjNQFB+maEDQCxLRm7FHSk
hKMkICfyuSa6SOuyaJnXzFTMdX8yuZUjjmG+p9HwV80U8s+r+GmXcs0DyB/2YQNM
B6GXGD+TGGczu4eXrQdFz20IILuULSrs46AYfFl8QcQZI1G7mFaECnwlK++zrMN/
nQwiyrjdsjdYwZCb+w7qMhbsbMRWsG1dFAR0N1apUsDSKbUEAA8r6W9AVeOXzvnp
e2hmtRpz+Tv4Wr/DhBHPQfNha1w4AQtoaK2Bid9Gk0CLtJQ03QTuoaj8sk/MjgsF
H6tN90WzcucVFfCEVMp4PyMGeAq5aZRFyfhVhMXoN91mCBrecoJGcuRw0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBL7FSTg/tdvT4g9JslNmqxuz8H5MB8GA1UdIwQY
MBaAFLh7dmlocWKW5bugvOg4Vq5xZbi4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUh0MmFXaHhZcGJsdTZDODZEaFdybkZsdUxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9hM2VkZTYtYmMzMS00ZDAwLTkyNWMt
M2Q2MTJmMzI0OTk2LzEvdUh0MmFXaHhZcGJsdTZDODZEaFdybkZsdUxnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS9hM2VkZTYtYmMzMS00ZDAwLTkyNWMtM2Q2MTJmMzI0OTk2
LzEvdUh0MmFXaHhZcGJsdTZDODZEaFdybkZsdUxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUaPnYKRP
l794PRo2cusumEtD0VhPeF0wkUONY2gGDIa0dZgPBRagSsAx1EDqePt5/AGjZrZE
VOLE4AKov4GFTiYZ2jUVqyyE7S3FZBUIIs1HVzdqQNcB3Fb4Yk4sqMa7qOr+DGpm
pRHsjCbau+/Cuug+H14JpmHOPmFScVI7Si61hbnTiAkfAJTyL9NaMGTGWPwD/pgG
+h7rnwWHcStdp71v41tIJ6fWR0OcfaD1Y9Y1W/HDn9E7HkMDblnpFy34WjeM9Q0v
zqbC5RJ1CKW3Mz6S+96xcxZLpOHpEIkRrnCUWjQ5XH77yEbcsqmpnMGnTVOWKkAI
ccsrWNSO9+M0iQ==
-----END CERTIFICATE-----
Generated at Sat Sep 13 06:41:30 2025 by rpki-client