Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
File: uXK9SdVRtK2lvWu2lWGKeUUa004.mft (raw, json)
Hash identifier: +DEiz3Tr34eod4Gh57+H7OXnWxUFqkpAB3cg18B5/Ig=
Subject key identifier: F9:2A:FB:88:E6:60:4E:68:E7:2A:BD:E5:C4:CE:D7:0A:86:4B:1A:D6
Authority key identifier: B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
Certificate issuer: /CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Certificate serial: 019A258AB085364EE6850CA286B4A275B99A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
Manifest number: 0958
Signing time: Mon 27 Oct 2025 12:00:37 +0000
Manifest this update: Mon 27 Oct 2025 12:00:37 +0000
Manifest next update: Tue 28 Oct 2025 12:00:37 +0000
Files and hashes: 1: WLPv_kiHkV3foWtvEt3ca8XVjG4.roa (hash: 485f4Pk93SekykKHn/Aq62sR6+/AvJghjHie2NYKlhI=)
2: hcpelkMB3HLp2KFjx3F4u7p7QiA.roa (hash: 61+3xEVQzTEIYSViuJWqNAx3iaX+tJlcGs9MEnOKcRg=)
3: uXK9SdVRtK2lvWu2lWGKeUUa004.crl (hash: L7hgTeOjK+4thm9s4QnBVo0mltnSlp+2nGjwpka0SMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 12:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:8a:b0:85:36:4e:e6:85:0c:a2:86:b4:a2:75:b9:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Validity
Not Before: Oct 27 12:00:37 2025 GMT
Not After : Oct 28 12:00:37 2025 GMT
Subject: CN=f92afb88e6604e68e72abde5c4ced70a864b1ad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:23:4c:3a:37:22:ad:0f:46:2a:53:a7:c1:2d:
c7:1f:d4:c0:8b:9b:46:51:66:d3:71:fe:51:82:0e:
6a:18:cf:fe:ba:c2:6a:9f:d3:82:32:ec:45:05:ed:
ab:19:6a:94:95:f3:5f:1a:69:ff:ee:f2:b1:33:e9:
c3:61:1d:92:77:90:b9:ed:5d:59:34:bf:5b:97:56:
8e:0e:30:97:e0:d3:7d:1c:72:22:06:bf:71:3e:aa:
0a:c0:bc:7f:dd:9b:6d:d4:7e:65:55:a2:9c:84:3e:
4f:26:87:d7:6a:5f:5b:af:71:cf:6d:db:fe:1e:a8:
19:a0:83:55:43:df:87:80:ef:3b:76:73:3a:91:e3:
2b:53:c6:e0:d9:81:6a:c8:a5:e5:8c:43:d9:46:ab:
a8:74:ea:21:d9:9c:da:7f:dc:3d:0e:6b:43:f3:7d:
53:11:ef:74:66:5f:19:f1:a2:cf:0a:20:b5:70:0a:
6a:85:fa:ab:da:70:52:9a:3d:25:2a:3a:78:c0:17:
73:7f:86:09:ad:3e:48:e0:12:a5:67:e7:18:11:60:
0a:56:32:6d:ac:60:4a:10:45:5e:3d:ce:99:98:83:
7a:a0:9c:4a:aa:32:77:78:98:0b:ca:80:44:a5:e9:
f2:a8:f2:43:70:70:39:08:ee:09:e8:75:83:a7:d6:
0e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:2A:FB:88:E6:60:4E:68:E7:2A:BD:E5:C4:CE:D7:0A:86:4B:1A:D6
X509v3 Authority Key Identifier:
keyid:B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:4e:d3:16:39:8f:59:98:dd:63:1e:f0:5a:1d:90:e3:11:e3:
12:17:a4:77:9b:64:2c:09:87:5b:af:cd:de:b1:38:a9:2d:cd:
1f:01:04:b2:ce:f2:b4:d9:49:aa:d9:6e:4f:cb:51:03:f5:f5:
c1:07:ec:d4:fd:28:94:18:49:8a:3e:5f:e7:3a:92:52:9c:3f:
11:1a:e4:81:82:94:ef:b7:b8:7c:73:c1:ed:de:42:23:9b:4e:
79:d1:4b:9e:6a:59:2c:11:56:90:b8:3d:21:5a:e4:08:6c:f8:
4f:e0:dd:6e:18:b9:fb:66:68:42:a9:11:17:2d:82:3d:ff:fd:
77:a9:78:cc:47:81:c5:b8:81:e1:85:5e:1f:3b:3d:42:2d:80:
56:e2:33:8b:98:97:ed:b3:3a:b2:02:7c:f9:51:82:68:3a:f1:
18:9a:11:27:e4:eb:47:84:1c:bd:c2:65:0b:79:e5:0c:08:c3:
bd:d3:4a:42:89:27:eb:7e:76:c6:fe:32:f1:bc:13:2a:74:a3:
85:51:50:08:96:ab:32:e6:e4:24:fb:08:10:38:66:81:7f:61:
3e:2c:8e:ee:bd:b4:b8:c2:15:33:e4:71:2b:10:e6:95:22:9b:
1a:bc:56:4a:79:0e:87:9b:7e:ad:93:cc:91:9f:89:ad:af:53:
6a:b0:04:5d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZolirCFNk7mhQyihrSidbmaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NzJiZDQ5ZDU1MWI0YWRhNWJkNmJiNjk1NjE4YTc5NDUx
YWQzNGUwHhcNMjUxMDI3MTIwMDM3WhcNMjUxMDI4MTIwMDM3WjAzMTEwLwYDVQQD
EyhmOTJhZmI4OGU2NjA0ZTY4ZTcyYWJkZTVjNGNlZDcwYTg2NGIxYWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiNMOjcirQ9GKlOnwS3HH9TAi5tG
UWbTcf5Rgg5qGM/+usJqn9OCMuxFBe2rGWqUlfNfGmn/7vKxM+nDYR2Sd5C57V1Z
NL9bl1aODjCX4NN9HHIiBr9xPqoKwLx/3Ztt1H5lVaKchD5PJofXal9br3HPbdv+
HqgZoINVQ9+HgO87dnM6keMrU8bg2YFqyKXljEPZRquodOoh2Zzaf9w9DmtD831T
Ee90Zl8Z8aLPCiC1cApqhfqr2nBSmj0lKjp4wBdzf4YJrT5I4BKlZ+cYEWAKVjJt
rGBKEEVePc6ZmIN6oJxKqjJ3eJgLyoBEpenyqPJDcHA5CO4J6HWDp9YOdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPkq+4jmYE5o5yq95cTO1wqGSxrWMB8GA1UdIwQY
MBaAFLlyvUnVUbStpb1rtpVhinlFGtNOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mZTA3YjctZjQ2NC00ZTY3LTgyOTkt
Y2E1ZTY4NTQzOGEyLzEvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mZTA3YjctZjQ2NC00ZTY3LTgyOTktY2E1ZTY4NTQzOGEy
LzEvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMk7TFjmP
WZjdYx7wWh2Q4xHjEhekd5tkLAmHW6/N3rE4qS3NHwEEss7ytNlJqtluT8tRA/X1
wQfs1P0olBhJij5f5zqSUpw/ERrkgYKU77e4fHPB7d5CI5tOedFLnmpZLBFWkLg9
IVrkCGz4T+Ddbhi5+2ZoQqkRFy2CPf/9d6l4zEeBxbiB4YVeHzs9Qi2AVuIzi5iX
7bM6sgJ8+VGCaDrxGJoRJ+TrR4QcvcJlC3nlDAjDvdNKQokn6352xv4y8bwTKnSj
hVFQCJarMubkJPsIEDhmgX9hPiyO7r20uMIVM+RxKxDmlSKbGrxWSnkOh5t+rZPM
kZ+Jra9TarAEXQ==
-----END CERTIFICATE-----
Generated at Mon Oct 27 20:32:01 2025 by rpki-client