Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
File: uXK9SdVRtK2lvWu2lWGKeUUa004.mft (raw, json)
Hash identifier: QjqWYyhpBarGoU9vL7mqNYsx1TF41aaWx8WDpvZW/nc=
Subject key identifier: A6:25:3B:ED:4A:86:68:16:6C:7F:B6:B0:B8:8C:AB:3C:43:33:50:7C
Authority key identifier: B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
Certificate issuer: /CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Certificate serial: 0199361372A159A6F7AFFECF13FDDF44E504
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
Manifest number: 08DC
Signing time: Thu 11 Sep 2025 00:01:08 +0000
Manifest this update: Thu 11 Sep 2025 00:01:08 +0000
Manifest next update: Fri 12 Sep 2025 00:01:08 +0000
Files and hashes: 1: WLPv_kiHkV3foWtvEt3ca8XVjG4.roa (hash: 485f4Pk93SekykKHn/Aq62sR6+/AvJghjHie2NYKlhI=)
2: hcpelkMB3HLp2KFjx3F4u7p7QiA.roa (hash: 61+3xEVQzTEIYSViuJWqNAx3iaX+tJlcGs9MEnOKcRg=)
3: uXK9SdVRtK2lvWu2lWGKeUUa004.crl (hash: tWwmVQ0yi9Zg77JoCs23kJCw8XcG5Z6d6aeGnMNtLUc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 00:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:13:72:a1:59:a6:f7:af:fe:cf:13:fd:df:44:e5:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Validity
Not Before: Sep 11 00:01:08 2025 GMT
Not After : Sep 12 00:01:08 2025 GMT
Subject: CN=a6253bed4a8668166c7fb6b0b88cab3c4333507c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:62:92:d3:e4:24:b8:6c:e4:e2:49:9a:c8:6c:
b0:01:46:32:aa:9f:da:ad:7d:ba:36:d8:e5:c0:2e:
d5:eb:02:cf:38:63:9f:c3:2e:c0:95:5a:cf:1c:42:
b7:b7:ce:9a:ef:01:03:a1:0d:b7:41:70:35:4a:ee:
fc:82:f7:b8:a9:f4:76:d9:6c:da:f2:2e:bd:27:b1:
b3:fe:a4:5d:ab:40:22:40:f6:4d:32:23:69:ff:a8:
d5:b1:29:33:bb:11:fd:47:47:09:01:6d:00:5b:69:
08:d5:21:6b:d1:e2:dd:1a:cf:dc:86:e1:17:be:f2:
3b:c6:23:95:c5:bf:c6:c7:b7:15:9d:43:26:d2:1d:
7c:97:88:c6:b7:30:15:24:c3:60:2c:e6:f7:6b:8b:
56:18:cd:48:7a:84:1b:ec:0b:79:f7:21:c2:7c:27:
45:14:f9:20:68:a2:df:4a:a9:47:9e:ec:ba:e7:f2:
b2:81:7a:45:c1:a9:77:a2:f9:ba:d3:4e:a1:0b:21:
97:ea:82:03:68:0f:66:69:b9:42:20:90:fe:93:96:
e4:63:9a:be:f1:0e:7d:e0:b1:0a:81:b8:89:47:13:
9a:e1:39:70:6e:2b:81:a1:10:3e:42:58:75:cf:11:
51:e9:ad:63:b6:ec:72:7f:6b:f1:c0:f9:ba:ad:e9:
e6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:25:3B:ED:4A:86:68:16:6C:7F:B6:B0:B8:8C:AB:3C:43:33:50:7C
X509v3 Authority Key Identifier:
keyid:B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:54:10:24:46:91:51:df:8b:26:2d:7e:a3:b6:c9:81:74:19:
ee:d1:c6:03:d9:fe:9e:01:4b:9e:cc:57:80:00:1f:d5:98:1f:
dc:d2:a2:5e:8e:cc:2a:a6:a6:63:0b:d0:72:55:f8:32:12:4b:
ab:62:60:16:05:b0:82:d5:91:a6:e7:21:43:5b:c3:fb:58:ef:
04:87:ff:67:61:02:1f:6f:bc:4e:1c:28:e5:3d:aa:30:e3:fd:
bc:bb:a7:fb:43:31:eb:aa:a4:b2:3a:a2:18:2e:7a:4a:86:74:
29:ed:ee:64:9f:20:d7:de:2b:4b:36:e3:cf:a0:bc:b1:2a:ab:
5d:fe:63:15:81:7d:07:85:f3:7c:0a:76:c7:99:e4:a4:b9:e3:
a1:1f:b1:bb:43:86:02:23:b1:c9:b5:d5:de:b6:1b:73:31:64:
ff:b2:7b:19:83:91:77:60:b0:4c:a6:94:d0:15:51:b9:fd:1a:
53:29:49:56:07:e3:bf:fc:68:de:65:2b:df:42:5e:e0:c2:8d:
52:f2:f4:fb:ca:db:dc:9e:9b:e5:04:02:a8:5a:71:ef:a2:a1:
bb:92:bc:92:34:60:65:bb:e6:e9:ae:10:19:a8:09:57:d4:4d:
a6:77:c7:06:f6:42:63:ec:82:99:91:c0:48:c4:7d:27:f0:34:
23:12:68:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk2E3KhWab3r/7PE/3fROUEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NzJiZDQ5ZDU1MWI0YWRhNWJkNmJiNjk1NjE4YTc5NDUx
YWQzNGUwHhcNMjUwOTExMDAwMTA4WhcNMjUwOTEyMDAwMTA4WjAzMTEwLwYDVQQD
EyhhNjI1M2JlZDRhODY2ODE2NmM3ZmI2YjBiODhjYWIzYzQzMzM1MDdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsGKS0+QkuGzk4kmayGywAUYyqp/a
rX26NtjlwC7V6wLPOGOfwy7AlVrPHEK3t86a7wEDoQ23QXA1Su78gve4qfR22Wza
8i69J7Gz/qRdq0AiQPZNMiNp/6jVsSkzuxH9R0cJAW0AW2kI1SFr0eLdGs/chuEX
vvI7xiOVxb/Gx7cVnUMm0h18l4jGtzAVJMNgLOb3a4tWGM1IeoQb7At59yHCfCdF
FPkgaKLfSqlHnuy65/KygXpFwal3ovm6006hCyGX6oIDaA9mablCIJD+k5bkY5q+
8Q594LEKgbiJRxOa4TlwbiuBoRA+Qlh1zxFR6a1jtuxyf2vxwPm6renmhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKYlO+1KhmgWbH+2sLiMqzxDM1B8MB8GA1UdIwQY
MBaAFLlyvUnVUbStpb1rtpVhinlFGtNOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mZTA3YjctZjQ2NC00ZTY3LTgyOTkt
Y2E1ZTY4NTQzOGEyLzEvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mZTA3YjctZjQ2NC00ZTY3LTgyOTktY2E1ZTY4NTQzOGEy
LzEvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwFQQJEaR
Ud+LJi1+o7bJgXQZ7tHGA9n+ngFLnsxXgAAf1Zgf3NKiXo7MKqamYwvQclX4MhJL
q2JgFgWwgtWRpuchQ1vD+1jvBIf/Z2ECH2+8Thwo5T2qMOP9vLun+0Mx66qksjqi
GC56SoZ0Ke3uZJ8g194rSzbjz6C8sSqrXf5jFYF9B4XzfAp2x5nkpLnjoR+xu0OG
AiOxybXV3rYbczFk/7J7GYORd2CwTKaU0BVRuf0aUylJVgfjv/xo3mUr30Je4MKN
UvL0+8rb3J6b5QQCqFpx76Khu5K8kjRgZbvm6a4QGagJV9RNpnfHBvZCY+yCmZHA
SMR9J/A0IxJojA==
-----END CERTIFICATE-----
Generated at Thu Sep 11 09:01:37 2025 by rpki-client