Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
File: uT2pHx9TY0JyxZEQh85my602FKM.mft (raw, json)
Hash identifier: r2XZ+V7JQkc/3uK3AIVSbhKPi39Al3pRPniu9JHC+t0=
Subject key identifier: C0:64:F3:00:27:66:75:62:E2:7F:C9:3F:BA:9A:26:3F:11:9C:F2:86
Authority key identifier: B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
Certificate issuer: /CN=b93da91f1f53634272c5911087ce66cbad3614a3
Certificate serial: 019A71B797E8FD9341485D44C1EFB6933390
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
Manifest number: 08BD
Signing time: Tue 11 Nov 2025 07:00:48 +0000
Manifest this update: Tue 11 Nov 2025 07:00:48 +0000
Manifest next update: Wed 12 Nov 2025 07:00:48 +0000
Files and hashes: 1: 0386LGj4Sidbyca8KneFkNR54TI.roa (hash: jcV5FqK/anJpS83+3AC/ntYQGRcWnZsS3JRi5ZH9EXg=)
2: uT2pHx9TY0JyxZEQh85my602FKM.crl (hash: hWv4oIbgs0ottR6aU2A2yd/3kiht0HM6OegUHoYVWd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:97:e8:fd:93:41:48:5d:44:c1:ef:b6:93:33:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b93da91f1f53634272c5911087ce66cbad3614a3
Validity
Not Before: Nov 11 07:00:48 2025 GMT
Not After : Nov 12 07:00:48 2025 GMT
Subject: CN=c064f30027667562e27fc93fba9a263f119cf286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4f:55:c1:bb:2d:88:a9:4d:a2:97:1f:15:f4:
70:51:92:4a:0c:91:32:d2:71:91:8d:b5:27:da:05:
e1:40:4a:59:4a:3d:a5:67:d8:eb:77:f7:51:7e:77:
47:7e:2f:60:75:30:20:ae:81:7d:6b:d2:5d:ed:04:
be:f0:39:d3:1d:53:69:dc:5d:a7:8c:28:38:63:7c:
c8:79:95:40:1f:57:19:bd:89:c0:10:3c:7e:98:2f:
0c:34:01:97:bf:1c:a1:99:47:c8:ac:6c:d1:ca:ff:
b1:bb:9a:d0:fd:18:61:c8:de:26:f0:11:90:17:22:
48:28:5d:89:1a:8c:6c:25:0d:f3:23:9e:03:9b:ea:
c7:f2:7b:0b:a6:b4:ef:5a:7a:20:a4:bb:e5:12:78:
fa:4a:a6:97:74:7d:7e:59:26:98:81:32:0e:7f:41:
00:30:f8:f4:13:66:78:86:f9:91:ba:0c:40:6a:e8:
9e:fd:22:c9:18:de:d6:27:a1:8a:41:a7:2f:63:6b:
34:c3:99:bb:b9:11:26:6d:49:83:07:a0:e4:7f:f0:
60:12:6c:eb:b3:53:6b:07:85:7f:03:e6:a8:e7:bc:
b2:15:c4:75:e7:d0:e0:84:e4:7d:83:66:c4:e5:d3:
eb:84:2e:9a:e0:6e:8b:17:e3:ea:99:9e:c9:a7:14:
13:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:64:F3:00:27:66:75:62:E2:7F:C9:3F:BA:9A:26:3F:11:9C:F2:86
X509v3 Authority Key Identifier:
keyid:B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:09:0d:e4:80:a8:f2:d6:31:0a:5a:91:86:e3:6f:39:af:eb:
5c:32:04:e9:f2:e8:16:b0:56:f0:40:d6:39:8d:16:31:54:18:
88:1b:c0:55:e1:ac:c7:3a:4d:19:4e:9c:cb:e4:f3:b5:ed:30:
fe:12:65:97:ba:ea:fb:3c:5a:dd:65:90:54:10:af:0b:4e:63:
e9:d9:0a:40:74:73:22:96:5d:4d:51:95:57:c8:f0:66:48:f1:
a2:0b:fb:f8:b8:d6:8c:f2:26:20:44:4d:22:51:b8:f8:72:9f:
84:70:bd:db:11:3d:37:80:3d:03:f9:53:60:7a:10:13:44:0f:
65:8d:f5:62:5a:79:a4:55:b1:d2:21:e9:d4:dc:a6:ea:94:20:
a9:46:1d:cf:72:cc:96:c5:d0:97:9d:5d:d4:e5:e1:31:7b:f5:
af:42:90:d1:eb:96:c2:02:2e:c0:1a:e0:f5:92:4b:a3:95:01:
d8:b4:f8:c4:a1:10:8f:90:6b:ed:8d:ae:e6:be:b4:d9:8a:37:
06:c1:7a:86:93:a5:8d:c6:95:c8:04:15:f9:41:02:cc:71:d1:
90:4e:ab:bd:da:70:6e:e4:e8:b3:cd:80:0e:3a:3d:ae:bc:23:
a6:6a:d2:d9:7d:b8:0b:21:c9:fd:e1:d2:b1:ee:62:d8:41:78:
2b:9e:5b:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxt5fo/ZNBSF1Ewe+2kzOQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5M2RhOTFmMWY1MzYzNDI3MmM1OTExMDg3Y2U2NmNiYWQz
NjE0YTMwHhcNMjUxMTExMDcwMDQ4WhcNMjUxMTEyMDcwMDQ4WjAzMTEwLwYDVQQD
EyhjMDY0ZjMwMDI3NjY3NTYyZTI3ZmM5M2ZiYTlhMjYzZjExOWNmMjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxU9VwbstiKlNopcfFfRwUZJKDJEy
0nGRjbUn2gXhQEpZSj2lZ9jrd/dRfndHfi9gdTAgroF9a9Jd7QS+8DnTHVNp3F2n
jCg4Y3zIeZVAH1cZvYnAEDx+mC8MNAGXvxyhmUfIrGzRyv+xu5rQ/RhhyN4m8BGQ
FyJIKF2JGoxsJQ3zI54Dm+rH8nsLprTvWnogpLvlEnj6SqaXdH1+WSaYgTIOf0EA
MPj0E2Z4hvmRugxAauie/SLJGN7WJ6GKQacvY2s0w5m7uREmbUmDB6Dkf/BgEmzr
s1NrB4V/A+ao57yyFcR159DghOR9g2bE5dPrhC6a4G6LF+PqmZ7JpxQThQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMBk8wAnZnVi4n/JP7qaJj8RnPKGMB8GA1UdIwQY
MBaAFLk9qR8fU2NCcsWREIfOZsutNhSjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVQycEh4OVRZMEp5eFpFUWg4NW15NjAyRktNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9jYTQ0NzEtMzRkMC00ODE2LTgxZDEt
OGJmNWIxZWQxMjA5LzEvdVQycEh4OVRZMEp5eFpFUWg4NW15NjAyRktNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9jYTQ0NzEtMzRkMC00ODE2LTgxZDEtOGJmNWIxZWQxMjA5
LzEvdVQycEh4OVRZMEp5eFpFUWg4NW15NjAyRktNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARQkN5ICo
8tYxClqRhuNvOa/rXDIE6fLoFrBW8EDWOY0WMVQYiBvAVeGsxzpNGU6cy+Tzte0w
/hJll7rq+zxa3WWQVBCvC05j6dkKQHRzIpZdTVGVV8jwZkjxogv7+LjWjPImIERN
IlG4+HKfhHC92xE9N4A9A/lTYHoQE0QPZY31Ylp5pFWx0iHp1Nym6pQgqUYdz3LM
lsXQl51d1OXhMXv1r0KQ0euWwgIuwBrg9ZJLo5UB2LT4xKEQj5Br7Y2u5r602Yo3
BsF6hpOljcaVyAQV+UECzHHRkE6rvdpwbuTos82ADjo9rrwjpmrS2X24CyHJ/eHS
se5i2EF4K55bIA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:36:18 2025 by rpki-client