Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft
File: ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft (raw, json)
Hash identifier: E6OM2fmeEndVpc96pStMwBa5JztLQ5tYrMaIzuubCBI=
Subject key identifier: 42:D5:A7:A3:79:77:DE:C7:C9:5C:90:5E:1D:9B:0A:3F:0D:7B:74:AF
Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Certificate serial: 0199FCC6C2491C073379DB7F7051FCDEB97E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 14:01:48 +0000
Manifest this update: Sun 19 Oct 2025 14:01:48 +0000
Manifest next update: Mon 20 Oct 2025 14:01:48 +0000
Files and hashes: 1: 1-Ww6_zY-cf4_pNxKQtK1P8fP1C0.roa (hash: 0TcdfQeJAJLEnkaZYWVb8FupumHFnMsYWXGkxyczS0s=)
2: 83sJuzNcyjAJmIRil7l88NYWBMA.roa (hash: MJ5oBVNNCDLPnHeShHSTHYAAvYpJCfm/fRpbcBOIwJQ=)
3: AH8YfsuwJx0af1H6sw2nAIpol7g.roa (hash: QB8f2OrNQnT+GeqYmkp8zb67UdxInw+pNReppkRi83M=)
4: GqlBEeTH2BeoRvE11HJ8GrZqFDE.roa (hash: naav5Y+vpoLFfuKrSX9+iKGyQaheX7homqtPr9pYrkM=)
5: NJ2TGhxbE7k4-OWyg3tajojbLFw.roa (hash: CTFiHd29yRwltG28gbz8+HiRp4EgXhGthGX6E8wzrhc=)
6: sqZ6AtAoscTLuSbJUsk3W14dTDk.roa (hash: 5N6Dz7LxTX6s/W6RwvFwXOBJJhCL1Lo6JqWUSH17UMs=)
7: ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl (hash: S9Hvd7cPD1eERz8SSxgtwBDK4AkbmF8DQuu2xzOIEag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 14:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:c2:49:1c:07:33:79:db:7f:70:51:fc:de:b9:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Validity
Not Before: Oct 19 14:01:48 2025 GMT
Not After : Oct 20 14:01:48 2025 GMT
Subject: CN=42d5a7a37977dec7c95c905e1d9b0a3f0d7b74af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:86:b4:ca:70:b2:e7:74:67:f2:dd:f9:46:5d:
8d:d9:44:3c:04:53:e5:e3:c7:e3:41:83:c4:b2:45:
e4:44:c5:57:ac:7c:71:20:01:35:d0:f1:60:94:5c:
59:97:4b:31:f0:e5:45:4f:1a:97:65:f9:a5:b6:73:
c4:e7:59:93:28:21:12:a2:60:85:44:bf:52:59:8a:
a6:af:07:19:76:78:e1:00:70:17:1f:16:93:d8:34:
24:dc:92:dd:66:53:5b:f4:f3:96:62:ec:bf:54:b7:
8b:fa:66:d5:f2:69:6c:d4:20:59:f7:ee:e2:c3:be:
87:f2:8d:46:0e:62:cd:74:b6:fe:00:93:ee:14:fa:
60:e1:47:6d:13:8f:c1:1a:f7:39:6a:20:4d:dc:a8:
f2:ea:1a:68:28:d6:39:ed:85:2a:cc:e6:d4:3c:a8:
fb:c9:a1:95:11:ef:5b:ea:15:6c:1c:f3:3c:7b:a6:
2c:07:ab:ee:9b:01:23:81:f3:4e:6e:b7:c1:63:e9:
c4:55:b5:48:8a:26:f8:3a:1c:43:0b:7d:3b:4b:81:
ac:da:7f:94:83:1b:42:8c:92:af:71:1a:26:39:3e:
47:36:b5:9b:f4:f5:84:c6:33:05:51:87:66:88:5e:
68:89:66:b6:92:c3:7b:2f:b3:6f:61:62:f5:a5:12:
e5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D5:A7:A3:79:77:DE:C7:C9:5C:90:5E:1D:9B:0A:3F:0D:7B:74:AF
X509v3 Authority Key Identifier:
keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ff:03:d6:de:3b:be:95:e1:8d:8b:fb:d6:ef:87:95:38:aa:
44:2a:38:0f:5f:07:d8:51:30:33:eb:0a:48:1f:43:c4:b9:51:
a4:87:a6:1b:fb:b5:1f:5b:50:42:c7:7f:2f:c6:83:38:f1:0a:
c9:77:7b:39:71:19:36:d0:26:2c:f9:db:99:4a:44:6b:6b:18:
8e:b9:8d:a8:8e:7f:40:8a:1f:6e:a2:8d:f4:41:0d:32:73:e8:
1c:c3:19:55:24:b0:91:54:32:ef:21:12:ca:8f:ec:3c:5e:66:
91:11:2c:c6:3b:60:03:68:60:e8:42:5a:0e:9f:5c:96:8c:ed:
e8:79:c3:3e:00:01:19:2a:a4:4b:e6:85:52:24:06:d0:67:88:
9a:85:03:76:ca:7c:3a:09:88:53:35:1e:a0:88:42:22:72:46:
b2:b0:bd:c7:0a:cc:51:17:46:9d:4a:ca:7c:f8:7b:28:89:2e:
6e:95:76:18:58:3c:d1:69:d7:31:25:31:ff:5e:a1:bd:1c:e6:
18:a4:74:21:e8:57:fc:55:03:c9:55:ea:4f:65:42:fb:63:16:
b8:b1:92:61:07:34:25:78:c2:0c:6d:d6:02:73:71:57:3b:0f:
48:a5:32:c6:9b:c8:d5:39:88:aa:40:92:d4:0c:4c:99:70:07:
86:ae:0c:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xsJJHAczedt/cFH83rl+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5YjM1MGEwYWUzMmU3M2U2NjBjNDE2YzNmMTQwNmVkZDM2
MTVmODIwHhcNMjUxMDE5MTQwMTQ4WhcNMjUxMDIwMTQwMTQ4WjAzMTEwLwYDVQQD
Eyg0MmQ1YTdhMzc5NzdkZWM3Yzk1YzkwNWUxZDliMGEzZjBkN2I3NGFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYa0ynCy53Rn8t35Rl2N2UQ8BFPl
48fjQYPEskXkRMVXrHxxIAE10PFglFxZl0sx8OVFTxqXZfmltnPE51mTKCESomCF
RL9SWYqmrwcZdnjhAHAXHxaT2DQk3JLdZlNb9POWYuy/VLeL+mbV8mls1CBZ9+7i
w76H8o1GDmLNdLb+AJPuFPpg4UdtE4/BGvc5aiBN3Kjy6hpoKNY57YUqzObUPKj7
yaGVEe9b6hVsHPM8e6YsB6vumwEjgfNObrfBY+nEVbVIiib4OhxDC307S4Gs2n+U
gxtCjJKvcRomOT5HNrWb9PWExjMFUYdmiF5oiWa2ksN7L7NvYWL1pRLlEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFELVp6N5d97HyVyQXh2bCj8Ne3SvMB8GA1UdIwQY
MBaAFLmzUKCuMuc+ZgxBbD8UBu3TYV+CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2Et
ZWY3M2I3YjRjYTNjLzEvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2EtZWY3M2I3YjRjYTNj
LzEvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT/8D1t47
vpXhjYv71u+HlTiqRCo4D18H2FEwM+sKSB9DxLlRpIemG/u1H1tQQsd/L8aDOPEK
yXd7OXEZNtAmLPnbmUpEa2sYjrmNqI5/QIofbqKN9EENMnPoHMMZVSSwkVQy7yES
yo/sPF5mkREsxjtgA2hg6EJaDp9clozt6HnDPgABGSqkS+aFUiQG0GeImoUDdsp8
OgmIUzUeoIhCInJGsrC9xwrMURdGnUrKfPh7KIkubpV2GFg80WnXMSUx/16hvRzm
GKR0IehX/FUDyVXqT2VC+2MWuLGSYQc0JXjCDG3WAnNxVzsPSKUyxpvI1TmIqkCS
1AxMmXAHhq4MfQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 23:56:48 2025 by rpki-client