Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
File: UJSiarpxAHYh_VmdU3u3rqreizM.mft (raw, json)
Hash identifier: ul62xMfNI1KUVzsQvzBXvyxoeicMvmR8e2j9PjhBCmo=
Subject key identifier: F1:16:8D:EC:57:A0:7A:47:A7:DF:86:21:E6:6F:95:6A:25:0D:4A:AB
Authority key identifier: 50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
Certificate issuer: /CN=5094a26aba71007621fd599d537bb7aeaade8b33
Certificate serial: 01974779B22AA777F6A12ED8653AEEE0405B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
Manifest number: 157F
Signing time: Fri 06 Jun 2025 23:00:47 +0000
Manifest this update: Fri 06 Jun 2025 23:00:47 +0000
Manifest next update: Sat 07 Jun 2025 23:00:47 +0000
Files and hashes: 1: PYLR3kfr_0El_Ga2E9JeZcCyCVc.roa (hash: A0449RCi6B29H8zKA0rMM/NDvKNi2c+elOaTXG6BpHk=)
2: UJSiarpxAHYh_VmdU3u3rqreizM.crl (hash: E3ibk3TEB4jj/YijUa5vF3bki7shsindURaKzNc4ATU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 23:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:b2:2a:a7:77:f6:a1:2e:d8:65:3a:ee:e0:40:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5094a26aba71007621fd599d537bb7aeaade8b33
Validity
Not Before: Jun 6 23:00:47 2025 GMT
Not After : Jun 7 23:00:47 2025 GMT
Subject: CN=f1168dec57a07a47a7df8621e66f956a250d4aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3e:c9:2c:d9:ea:9b:96:30:45:09:94:f0:07:
22:8f:7e:6c:4f:07:ea:63:47:0c:28:6a:b9:ca:ee:
ef:35:b9:74:ce:63:98:bb:70:0b:73:be:45:39:66:
50:45:16:49:e1:9d:95:93:db:3e:20:ce:95:21:9b:
4b:64:90:a7:d9:3d:11:3b:91:79:26:49:9a:b8:5b:
b1:77:79:da:4a:2e:1d:82:15:24:92:69:2b:b4:da:
47:6e:b3:de:9c:54:c7:2b:17:ee:8f:f3:21:25:bb:
64:ea:77:d0:b1:f2:40:b3:8e:30:04:f4:a9:ac:5b:
39:a1:ee:7a:83:ed:63:7c:a6:9e:54:24:7a:3f:69:
51:b5:82:2f:99:dc:c7:58:00:6c:30:23:f8:c1:fb:
f6:e7:ed:43:96:e9:71:f6:a2:fe:1e:e5:37:bf:d3:
65:c0:6e:d3:16:f6:57:10:89:2a:12:b6:c6:48:39:
4c:ca:89:a5:4e:ed:42:5e:75:6a:9f:e5:7d:e4:ea:
85:af:e5:cd:c3:6b:ac:07:3b:96:cd:7c:a1:3f:cf:
f7:6a:68:e2:64:15:e0:77:f6:a3:90:38:ba:3c:46:
84:38:87:4c:a4:7b:5b:80:ea:ad:90:2e:f1:77:91:
50:52:8b:9a:1e:16:b5:13:06:ca:f3:e1:dd:21:0a:
a9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:16:8D:EC:57:A0:7A:47:A7:DF:86:21:E6:6F:95:6A:25:0D:4A:AB
X509v3 Authority Key Identifier:
keyid:50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:7f:3d:97:44:08:3c:a3:6b:54:ee:ae:fe:d5:6f:60:de:17:
0d:7e:a1:c7:de:eb:79:cf:27:3b:d3:14:e1:a2:c0:27:58:54:
92:8c:59:ef:da:aa:4e:44:ee:94:79:bf:57:b9:ea:3e:64:45:
12:e4:ae:ab:c4:95:65:20:b0:52:21:26:80:da:f3:4e:42:84:
57:da:27:51:47:fe:da:aa:46:22:01:80:62:ed:73:6b:96:9b:
b6:ce:8f:98:8e:c5:30:25:3e:ae:d5:40:5f:40:c4:26:a0:cf:
5c:99:b1:5f:71:aa:20:42:ea:97:bf:2d:4c:e5:78:6a:8f:56:
23:fe:44:f0:71:35:0d:e6:20:49:5d:5b:fb:1f:94:26:3f:e3:
48:5a:8e:a2:7d:18:39:5d:cf:a8:e3:0a:c3:d2:7b:3b:77:84:
f9:4a:32:62:ff:5f:26:ee:a1:38:59:a7:6c:fa:b3:13:b7:00:
0e:fc:9f:1b:ff:96:99:27:f2:29:3d:4c:08:3e:2a:f0:05:32:
d5:3d:30:83:ee:86:47:8d:00:06:a3:fa:8a:d7:43:33:bf:a3:
74:9c:2b:4b:42:3e:e5:88:12:d5:ae:15:bf:bb:72:cf:f9:75:
aa:b5:45:ad:40:65:c8:e7:79:c8:35:26:0f:7d:c9:a8:0d:29:
12:6b:96:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHebIqp3f2oS7YZTru4EBbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwOTRhMjZhYmE3MTAwNzYyMWZkNTk5ZDUzN2JiN2FlYWFk
ZThiMzMwHhcNMjUwNjA2MjMwMDQ3WhcNMjUwNjA3MjMwMDQ3WjAzMTEwLwYDVQQD
EyhmMTE2OGRlYzU3YTA3YTQ3YTdkZjg2MjFlNjZmOTU2YTI1MGQ0YWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvz7JLNnqm5YwRQmU8Acij35sTwfq
Y0cMKGq5yu7vNbl0zmOYu3ALc75FOWZQRRZJ4Z2Vk9s+IM6VIZtLZJCn2T0RO5F5
JkmauFuxd3naSi4dghUkkmkrtNpHbrPenFTHKxfuj/MhJbtk6nfQsfJAs44wBPSp
rFs5oe56g+1jfKaeVCR6P2lRtYIvmdzHWABsMCP4wfv25+1Dlulx9qL+HuU3v9Nl
wG7TFvZXEIkqErbGSDlMyomlTu1CXnVqn+V95OqFr+XNw2usBzuWzXyhP8/3amji
ZBXgd/ajkDi6PEaEOIdMpHtbgOqtkC7xd5FQUouaHha1EwbK8+HdIQqpnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPEWjexXoHpHp9+GIeZvlWolDUqrMB8GA1UdIwQY
MBaAFFCUomq6cQB2If1ZnVN7t66q3oszMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUpTaWFycHhBSFloX1ZtZFUzdTNycXJlaXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS85ZmNlNzgtNGY5ZC00ODQ3LWI3NTkt
YjQ1MWU0NzdiOWMyLzEvVUpTaWFycHhBSFloX1ZtZFUzdTNycXJlaXpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS85ZmNlNzgtNGY5ZC00ODQ3LWI3NTktYjQ1MWU0NzdiOWMy
LzEvVUpTaWFycHhBSFloX1ZtZFUzdTNycXJlaXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFn89l0QI
PKNrVO6u/tVvYN4XDX6hx97rec8nO9MU4aLAJ1hUkoxZ79qqTkTulHm/V7nqPmRF
EuSuq8SVZSCwUiEmgNrzTkKEV9onUUf+2qpGIgGAYu1za5abts6PmI7FMCU+rtVA
X0DEJqDPXJmxX3GqIELql78tTOV4ao9WI/5E8HE1DeYgSV1b+x+UJj/jSFqOon0Y
OV3PqOMKw9J7O3eE+UoyYv9fJu6hOFmnbPqzE7cADvyfG/+WmSfyKT1MCD4q8AUy
1T0wg+6GR40ABqP6itdDM7+jdJwrS0I+5YgS1a4Vv7tyz/l1qrVFrUBlyOd5yDUm
D33JqA0pEmuWYQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:25:58 2025 by rpki-client