Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
File: UJSiarpxAHYh_VmdU3u3rqreizM.mft (raw, json)
Hash identifier: 9whsNACghboWK6KMFVKH2lElYMayk2LSA40l8sTfly0=
Subject key identifier: 65:18:0E:90:A4:1E:FD:BB:BB:E8:86:59:02:61:62:71:F8:33:73:7B
Authority key identifier: 50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
Certificate issuer: /CN=5094a26aba71007621fd599d537bb7aeaade8b33
Certificate serial: 0199285730BE35480165B7E878FC840455DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
Manifest number: 1678
Signing time: Mon 08 Sep 2025 08:00:26 +0000
Manifest this update: Mon 08 Sep 2025 08:00:26 +0000
Manifest next update: Tue 09 Sep 2025 08:00:26 +0000
Files and hashes: 1: PYLR3kfr_0El_Ga2E9JeZcCyCVc.roa (hash: A0449RCi6B29H8zKA0rMM/NDvKNi2c+elOaTXG6BpHk=)
2: UJSiarpxAHYh_VmdU3u3rqreizM.crl (hash: cWgmlP/nQ9BCikCoOq13yTBP7vr8Itgmk/Rg+fYep5I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:28:57:30:be:35:48:01:65:b7:e8:78:fc:84:04:55:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5094a26aba71007621fd599d537bb7aeaade8b33
Validity
Not Before: Sep 8 08:00:26 2025 GMT
Not After : Sep 9 08:00:26 2025 GMT
Subject: CN=65180e90a41efdbbbbe8865902616271f833737b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:57:e0:c9:fc:2f:97:e0:4d:1c:36:d3:ab:a6:
b9:e9:db:36:4f:51:1d:ae:65:8a:72:e2:64:79:c3:
92:48:92:08:76:fd:26:80:cc:3a:d7:96:a0:e2:d6:
e2:15:a5:80:b4:72:e2:86:d1:a7:6a:55:89:8d:57:
be:cc:6d:9b:56:f9:91:8e:56:de:f8:aa:31:40:a9:
1c:99:5d:c3:80:26:b3:ad:ca:0d:2c:02:6a:00:f8:
fe:3b:c0:da:c5:41:df:10:d8:71:e9:a1:c3:63:82:
1a:40:a9:54:64:19:3a:f8:f3:04:27:2b:7f:b3:d7:
c7:75:3b:92:1d:e2:f5:8c:ee:6c:01:3c:a8:82:65:
15:9f:1b:15:e5:5b:90:99:97:4f:9e:5c:c1:14:6a:
20:0b:3c:11:b0:13:ab:86:ac:dc:cc:13:4f:f8:a3:
26:f6:62:7a:b3:b7:ba:17:31:e2:ae:26:e4:61:27:
35:db:72:a2:9d:8b:4a:c6:96:cd:23:6a:77:18:63:
26:c4:ae:2b:f7:40:51:79:97:27:b2:b0:9c:56:d6:
13:be:37:05:a3:4f:55:4b:0e:34:b2:c7:8c:46:be:
f6:5f:ff:a3:6f:75:07:ff:8b:7e:3c:6b:94:c3:51:
27:ce:8a:2a:e4:00:65:59:ee:d4:96:b3:44:97:34:
17:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:18:0E:90:A4:1E:FD:BB:BB:E8:86:59:02:61:62:71:F8:33:73:7B
X509v3 Authority Key Identifier:
keyid:50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:dd:10:97:ca:a3:cd:4e:e0:da:9a:78:9a:90:36:44:5d:e8:
d4:74:ce:78:35:ef:b1:31:19:4d:60:f8:c4:64:63:49:f0:d4:
37:3c:63:05:bd:9e:35:b8:a4:a0:3a:d1:4d:91:30:79:2c:6d:
45:24:be:6b:37:36:4d:40:0b:4c:48:51:87:e5:24:93:aa:86:
5d:7c:81:e6:d2:f2:2d:39:20:47:1a:9f:dd:74:ab:21:28:52:
f7:02:39:32:c7:00:05:9d:c3:9d:5d:02:1c:8f:4f:48:73:31:
28:82:c7:8b:3a:fa:e8:5a:99:36:b4:66:07:c6:36:52:76:63:
af:3a:35:04:13:e2:1c:e5:3b:19:f2:83:88:e4:7e:e3:77:28:
ab:99:a7:39:4f:ec:4e:18:fb:62:43:38:c3:79:2b:d0:b5:cb:
b2:01:12:eb:dc:49:99:52:f1:3f:73:ba:b0:d7:b5:da:44:e1:
85:a3:3d:1b:fb:e3:3b:ab:7a:9f:fa:ca:69:5b:f9:09:b2:b3:
04:4f:08:dd:a7:19:b3:55:f9:37:41:e1:2f:7b:66:19:d8:58:
dc:a9:20:ac:b3:93:75:73:3e:ff:16:8d:c1:69:0d:7f:8b:d7:
f3:c1:97:50:87:93:8f:7c:ca:6c:4c:a3:f7:7f:5a:d1:c2:e9:
5b:60:13:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkoVzC+NUgBZbfoePyEBFXdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwOTRhMjZhYmE3MTAwNzYyMWZkNTk5ZDUzN2JiN2FlYWFk
ZThiMzMwHhcNMjUwOTA4MDgwMDI2WhcNMjUwOTA5MDgwMDI2WjAzMTEwLwYDVQQD
Eyg2NTE4MGU5MGE0MWVmZGJiYmJlODg2NTkwMjYxNjI3MWY4MzM3MzdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0lfgyfwvl+BNHDbTq6a56ds2T1Ed
rmWKcuJkecOSSJIIdv0mgMw615ag4tbiFaWAtHLihtGnalWJjVe+zG2bVvmRjlbe
+KoxQKkcmV3DgCazrcoNLAJqAPj+O8DaxUHfENhx6aHDY4IaQKlUZBk6+PMEJyt/
s9fHdTuSHeL1jO5sATyogmUVnxsV5VuQmZdPnlzBFGogCzwRsBOrhqzczBNP+KMm
9mJ6s7e6FzHiribkYSc123KinYtKxpbNI2p3GGMmxK4r90BReZcnsrCcVtYTvjcF
o09VSw40sseMRr72X/+jb3UH/4t+PGuUw1Enzooq5ABlWe7UlrNElzQXbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGUYDpCkHv27u+iGWQJhYnH4M3N7MB8GA1UdIwQY
MBaAFFCUomq6cQB2If1ZnVN7t66q3oszMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUpTaWFycHhBSFloX1ZtZFUzdTNycXJlaXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS85ZmNlNzgtNGY5ZC00ODQ3LWI3NTkt
YjQ1MWU0NzdiOWMyLzEvVUpTaWFycHhBSFloX1ZtZFUzdTNycXJlaXpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS85ZmNlNzgtNGY5ZC00ODQ3LWI3NTktYjQ1MWU0NzdiOWMy
LzEvVUpTaWFycHhBSFloX1ZtZFUzdTNycXJlaXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANN0Ql8qj
zU7g2pp4mpA2RF3o1HTOeDXvsTEZTWD4xGRjSfDUNzxjBb2eNbikoDrRTZEweSxt
RSS+azc2TUALTEhRh+Ukk6qGXXyB5tLyLTkgRxqf3XSrIShS9wI5MscABZ3DnV0C
HI9PSHMxKILHizr66FqZNrRmB8Y2UnZjrzo1BBPiHOU7GfKDiOR+43coq5mnOU/s
Thj7YkM4w3kr0LXLsgES69xJmVLxP3O6sNe12kThhaM9G/vjO6t6n/rKaVv5CbKz
BE8I3acZs1X5N0HhL3tmGdhY3KkgrLOTdXM+/xaNwWkNf4vX88GXUIeTj3zKbEyj
939a0cLpW2ATjg==
-----END CERTIFICATE-----
Generated at Mon Sep 8 13:54:47 2025 by rpki-client