Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
File: UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft (raw, json)
Hash identifier: RYakjlzr4jBPlc0/NHSyvFJ3eTgTSUk9Jgq268XAtX4=
Subject key identifier: 83:41:38:03:83:6B:A1:12:43:7F:70:28:E6:FB:F1:BC:D2:1F:5F:83
Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Certificate serial: 019A266641730BB0FE3C4B86D87C19256A88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
Manifest number: 1459
Signing time: Mon 27 Oct 2025 16:00:26 +0000
Manifest this update: Mon 27 Oct 2025 16:00:26 +0000
Manifest next update: Tue 28 Oct 2025 16:00:26 +0000
Files and hashes: 1: MggUNL8VW9yE4LnaTyr5YJxrDwU.roa (hash: GpA5vo0L4EKCpZl/rQZR5bRixQFok1LnqW2Xg8KUiaQ=)
2: UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl (hash: hiIKXNpIslid5s98VfNcdYVAbB8Sn9p3g4Dg7LfFgkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 16:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:66:41:73:0b:b0:fe:3c:4b:86:d8:7c:19:25:6a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Validity
Not Before: Oct 27 16:00:26 2025 GMT
Not After : Oct 28 16:00:26 2025 GMT
Subject: CN=83413803836ba112437f7028e6fbf1bcd21f5f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:06:de:8f:05:f6:ef:dd:20:e9:7d:37:36:b4:
32:9c:7c:ce:13:6b:64:ca:b2:3f:d6:4d:32:2f:d5:
dd:ac:c1:8f:03:dd:fb:90:8f:fd:a7:dc:b8:ed:ec:
7c:91:01:29:b4:0d:6f:72:e1:b1:20:77:4f:3d:a7:
0b:63:f3:d2:fd:b0:4e:30:ec:49:62:33:fa:bd:e3:
47:cd:bb:67:c4:42:27:6e:b5:e2:7c:83:3e:fb:a6:
70:77:9d:67:4c:41:d5:61:21:71:ac:3a:4a:d9:78:
b5:aa:59:0e:cb:72:25:a2:d0:5d:ba:68:7f:37:e8:
cc:08:40:7d:27:53:be:80:8f:8d:b4:81:76:4e:b5:
87:22:d6:2f:40:6e:55:21:b9:93:dd:1c:ac:49:47:
74:fd:14:31:b9:d2:1e:b4:2a:dd:fa:07:46:a6:a5:
dd:5c:66:bc:79:96:14:85:7c:04:0e:fb:e8:10:5f:
0d:a7:5e:60:5c:ee:30:b6:40:9d:99:f4:54:ce:7f:
59:94:fa:07:74:47:49:56:56:85:71:96:18:25:d2:
21:dd:20:14:1a:5a:2d:72:53:b9:7e:52:79:20:02:
f3:14:04:fb:3c:a1:a9:db:7b:07:34:92:ba:54:55:
6c:8e:95:e8:d9:77:d5:93:e0:d0:dc:05:ad:67:61:
a3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:41:38:03:83:6B:A1:12:43:7F:70:28:E6:FB:F1:BC:D2:1F:5F:83
X509v3 Authority Key Identifier:
keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:49:fd:82:8b:b3:ae:e8:05:25:a2:48:e4:19:aa:30:9f:fb:
2d:b0:90:c1:0c:4a:6d:bc:2c:ed:e2:73:fd:55:88:fe:20:a4:
45:d3:8d:be:ac:00:1a:fc:67:b3:65:df:4a:89:33:e5:a3:ee:
af:b3:59:82:aa:92:51:b8:6b:29:c8:1c:48:dc:4c:c3:63:8d:
1e:9d:01:7b:9e:24:3a:bd:26:cc:05:5f:5a:b0:02:02:4b:59:
63:a4:e6:b5:a5:86:0a:a9:93:54:80:bd:a7:e8:1f:23:f8:e8:
dc:5c:c7:f5:e7:79:a5:88:07:e3:77:a1:55:41:50:08:4b:d6:
f4:cc:07:c7:9f:7f:a3:7b:3c:9d:64:94:3b:b0:20:04:62:7c:
91:66:cc:2e:55:8a:45:e7:87:83:01:9e:b2:92:c2:2e:e5:59:
22:9f:8d:a1:ce:82:4c:48:52:76:c9:30:b5:db:69:36:d8:5d:
76:19:df:32:d6:bc:66:fd:da:2e:72:e4:7f:2c:14:01:9a:1a:
15:19:ae:43:c3:aa:6a:f8:ff:f7:a5:6c:7d:df:ad:23:06:90:
bf:17:50:8b:ef:ec:35:13:2f:a6:64:e2:3e:5d:38:cf:0d:e5:
53:23:d3:5c:41:d5:cb:e3:8a:4b:bd:54:9b:0f:43:9a:e8:67:
93:7b:20:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZomZkFzC7D+PEuG2HwZJWqIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyMzJkNDRkOWUwOGM4NzNkYjM1YzAyMTUxY2E0NGFlNTRi
NGI4YWYwHhcNMjUxMDI3MTYwMDI2WhcNMjUxMDI4MTYwMDI2WjAzMTEwLwYDVQQD
Eyg4MzQxMzgwMzgzNmJhMTEyNDM3ZjcwMjhlNmZiZjFiY2QyMWY1ZjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4AbejwX2790g6X03NrQynHzOE2tk
yrI/1k0yL9XdrMGPA937kI/9p9y47ex8kQEptA1vcuGxIHdPPacLY/PS/bBOMOxJ
YjP6veNHzbtnxEInbrXifIM++6Zwd51nTEHVYSFxrDpK2Xi1qlkOy3IlotBdumh/
N+jMCEB9J1O+gI+NtIF2TrWHItYvQG5VIbmT3RysSUd0/RQxudIetCrd+gdGpqXd
XGa8eZYUhXwEDvvoEF8Np15gXO4wtkCdmfRUzn9ZlPoHdEdJVlaFcZYYJdIh3SAU
GlotclO5flJ5IALzFAT7PKGp23sHNJK6VFVsjpXo2XfVk+DQ3AWtZ2GjawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFINBOAODa6ESQ39wKOb78bzSH1+DMB8GA1UdIwQY
MBaAFFIy1E2eCMhz2zXAIVHKRK5UtLivMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWpMVVRaNEl5SFBiTmNBaFVjcEVybFMwdUs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi84YjQwMGQtMWU4ZS00MGRhLWIxZDYt
YTY1NDFjZWIxZTQzLzEvVWpMVVRaNEl5SFBiTmNBaFVjcEVybFMwdUs4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi84YjQwMGQtMWU4ZS00MGRhLWIxZDYtYTY1NDFjZWIxZTQz
LzEvVWpMVVRaNEl5SFBiTmNBaFVjcEVybFMwdUs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnUn9gouz
rugFJaJI5BmqMJ/7LbCQwQxKbbws7eJz/VWI/iCkRdONvqwAGvxns2XfSokz5aPu
r7NZgqqSUbhrKcgcSNxMw2ONHp0Be54kOr0mzAVfWrACAktZY6TmtaWGCqmTVIC9
p+gfI/jo3FzH9ed5pYgH43ehVUFQCEvW9MwHx59/o3s8nWSUO7AgBGJ8kWbMLlWK
ReeHgwGespLCLuVZIp+Noc6CTEhSdskwtdtpNthddhnfMta8Zv3aLnLkfywUAZoa
FRmuQ8Oqavj/96Vsfd+tIwaQvxdQi+/sNRMvpmTiPl04zw3lUyPTXEHVy+OKS71U
mw9Dmuhnk3sgYg==
-----END CERTIFICATE-----
Generated at Tue Oct 28 01:54:18 2025 by rpki-client