Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
File: uPrah6dvKfguJaMXnno4zwxrAwA.mft (raw, json)
Hash identifier: boHgtFuSZyYJJjQQZegWvRbFGSVTutgow4bxE3c+HX4=
Subject key identifier: 17:64:7D:4A:BC:D7:67:B4:73:EA:BD:A5:99:95:E3:CD:E9:50:AC:60
Authority key identifier: B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00
Certificate issuer: /CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300
Certificate serial: 019A70A5543978D35CD36F6F0EEBD31D8CDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
Manifest number: 16ED
Signing time: Tue 11 Nov 2025 02:01:14 +0000
Manifest this update: Tue 11 Nov 2025 02:01:14 +0000
Manifest next update: Wed 12 Nov 2025 02:01:14 +0000
Files and hashes: 1: qMZm8Udrq7vD5T2yYBAeB18Ev8A.roa (hash: z2089CzZPnbakpAVa3XOh5ZgRIHqWKGPuJw64Jno6FU=)
2: uPrah6dvKfguJaMXnno4zwxrAwA.crl (hash: 02njv+tcFndEwDtHtKZaTGxS922ZzNC8UMiVZU6Vjt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:54:39:78:d3:5c:d3:6f:6f:0e:eb:d3:1d:8c:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300
Validity
Not Before: Nov 11 02:01:14 2025 GMT
Not After : Nov 12 02:01:14 2025 GMT
Subject: CN=17647d4abcd767b473eabda59995e3cde950ac60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8a:78:d0:7c:62:78:4e:ba:2a:7e:2d:69:b8:
c0:62:b0:2a:38:b0:c3:52:5d:72:28:b3:b9:30:93:
ab:f6:a1:10:24:7b:65:cf:73:63:a6:f8:e0:47:fc:
15:cf:35:fc:4e:6e:0a:46:ca:97:fa:ed:20:91:f1:
5f:cd:4b:20:a6:e7:a0:55:48:d0:54:26:ea:b7:f6:
58:3e:78:ea:ea:29:ad:c3:f9:68:2c:b0:b5:d3:6b:
b4:fd:4c:eb:c9:80:9b:62:4e:05:55:3d:24:f5:06:
f5:33:7d:9b:a0:28:d6:a9:54:79:52:c4:27:aa:8d:
6e:e6:b2:47:6a:35:93:74:d4:2c:dc:19:d4:e6:fc:
1a:76:a2:ff:fd:4b:33:34:26:14:bb:24:57:96:5d:
62:26:72:de:e5:aa:6b:2f:95:cc:fa:15:d6:63:82:
df:7e:3e:88:07:6c:6a:a7:0d:e1:44:42:a0:87:97:
67:82:44:20:fd:52:42:4f:16:9d:61:55:0e:d0:05:
e3:52:32:eb:d1:06:62:8d:a6:fc:22:19:5c:27:c5:
b5:9f:1f:11:de:72:a3:69:43:cd:ba:65:94:61:b0:
00:68:5b:7e:5d:bf:0b:84:05:52:17:39:25:4b:0b:
d0:22:90:27:43:3c:32:19:99:fd:f1:05:6e:da:70:
2a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:64:7D:4A:BC:D7:67:B4:73:EA:BD:A5:99:95:E3:CD:E9:50:AC:60
X509v3 Authority Key Identifier:
keyid:B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:d9:87:60:90:66:63:e4:a8:b1:cb:34:e5:99:35:d3:a8:e6:
5b:d8:e9:9b:cc:59:33:b6:53:46:fb:29:e6:cd:62:81:d6:68:
51:6d:39:f6:72:bc:ee:b5:2b:76:aa:1d:05:c6:3b:7d:35:7d:
72:2f:d5:e7:e3:b3:2e:df:63:07:10:6d:ca:b9:2d:86:88:42:
0f:eb:df:a1:7e:7b:da:58:c7:bf:ca:5e:ac:ea:38:bb:c7:e3:
be:d1:22:75:1d:c4:03:4b:f1:9a:21:03:2c:03:a4:e7:8c:25:
f7:9b:ec:83:5b:3f:5a:d4:4f:86:05:31:e0:23:74:6c:ec:5c:
e0:1b:8d:22:2a:ed:6a:49:23:a1:55:84:0a:78:40:28:75:dd:
2a:e8:38:63:83:15:c6:0d:9a:91:24:75:3b:13:b8:29:f7:a0:
de:2b:00:70:36:0a:a6:b5:20:0b:34:3d:82:97:15:4d:7d:8f:
6b:ba:42:eb:0a:81:02:90:e2:72:e2:51:9e:33:13:68:cf:59:
35:c9:62:77:80:86:4d:40:16:e5:0c:f9:59:6f:6b:74:d6:5f:
2c:bd:a6:e1:ea:09:a4:da:dc:5e:80:1f:ab:1f:9a:72:5a:ea:
e0:eb:bc:e5:7f:0d:34:64:85:c6:a8:81:81:cf:f2:f8:46:27:
82:29:5d:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpwpVQ5eNNc029vDuvTHYzdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4ZmFkYTg3YTc2ZjI5ZjgyZTI1YTMxNzllN2EzOGNmMGM2
YjAzMDAwHhcNMjUxMTExMDIwMTE0WhcNMjUxMTEyMDIwMTE0WjAzMTEwLwYDVQQD
EygxNzY0N2Q0YWJjZDc2N2I0NzNlYWJkYTU5OTk1ZTNjZGU5NTBhYzYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlIp40HxieE66Kn4tabjAYrAqOLDD
Ul1yKLO5MJOr9qEQJHtlz3NjpvjgR/wVzzX8Tm4KRsqX+u0gkfFfzUsgpuegVUjQ
VCbqt/ZYPnjq6imtw/loLLC102u0/UzryYCbYk4FVT0k9Qb1M32boCjWqVR5UsQn
qo1u5rJHajWTdNQs3BnU5vwadqL//UszNCYUuyRXll1iJnLe5aprL5XM+hXWY4Lf
fj6IB2xqpw3hREKgh5dngkQg/VJCTxadYVUO0AXjUjLr0QZijab8IhlcJ8W1nx8R
3nKjaUPNumWUYbAAaFt+Xb8LhAVSFzklSwvQIpAnQzwyGZn98QVu2nAqfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBdkfUq812e0c+q9pZmV483pUKxgMB8GA1UdIwQY
MBaAFLj62oenbyn4LiWjF556OM8MawMAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVByYWg2ZHZLZmd1SmFNWG5ubzR6d3hyQXdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9hNTZiMmQtZjc5NS00OTVkLTljNDgt
NmY2N2I2NDc3MjJkLzEvdVByYWg2ZHZLZmd1SmFNWG5ubzR6d3hyQXdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9hNTZiMmQtZjc5NS00OTVkLTljNDgtNmY2N2I2NDc3MjJk
LzEvdVByYWg2ZHZLZmd1SmFNWG5ubzR6d3hyQXdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPdmHYJBm
Y+Soscs05Zk106jmW9jpm8xZM7ZTRvsp5s1igdZoUW059nK87rUrdqodBcY7fTV9
ci/V5+OzLt9jBxBtyrkthohCD+vfoX572ljHv8perOo4u8fjvtEidR3EA0vxmiED
LAOk54wl95vsg1s/WtRPhgUx4CN0bOxc4BuNIirtakkjoVWECnhAKHXdKug4Y4MV
xg2akSR1OxO4Kfeg3isAcDYKprUgCzQ9gpcVTX2Pa7pC6wqBApDicuJRnjMTaM9Z
Nclid4CGTUAW5Qz5WW9rdNZfLL2m4eoJpNrcXoAfqx+aclrq4Ou85X8NNGSFxqiB
gc/y+EYngildYA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:46 2025 by rpki-client