Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
File: uFnbfywuOzq9i_QV8M4f_zNDKew.mft (raw, json)
Hash identifier: X1Kh5DC/v+fx80SflNKv9sMvSgVdlpD9i3MZImA97vw=
Subject key identifier: A5:9F:CC:CC:8F:F1:5E:53:DD:15:65:40:8A:0B:F6:F3:04:38:C7:9B
Authority key identifier: B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
Certificate issuer: /CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Certificate serial: 019A22C09AA64E573F80D66120A1BC39A6C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
Manifest number: 0E51
Signing time: Sun 26 Oct 2025 23:00:39 +0000
Manifest this update: Sun 26 Oct 2025 23:00:39 +0000
Manifest next update: Mon 27 Oct 2025 23:00:39 +0000
Files and hashes: 1: KrWaj3PmGUr__R-XWPo-LvjSSzE.roa (hash: D32/8FWqAF1z0NVQywtDopSVNiH+dneRDeaovNlaE+U=)
2: uFnbfywuOzq9i_QV8M4f_zNDKew.crl (hash: duKvv1ebMiSjDlxI+o3sEB09ioOyP+qZ2NwIwB/xq3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:c0:9a:a6:4e:57:3f:80:d6:61:20:a1:bc:39:a6:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Validity
Not Before: Oct 26 23:00:39 2025 GMT
Not After : Oct 27 23:00:39 2025 GMT
Subject: CN=a59fcccc8ff15e53dd1565408a0bf6f30438c79b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2f:25:e9:24:6b:e0:01:d6:8c:d8:99:9a:ac:
fb:93:6c:f3:c7:07:16:37:f4:aa:78:2b:9b:af:ed:
b1:25:dc:ae:a1:4f:89:3c:7a:13:00:b6:91:49:bc:
37:98:38:16:6c:81:e4:08:6c:94:06:60:62:02:8d:
02:b8:26:b0:96:4f:63:55:38:f7:e3:49:fe:0c:d4:
e7:05:e9:23:69:99:26:78:2c:0b:99:c3:ad:5f:79:
bf:51:fe:d6:d0:85:5a:c0:c5:bc:08:ea:2e:22:4b:
fd:ba:9d:8f:f7:c0:0b:59:a4:8f:69:3c:ac:be:d6:
0e:24:36:79:52:80:49:63:47:79:38:b7:2b:5f:02:
f4:81:75:dc:8a:06:3f:e2:74:1d:37:b1:44:cf:a9:
35:33:51:ae:78:bf:78:92:93:9d:49:01:2f:d7:ed:
2a:82:02:9e:fe:6a:e9:6b:4b:40:d7:74:af:2b:e7:
a6:81:57:20:6d:f7:1a:2b:59:d8:1d:73:50:34:4d:
32:79:f5:4a:3e:e8:a0:4b:c5:c9:2c:ad:a1:8a:60:
b4:24:c0:bb:72:ed:69:23:ee:94:69:91:e7:df:63:
10:8e:91:6d:62:51:2d:6f:c1:7d:4b:67:93:5e:21:
d8:fd:26:70:19:06:e8:ea:ce:64:7c:14:b0:59:15:
80:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:9F:CC:CC:8F:F1:5E:53:DD:15:65:40:8A:0B:F6:F3:04:38:C7:9B
X509v3 Authority Key Identifier:
keyid:B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:61:e1:ec:f2:ab:8b:0f:2a:db:31:25:00:2e:be:c7:44:b1:
af:af:c9:7b:26:37:c6:e9:30:92:8a:aa:5b:15:85:57:db:6d:
83:ca:76:b5:21:d0:b1:9d:55:ad:2e:e5:3a:44:f9:d0:a5:81:
d6:c5:1f:f6:58:e4:5a:a8:28:fc:5f:cb:a4:7c:07:d4:7f:21:
0a:2d:76:6f:3d:5e:2d:b4:3a:b7:8c:41:19:e2:b4:db:83:a8:
88:10:fb:33:16:23:da:85:e5:b2:28:83:10:f9:8b:91:03:ca:
45:9d:08:97:90:5c:20:ec:17:89:4c:01:d1:9e:17:07:10:31:
a1:cc:ba:cc:22:99:d4:f6:37:2d:d8:5f:25:d3:56:fb:e2:d4:
c7:8d:6a:22:46:91:e8:67:4d:f6:b4:f5:4b:09:f0:d4:11:e4:
5c:8d:8b:1f:d2:89:9d:2e:3f:0b:a7:4e:55:f5:48:8b:a9:aa:
ee:2d:17:36:4a:3e:a0:e3:7c:59:a9:77:fe:04:46:d9:42:40:
62:1e:c7:66:f9:f6:67:1f:02:64:44:ba:50:7b:01:e3:1f:8a:
9e:e5:eb:5b:ba:af:c7:34:56:d3:39:32:ea:bd:4d:30:3b:a5:
41:c3:d9:e5:e2:2b:34:e0:78:15:35:00:24:8c:09:be:0d:68:
16:c4:0d:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoiwJqmTlc/gNZhIKG8OabBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4NTlkYjdmMmMyZTNiM2FiZDhiZjQxNWYwY2UxZmZmMzM0
MzI5ZWMwHhcNMjUxMDI2MjMwMDM5WhcNMjUxMDI3MjMwMDM5WjAzMTEwLwYDVQQD
EyhhNTlmY2NjYzhmZjE1ZTUzZGQxNTY1NDA4YTBiZjZmMzA0MzhjNzliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuC8l6SRr4AHWjNiZmqz7k2zzxwcW
N/SqeCubr+2xJdyuoU+JPHoTALaRSbw3mDgWbIHkCGyUBmBiAo0CuCawlk9jVTj3
40n+DNTnBekjaZkmeCwLmcOtX3m/Uf7W0IVawMW8COouIkv9up2P98ALWaSPaTys
vtYOJDZ5UoBJY0d5OLcrXwL0gXXcigY/4nQdN7FEz6k1M1GueL94kpOdSQEv1+0q
ggKe/mrpa0tA13SvK+emgVcgbfcaK1nYHXNQNE0yefVKPuigS8XJLK2himC0JMC7
cu1pI+6UaZHn32MQjpFtYlEtb8F9S2eTXiHY/SZwGQbo6s5kfBSwWRWA/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKWfzMyP8V5T3RVlQIoL9vMEOMebMB8GA1UdIwQY
MBaAFLhZ238sLjs6vYv0FfDOH/8zQynsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZWI3YzMtZTM0YS00ZmJjLTkyNzIt
NGMxYzU3YTgxZmZkLzEvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83ZWI3YzMtZTM0YS00ZmJjLTkyNzItNGMxYzU3YTgxZmZk
LzEvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIGHh7PKr
iw8q2zElAC6+x0Sxr6/JeyY3xukwkoqqWxWFV9ttg8p2tSHQsZ1VrS7lOkT50KWB
1sUf9ljkWqgo/F/LpHwH1H8hCi12bz1eLbQ6t4xBGeK024OoiBD7MxYj2oXlsiiD
EPmLkQPKRZ0Il5BcIOwXiUwB0Z4XBxAxocy6zCKZ1PY3LdhfJdNW++LUx41qIkaR
6GdN9rT1Swnw1BHkXI2LH9KJnS4/C6dOVfVIi6mq7i0XNko+oON8Wal3/gRG2UJA
Yh7HZvn2Zx8CZES6UHsB4x+KnuXrW7qvxzRW0zky6r1NMDulQcPZ5eIrNOB4FTUA
JIwJvg1oFsQNMA==
-----END CERTIFICATE-----
Generated at Mon Oct 27 04:31:13 2025 by rpki-client