Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
File: UfSwsEaesNBxmUzYI480vvAMb74.mft (raw, json)
Hash identifier: 81PgpnKcW/CForjDqMehDv2MCTEoJMQ0E57NORepy0M=
Subject key identifier: FA:D6:FE:31:AA:4B:76:39:59:03:FB:95:45:43:B1:CF:C2:8A:91:98
Authority key identifier: 51:F4:B0:B0:46:9E:B0:D0:71:99:4C:D8:23:8F:34:BE:F0:0C:6F:BE
Certificate issuer: /CN=51f4b0b0469eb0d071994cd8238f34bef00c6fbe
Certificate serial: 019A4E190CE998392F4C1AA90C7ED87CE7E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
Manifest number: 0689
Signing time: Tue 04 Nov 2025 09:00:55 +0000
Manifest this update: Tue 04 Nov 2025 09:00:55 +0000
Manifest next update: Wed 05 Nov 2025 09:00:55 +0000
Files and hashes: 1: KHE55IVfhkxEyRPjetKWMXa2fOg.roa (hash: yUvUxbUmijIWF7cOOamnBQm49nexWbf1vGMkvSs2OSs=)
2: MUOaLZ3d_QsQnysUJySXLMsZzOU.roa (hash: 1qoGyuyStZqxcmt0N9pUTOJmPuRj96okDTjQXgbS+Y4=)
3: Rhy7zTj1EkXhElbIMETGgJpRjqs.roa (hash: ykkvIUtAn8lmI1ZdNTc/3RSxnBdbB/KGggwB/jZhXVs=)
4: UfSwsEaesNBxmUzYI480vvAMb74.crl (hash: 1DvjBFVyYO/4GWd3wWAjMo6Hf/U/IkXbRdpC699NA0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:19:0c:e9:98:39:2f:4c:1a:a9:0c:7e:d8:7c:e7:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51f4b0b0469eb0d071994cd8238f34bef00c6fbe
Validity
Not Before: Nov 4 09:00:55 2025 GMT
Not After : Nov 5 09:00:55 2025 GMT
Subject: CN=fad6fe31aa4b76395903fb954543b1cfc28a9198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:54:ae:05:f4:08:c8:38:d0:5a:4c:bf:19:12:
70:6d:82:4d:ef:93:e9:d3:72:5a:b8:1c:a7:11:75:
76:4a:a7:fa:27:f4:54:23:3d:07:e6:00:7b:94:41:
1a:af:ad:79:73:a9:01:99:b6:de:dd:a1:a2:58:29:
1d:b6:fc:6e:db:ff:15:75:59:a5:b3:a2:8d:49:67:
ed:be:dd:f8:30:8c:61:45:cf:53:95:8f:6c:42:87:
cc:31:e4:09:97:24:b0:84:6e:c5:bc:5e:ca:f1:34:
fc:6c:0e:0d:57:b7:2d:0c:eb:32:77:9b:47:76:90:
40:c0:08:1f:59:20:7d:b1:a0:f0:29:86:b8:7f:7b:
b7:c2:8c:c2:1f:c8:67:92:a2:a4:d3:83:c0:8a:f7:
6d:68:a6:eb:2e:9b:12:1f:9c:3a:1b:5a:99:b6:4d:
cc:92:5c:48:33:98:3f:b6:c0:48:a9:ed:b9:2f:5f:
09:14:81:cd:9c:e7:07:74:6e:e8:a8:b4:eb:ae:91:
e6:90:27:c8:37:62:68:14:77:5c:77:5f:f8:d6:39:
44:4d:1f:f1:ca:10:9f:2e:b2:69:bd:7a:1a:97:26:
05:ab:47:2e:06:fb:ff:35:0b:f5:81:1c:2e:2c:a8:
17:6e:de:2b:5f:b0:71:77:b9:73:b8:d1:87:31:ad:
7b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D6:FE:31:AA:4B:76:39:59:03:FB:95:45:43:B1:CF:C2:8A:91:98
X509v3 Authority Key Identifier:
keyid:51:F4:B0:B0:46:9E:B0:D0:71:99:4C:D8:23:8F:34:BE:F0:0C:6F:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:47:cf:27:8f:c6:a3:a5:2b:53:c5:91:be:59:d6:08:59:c3:
e0:db:7b:74:2f:49:d3:3a:49:20:81:d0:10:90:fa:c7:70:87:
3f:55:f6:50:cf:cc:91:c2:d9:42:d1:ca:9e:35:9c:74:4f:d7:
ad:6d:3e:73:a7:20:ea:e8:ae:04:81:72:0b:ca:a4:01:6b:a6:
52:41:98:c7:0b:b1:3f:90:80:2f:cc:33:63:8e:e0:dd:5c:46:
aa:60:db:6e:96:f4:4d:e9:fc:8b:87:52:f2:4d:c5:37:11:ea:
59:b5:06:a5:59:08:0c:c3:55:2a:35:46:75:12:ef:10:98:11:
4b:45:4d:db:fd:56:61:17:ab:d7:2b:3b:69:f0:97:6c:2d:55:
15:4b:4c:f6:cf:95:2f:ea:f2:b2:81:b8:b3:dc:52:c9:53:26:
ac:64:c0:6c:d1:95:b5:17:fa:7f:98:a8:61:d9:62:57:77:78:
10:4a:df:70:2f:0b:5c:44:ec:fa:c6:36:d2:4c:fa:04:db:9a:
e7:37:58:e0:6d:09:a2:e1:c5:84:d3:72:df:6a:97:56:bc:f9:
01:bd:1e:a8:2c:61:13:83:ef:e6:76:48:24:42:4a:ed:c6:86:
ee:41:dc:4d:3a:31:74:68:3e:dc:b4:93:c3:c2:13:75:d8:d3:
8e:d4:6e:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOGQzpmDkvTBqpDH7YfOfmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxZjRiMGIwNDY5ZWIwZDA3MTk5NGNkODIzOGYzNGJlZjAw
YzZmYmUwHhcNMjUxMTA0MDkwMDU1WhcNMjUxMTA1MDkwMDU1WjAzMTEwLwYDVQQD
EyhmYWQ2ZmUzMWFhNGI3NjM5NTkwM2ZiOTU0NTQzYjFjZmMyOGE5MTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFSuBfQIyDjQWky/GRJwbYJN75Pp
03JauBynEXV2Sqf6J/RUIz0H5gB7lEEar615c6kBmbbe3aGiWCkdtvxu2/8VdVml
s6KNSWftvt34MIxhRc9TlY9sQofMMeQJlySwhG7FvF7K8TT8bA4NV7ctDOsyd5tH
dpBAwAgfWSB9saDwKYa4f3u3wozCH8hnkqKk04PAivdtaKbrLpsSH5w6G1qZtk3M
klxIM5g/tsBIqe25L18JFIHNnOcHdG7oqLTrrpHmkCfIN2JoFHdcd1/41jlETR/x
yhCfLrJpvXoalyYFq0cuBvv/NQv1gRwuLKgXbt4rX7Bxd7lzuNGHMa17XwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPrW/jGqS3Y5WQP7lUVDsc/CipGYMB8GA1UdIwQY
MBaAFFH0sLBGnrDQcZlM2COPNL7wDG++MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWZTd3NFYWVzTkJ4bVV6WUk0ODB2dkFNYjc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9kM2FiMjgtN2Y0Ny00MWYzLWIyMzEt
Nzg4NDRlMTAxMTMzLzEvVWZTd3NFYWVzTkJ4bVV6WUk0ODB2dkFNYjc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9kM2FiMjgtN2Y0Ny00MWYzLWIyMzEtNzg4NDRlMTAxMTMz
LzEvVWZTd3NFYWVzTkJ4bVV6WUk0ODB2dkFNYjc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAikfPJ4/G
o6UrU8WRvlnWCFnD4Nt7dC9J0zpJIIHQEJD6x3CHP1X2UM/MkcLZQtHKnjWcdE/X
rW0+c6cg6uiuBIFyC8qkAWumUkGYxwuxP5CAL8wzY47g3VxGqmDbbpb0Ten8i4dS
8k3FNxHqWbUGpVkIDMNVKjVGdRLvEJgRS0VN2/1WYRer1ys7afCXbC1VFUtM9s+V
L+rysoG4s9xSyVMmrGTAbNGVtRf6f5ioYdliV3d4EErfcC8LXETs+sY20kz6BNua
5zdY4G0JouHFhNNy32qXVrz5Ab0eqCxhE4Pv5nZIJEJK7caG7kHcTToxdGg+3LST
w8ITddjTjtRu1g==
-----END CERTIFICATE-----
Generated at Tue Nov 4 17:19:30 2025 by rpki-client