Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
File: uMaM2mX2aWLMuWg_FVDRTlYQego.mft (raw, json)
Hash identifier: zzcv+wfFFqfRq1u7M6JLFg6S4OC6sVIvUOHTWcmGKYY=
Subject key identifier: D1:FB:7F:30:8E:C2:CE:BC:26:82:0D:99:EF:59:DB:7C:1C:2E:FD:92
Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Certificate serial: 019A00DA6C76990659FC9387561335E74513
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
Manifest number: 07F3
Signing time: Mon 20 Oct 2025 09:01:45 +0000
Manifest this update: Mon 20 Oct 2025 09:01:45 +0000
Manifest next update: Tue 21 Oct 2025 09:01:45 +0000
Files and hashes: 1: sIDOXg67yEuo_7naS_BfCVLmcEk.roa (hash: d8agrpVd7dmHrJl/IhvjPgn5Td9Dpm4TU3p5w1Cxjt0=)
2: uMaM2mX2aWLMuWg_FVDRTlYQego.crl (hash: /7kwbPLgJRYLYB+7x8Bh9gPFt6oUEjw0BLdAHW4ZKzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:da:6c:76:99:06:59:fc:93:87:56:13:35:e7:45:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Validity
Not Before: Oct 20 09:01:45 2025 GMT
Not After : Oct 21 09:01:45 2025 GMT
Subject: CN=d1fb7f308ec2cebc26820d99ef59db7c1c2efd92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0d:7c:62:3a:b4:87:84:62:0c:d5:22:bf:f8:
bf:e4:48:3c:b3:fc:31:8f:a3:fd:6f:27:91:92:f0:
d3:b9:cc:43:9f:d1:ad:90:a0:d1:54:aa:c7:2a:60:
9a:87:70:e4:a7:f2:12:12:d6:02:c4:6c:c3:df:61:
20:d9:6d:dd:66:1d:8c:48:fd:6b:e2:26:eb:cb:fa:
d7:2e:91:ab:53:97:ad:fb:34:88:f5:10:f3:69:b2:
cf:5e:64:22:bc:5d:82:cf:64:48:12:6e:79:46:34:
56:09:c9:98:65:14:8e:fd:a8:c1:65:ac:13:93:7f:
c5:bb:a5:54:2e:6f:c1:e7:a1:6e:2d:2a:29:96:90:
36:9a:52:f2:d5:2d:c4:aa:8e:b9:39:c0:88:95:84:
af:cf:df:48:aa:e6:f2:14:d3:cd:38:b5:b3:46:02:
be:5c:4a:7c:09:d1:b8:fb:a1:8b:1a:4f:fd:70:96:
52:a2:4f:18:5c:fb:2a:26:fd:97:09:2c:5e:4b:8b:
8b:20:09:33:40:4f:14:33:78:42:82:0c:4d:22:c5:
23:01:d1:81:df:c9:c7:19:e7:af:10:d8:6f:e2:a3:
34:c9:db:79:0a:43:2f:68:70:01:96:d0:7e:e5:d5:
8c:04:a8:fc:dd:78:d7:ce:83:d0:7c:9e:38:b0:f7:
54:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FB:7F:30:8E:C2:CE:BC:26:82:0D:99:EF:59:DB:7C:1C:2E:FD:92
X509v3 Authority Key Identifier:
keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:58:c2:2e:2f:57:66:ff:fa:0e:6f:1b:77:5a:c3:13:7b:b1:
d7:2d:13:06:15:11:bb:c9:6a:4e:d6:09:0d:1c:9b:92:b1:22:
c6:1b:8a:1b:d2:97:d2:c6:bc:16:f3:4e:c1:a0:15:8a:3f:9c:
ba:7c:01:1f:ac:30:6f:3a:b7:dd:ce:76:49:e8:4b:cf:fe:df:
a5:bf:70:41:6c:92:e5:ec:a6:47:e2:27:53:46:c6:f6:f4:cc:
5b:70:99:bf:33:28:bb:90:d1:8a:bd:27:f4:45:8f:28:46:93:
b9:12:a9:2d:ec:22:e4:3d:46:4b:23:2a:bd:0e:87:1f:8a:1c:
cf:fc:3c:30:65:23:e0:e9:0d:e5:68:ee:50:c0:57:b6:9c:98:
65:c0:fd:15:4a:8c:0c:bd:c0:d0:20:71:64:ab:f9:37:c2:22:
bf:19:ba:bd:35:4d:13:7c:32:8c:54:96:c5:d7:c0:ef:dc:cf:
eb:64:78:dd:ca:85:7b:99:af:d6:40:2f:58:ec:c7:d9:16:36:
14:fb:46:56:ab:94:6e:c3:cd:fe:d6:89:ee:7c:7b:c7:f0:46:
ea:aa:ac:38:d7:1f:e8:5d:37:22:75:0c:64:3e:af:18:df:a3:
4d:f1:91:7c:4b:a3:1d:e7:a1:8d:29:79:64:b9:d3:6c:62:00:
81:77:cd:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoA2mx2mQZZ/JOHVhM150UTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4YzY4Y2RhNjVmNjY5NjJjY2I5NjgzZjE1NTBkMTRlNTYx
MDdhMGEwHhcNMjUxMDIwMDkwMTQ1WhcNMjUxMDIxMDkwMTQ1WjAzMTEwLwYDVQQD
EyhkMWZiN2YzMDhlYzJjZWJjMjY4MjBkOTllZjU5ZGI3YzFjMmVmZDkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqA18Yjq0h4RiDNUiv/i/5Eg8s/wx
j6P9byeRkvDTucxDn9GtkKDRVKrHKmCah3Dkp/ISEtYCxGzD32Eg2W3dZh2MSP1r
4ibry/rXLpGrU5et+zSI9RDzabLPXmQivF2Cz2RIEm55RjRWCcmYZRSO/ajBZawT
k3/Fu6VULm/B56FuLSoplpA2mlLy1S3Eqo65OcCIlYSvz99IqubyFNPNOLWzRgK+
XEp8CdG4+6GLGk/9cJZSok8YXPsqJv2XCSxeS4uLIAkzQE8UM3hCggxNIsUjAdGB
38nHGeevENhv4qM0ydt5CkMvaHABltB+5dWMBKj83XjXzoPQfJ44sPdUeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNH7fzCOws68JoINme9Z23wcLv2SMB8GA1UdIwQY
MBaAFLjGjNpl9mlizLloPxVQ0U5WEHoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAt
OGY0OGEzNzAyZjkwLzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAtOGY0OGEzNzAyZjkw
LzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdVjCLi9X
Zv/6Dm8bd1rDE3ux1y0TBhURu8lqTtYJDRybkrEixhuKG9KX0sa8FvNOwaAVij+c
unwBH6wwbzq33c52SehLz/7fpb9wQWyS5eymR+InU0bG9vTMW3CZvzMou5DRir0n
9EWPKEaTuRKpLewi5D1GSyMqvQ6HH4ocz/w8MGUj4OkN5WjuUMBXtpyYZcD9FUqM
DL3A0CBxZKv5N8Iivxm6vTVNE3wyjFSWxdfA79zP62R43cqFe5mv1kAvWOzH2RY2
FPtGVquUbsPN/taJ7nx7x/BG6qqsONcf6F03InUMZD6vGN+jTfGRfEujHeehjSl5
ZLnTbGIAgXfN1A==
-----END CERTIFICATE-----
Generated at Mon Oct 20 16:31:36 2025 by rpki-client