Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
File: uT2pHx9TY0JyxZEQh85my602FKM.mft (raw, json)
Hash identifier: OIjdZH13qbRnQqII7cMZzPp7h3x/fXrFXRdPM78RGq8=
Subject key identifier: F1:32:A2:D2:C4:4E:46:4A:8D:6B:8F:5D:FD:35:97:77:E0:1A:EE:CA
Authority key identifier: B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
Certificate issuer: /CN=b93da91f1f53634272c5911087ce66cbad3614a3
Certificate serial: 0199239FF9F6C585C20AB48234004B89C709
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
Manifest number: 0810
Signing time: Sun 07 Sep 2025 10:01:50 +0000
Manifest this update: Sun 07 Sep 2025 10:01:50 +0000
Manifest next update: Mon 08 Sep 2025 10:01:50 +0000
Files and hashes: 1: 0386LGj4Sidbyca8KneFkNR54TI.roa (hash: jcV5FqK/anJpS83+3AC/ntYQGRcWnZsS3JRi5ZH9EXg=)
2: uT2pHx9TY0JyxZEQh85my602FKM.crl (hash: d0a2KGgKt0tqhYT+cTpBl5mkZjrjmU1RvpZt+BJOFCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:f9:f6:c5:85:c2:0a:b4:82:34:00:4b:89:c7:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b93da91f1f53634272c5911087ce66cbad3614a3
Validity
Not Before: Sep 7 10:01:50 2025 GMT
Not After : Sep 8 10:01:50 2025 GMT
Subject: CN=f132a2d2c44e464a8d6b8f5dfd359777e01aeeca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:66:1b:86:d1:8d:91:32:3c:56:26:18:f6:84:
2c:79:d8:8f:19:7c:df:69:8a:37:90:b8:a7:10:e9:
ca:d8:16:92:fb:86:54:9e:19:1b:25:cf:55:81:1c:
7a:bc:14:73:65:c2:2e:63:72:0b:9b:82:c4:c3:c2:
9d:04:3d:4f:9f:fd:0b:88:f6:5a:80:e4:85:e9:71:
72:81:63:ed:6f:a5:de:12:30:8b:c7:42:bd:f9:0f:
40:cb:0a:c9:a8:a2:a8:6a:fb:6d:06:c7:4c:72:0a:
28:3d:d2:d5:14:26:d1:26:b9:63:01:01:75:2d:43:
9f:c0:e6:13:5d:1e:bc:19:62:7b:12:7f:19:3b:45:
4a:78:61:ee:fa:4f:c3:75:5b:01:7f:cc:ea:da:af:
0f:90:e7:11:31:81:2f:21:4f:72:89:a0:3e:ee:56:
43:db:7c:93:89:ce:3f:fc:6d:21:a0:78:75:cd:b9:
b3:2b:1d:6d:19:3b:d3:15:73:04:65:b3:30:f3:65:
1d:6f:47:b6:0f:22:4a:92:8b:b0:00:80:6b:45:fe:
1d:1e:b2:cb:41:77:0c:c0:0e:6d:34:ec:ac:45:7a:
12:e7:67:34:9d:0a:e9:2e:e1:b0:95:e7:78:a3:c8:
0d:7b:f3:d0:a1:bf:d2:94:1e:95:33:cb:b0:72:7d:
74:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:32:A2:D2:C4:4E:46:4A:8D:6B:8F:5D:FD:35:97:77:E0:1A:EE:CA
X509v3 Authority Key Identifier:
keyid:B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:b5:c3:ce:24:b8:32:4b:cc:85:32:14:1e:a3:7a:cc:12:1e:
93:6a:34:92:0c:b0:99:d3:9b:66:13:ab:32:ea:a6:d0:30:4c:
5e:fd:fb:bc:64:99:b6:09:34:55:37:5c:c6:e4:9f:4d:42:b3:
35:5c:fe:a9:25:d0:14:ab:f6:39:2d:74:c1:83:3d:62:13:38:
33:e6:1b:03:17:32:74:fd:6f:0b:0d:3d:36:26:6c:fd:10:0a:
4a:6a:82:09:5a:ae:c4:5a:e5:3f:0c:2e:24:42:b5:52:51:6f:
11:97:c8:e1:42:cb:27:17:07:04:23:33:3f:75:6a:99:7f:19:
b8:5c:1f:db:94:db:55:2c:3f:4b:f7:c6:1b:f7:ff:e1:c5:10:
fa:56:99:28:0c:89:57:d7:18:7f:b0:c3:ca:63:ed:01:c0:81:
fd:f9:a0:20:d6:9e:95:4d:24:3e:5f:ef:14:d4:cb:ab:b3:dc:
ad:d4:44:f8:4c:30:a1:4e:a4:c4:6e:4a:67:7c:c9:79:9e:69:
f7:3d:d7:fa:f0:c8:b8:d7:c1:80:8e:1c:e8:13:72:0a:9d:89:
47:2a:4b:d2:18:ff:90:d4:a7:ad:2c:50:40:aa:1a:50:fa:07:
4c:46:72:8f:df:49:18:b4:bd:45:c6:3e:b0:3e:ba:bf:ca:1b:
a9:2e:83:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjn/n2xYXCCrSCNABLiccJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5M2RhOTFmMWY1MzYzNDI3MmM1OTExMDg3Y2U2NmNiYWQz
NjE0YTMwHhcNMjUwOTA3MTAwMTUwWhcNMjUwOTA4MTAwMTUwWjAzMTEwLwYDVQQD
EyhmMTMyYTJkMmM0NGU0NjRhOGQ2YjhmNWRmZDM1OTc3N2UwMWFlZWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2GYbhtGNkTI8ViYY9oQsediPGXzf
aYo3kLinEOnK2BaS+4ZUnhkbJc9VgRx6vBRzZcIuY3ILm4LEw8KdBD1Pn/0LiPZa
gOSF6XFygWPtb6XeEjCLx0K9+Q9AywrJqKKoavttBsdMcgooPdLVFCbRJrljAQF1
LUOfwOYTXR68GWJ7En8ZO0VKeGHu+k/DdVsBf8zq2q8PkOcRMYEvIU9yiaA+7lZD
23yTic4//G0hoHh1zbmzKx1tGTvTFXMEZbMw82Udb0e2DyJKkouwAIBrRf4dHrLL
QXcMwA5tNOysRXoS52c0nQrpLuGwled4o8gNe/PQob/SlB6VM8uwcn10TQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPEyotLETkZKjWuPXf01l3fgGu7KMB8GA1UdIwQY
MBaAFLk9qR8fU2NCcsWREIfOZsutNhSjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVQycEh4OVRZMEp5eFpFUWg4NW15NjAyRktNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9jYTQ0NzEtMzRkMC00ODE2LTgxZDEt
OGJmNWIxZWQxMjA5LzEvdVQycEh4OVRZMEp5eFpFUWg4NW15NjAyRktNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9jYTQ0NzEtMzRkMC00ODE2LTgxZDEtOGJmNWIxZWQxMjA5
LzEvdVQycEh4OVRZMEp5eFpFUWg4NW15NjAyRktNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPLXDziS4
MkvMhTIUHqN6zBIek2o0kgywmdObZhOrMuqm0DBMXv37vGSZtgk0VTdcxuSfTUKz
NVz+qSXQFKv2OS10wYM9YhM4M+YbAxcydP1vCw09NiZs/RAKSmqCCVquxFrlPwwu
JEK1UlFvEZfI4ULLJxcHBCMzP3VqmX8ZuFwf25TbVSw/S/fGG/f/4cUQ+laZKAyJ
V9cYf7DDymPtAcCB/fmgINaelU0kPl/vFNTLq7PcrdRE+EwwoU6kxG5KZ3zJeZ5p
9z3X+vDIuNfBgI4c6BNyCp2JRypL0hj/kNSnrSxQQKoaUPoHTEZyj99JGLS9RcY+
sD66v8obqS6DwQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:49:45 2025 by rpki-client