Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
File: UeFdozln1BRwqW1hQcg0DyJAWBw.mft (raw, json)
Hash identifier: ueT1WPUuU3OopbQhvuV9DJwG2Chyke+uUFJ9hAX81oI=
Subject key identifier: EF:72:4F:22:F9:DC:2E:5E:15:F1:E9:E6:4C:B8:15:B4:A0:93:7A:72
Authority key identifier: 51:E1:5D:A3:39:67:D4:14:70:A9:6D:61:41:C8:34:0F:22:40:58:1C
Certificate issuer: /CN=51e15da33967d41470a96d6141c8340f2240581c
Certificate serial: 0199FCC61A849B22F807CF79CE32A383AC05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 14:01:05 +0000
Manifest this update: Sun 19 Oct 2025 14:01:05 +0000
Manifest next update: Mon 20 Oct 2025 14:01:05 +0000
Files and hashes: 1: UeFdozln1BRwqW1hQcg0DyJAWBw.crl (hash: o2ZBCFBixf4xXZWg7KWi44nvRE2IxWUiPKdstS/X+j8=)
2: gBYCWzo5jT_O6BTkSg1kyvPsFw4.roa (hash: +/mKf9OZ57+DTvZmgtnYONd6u+f9yDN0GFvCHTpFrgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:1a:84:9b:22:f8:07:cf:79:ce:32:a3:83:ac:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51e15da33967d41470a96d6141c8340f2240581c
Validity
Not Before: Oct 19 14:01:05 2025 GMT
Not After : Oct 20 14:01:05 2025 GMT
Subject: CN=ef724f22f9dc2e5e15f1e9e64cb815b4a0937a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:44:f6:b4:db:ab:0f:20:ca:4e:70:68:d5:1a:
82:59:06:c6:86:16:d9:e9:fc:75:b2:f8:78:08:5f:
4a:cc:1b:88:ba:fe:2c:f7:de:95:19:b3:05:b0:48:
f5:2f:b6:43:e8:d9:9e:dc:b7:f1:37:8b:20:ca:78:
8a:91:22:65:16:61:6c:54:4e:7d:d4:f7:60:43:dc:
c4:a0:c9:3d:b4:02:b0:c1:77:1e:df:5b:c7:d5:5e:
ec:ae:18:42:87:0c:01:c2:24:4d:08:0b:66:14:40:
03:07:4e:d6:52:d0:7a:c2:0a:6a:c7:08:d7:1d:39:
de:b3:06:d0:ce:8c:96:3a:f5:e2:40:96:c0:af:07:
58:86:51:52:94:49:2b:0e:c9:1d:c2:88:e0:c2:6a:
e7:57:0c:b9:d2:e7:8a:da:0b:3a:a9:53:66:2f:58:
8e:ba:22:6a:40:58:a9:78:25:0a:74:e7:4c:e1:a0:
36:c2:98:87:c6:88:72:c1:8a:df:bb:c3:2b:9a:48:
2c:fa:ae:dc:86:28:4f:af:73:4c:7f:9e:6a:ea:9b:
a7:16:7b:db:54:58:66:38:8d:56:bd:47:ac:73:ff:
57:cf:4b:a4:02:a5:6d:9d:58:9a:2a:e1:5a:f4:7a:
5d:e7:03:4e:73:17:7e:0a:32:dc:bf:90:3e:d8:1a:
3d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:72:4F:22:F9:DC:2E:5E:15:F1:E9:E6:4C:B8:15:B4:A0:93:7A:72
X509v3 Authority Key Identifier:
keyid:51:E1:5D:A3:39:67:D4:14:70:A9:6D:61:41:C8:34:0F:22:40:58:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:13:34:9c:c2:7a:90:34:e3:f6:50:cc:09:4d:31:08:47:8a:
06:73:95:24:75:e4:99:6c:c2:dd:b5:f4:b4:22:c3:30:df:08:
0b:35:e3:0a:2e:c9:12:cc:b1:db:af:e7:cc:2e:9f:91:87:95:
e5:3e:d5:a0:35:f2:90:46:10:19:ad:f7:16:c8:5b:1b:0b:f8:
23:a8:24:ad:25:3a:f5:ce:a8:be:65:24:4a:ff:1e:5f:a2:4d:
56:d3:be:02:e1:2a:af:c2:4d:f8:e8:c0:85:5d:8a:76:c9:ee:
ec:c4:19:b7:33:66:ac:e9:78:e3:23:b3:74:2b:08:3e:0f:e6:
2f:4f:e3:11:6e:52:41:ce:95:2f:4a:53:84:71:a8:6a:dd:81:
c9:03:56:47:8f:ea:10:46:f3:ec:4b:80:81:86:f0:43:f1:9d:
cd:a1:09:08:99:b4:c2:44:d4:22:78:ee:ac:4f:b9:2d:3d:7a:
ed:15:86:a3:94:54:61:8e:2a:7d:87:25:64:2b:38:fb:cf:bd:
80:3d:21:ee:06:d3:3f:fc:84:e8:1f:2a:4b:61:6c:95:1d:51:
54:2f:4f:6c:d5:46:5c:dc:86:d5:09:d6:da:31:92:c9:c8:7a:
70:b7:09:96:b9:d8:e1:68:f3:3e:48:10:ac:e9:91:ae:48:38:
61:59:45:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xhqEmyL4B895zjKjg6wFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxZTE1ZGEzMzk2N2Q0MTQ3MGE5NmQ2MTQxYzgzNDBmMjI0
MDU4MWMwHhcNMjUxMDE5MTQwMTA1WhcNMjUxMDIwMTQwMTA1WjAzMTEwLwYDVQQD
EyhlZjcyNGYyMmY5ZGMyZTVlMTVmMWU5ZTY0Y2I4MTViNGEwOTM3YTcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvET2tNurDyDKTnBo1RqCWQbGhhbZ
6fx1svh4CF9KzBuIuv4s996VGbMFsEj1L7ZD6Nme3LfxN4sgyniKkSJlFmFsVE59
1PdgQ9zEoMk9tAKwwXce31vH1V7srhhChwwBwiRNCAtmFEADB07WUtB6wgpqxwjX
HTneswbQzoyWOvXiQJbArwdYhlFSlEkrDskdwojgwmrnVwy50ueK2gs6qVNmL1iO
uiJqQFipeCUKdOdM4aA2wpiHxohywYrfu8Mrmkgs+q7chihPr3NMf55q6punFnvb
VFhmOI1WvUesc/9Xz0ukAqVtnViaKuFa9Hpd5wNOcxd+CjLcv5A+2Bo9lQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO9yTyL53C5eFfHp5ky4FbSgk3pyMB8GA1UdIwQY
MBaAFFHhXaM5Z9QUcKltYUHINA8iQFgcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWVGZG96bG4xQlJ3cVcxaFFjZzBEeUpBV0J3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8yM2Q1YzEtYWM2Ni00NjFmLTkwMGYt
MzgwODg1NzQwZDRhLzEvVWVGZG96bG4xQlJ3cVcxaFFjZzBEeUpBV0J3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8yM2Q1YzEtYWM2Ni00NjFmLTkwMGYtMzgwODg1NzQwZDRh
LzEvVWVGZG96bG4xQlJ3cVcxaFFjZzBEeUpBV0J3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhRM0nMJ6
kDTj9lDMCU0xCEeKBnOVJHXkmWzC3bX0tCLDMN8ICzXjCi7JEsyx26/nzC6fkYeV
5T7VoDXykEYQGa33FshbGwv4I6gkrSU69c6ovmUkSv8eX6JNVtO+AuEqr8JN+OjA
hV2Kdsnu7MQZtzNmrOl44yOzdCsIPg/mL0/jEW5SQc6VL0pThHGoat2ByQNWR4/q
EEbz7EuAgYbwQ/GdzaEJCJm0wkTUInjurE+5LT167RWGo5RUYY4qfYclZCs4+8+9
gD0h7gbTP/yE6B8qS2FslR1RVC9PbNVGXNyG1QnW2jGSych6cLcJlrnY4WjzPkgQ
rOmRrkg4YVlFjQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:39 2025 by rpki-client