Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json)
Hash identifier: KcGtGf8Ar581OJftI/Uf2gnzlOXI6yYqf6mYsBvWE+A=
Subject key identifier: 46:23:44:F5:36:1E:D6:04:0B:E2:45:AD:F5:CA:36:42:01:09:8B:E4
Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Certificate serial: 0198D5F161DAE4EAB179AFDDAB0EAB869D97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
Manifest number: 15DD
Signing time: Sat 23 Aug 2025 08:00:22 +0000
Manifest this update: Sat 23 Aug 2025 08:00:22 +0000
Manifest next update: Sun 24 Aug 2025 08:00:22 +0000
Files and hashes: 1: Kp9T4yQ0BWzmIgTW27o6VMb8qh4.roa (hash: 8tmSpbSEt6oRRtmXjjT27qxLy0bdW3q5K1nXAwi0cxU=)
2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: uz35166z9j84q9we268tzRUmCPbuqP4XbvCOux3Y5aA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:61:da:e4:ea:b1:79:af:dd:ab:0e:ab:86:9d:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Validity
Not Before: Aug 23 08:00:22 2025 GMT
Not After : Aug 24 08:00:22 2025 GMT
Subject: CN=462344f5361ed6040be245adf5ca364201098be4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fa:d7:74:2d:35:02:43:5f:d4:ba:e1:f5:6a:
43:f0:5c:19:72:29:37:21:10:d0:b6:60:0d:dd:a9:
1f:52:a8:f3:23:01:a2:3c:a9:c7:32:1d:2a:fc:ff:
5e:ad:65:fc:9a:66:23:bd:d2:3f:bd:56:7f:c0:01:
e4:37:c3:eb:5a:1d:9d:b1:56:1e:6b:8f:1d:38:6c:
58:45:13:a2:85:25:8d:4a:c2:37:de:2b:40:f8:7b:
73:80:3a:ce:a5:f2:6c:29:fa:ef:54:37:28:22:bf:
83:8a:44:65:d1:09:d5:f4:0d:1d:22:e7:90:dc:50:
83:46:80:77:b0:aa:77:02:8c:46:3d:de:35:b6:f6:
e0:6d:13:53:48:69:a5:76:43:bc:48:15:38:36:e8:
a0:a6:47:15:e7:25:08:dc:27:8d:de:63:54:5a:1b:
ab:ae:fe:6d:36:d2:7f:ed:5b:ab:e6:5e:58:64:d0:
0f:dd:5b:f5:43:8a:27:ed:77:22:8e:d1:3f:ee:73:
d5:76:67:d8:60:51:8b:5d:f3:67:df:f8:aa:76:06:
41:3d:3f:cc:d4:a4:61:59:88:06:55:66:79:5e:d1:
c7:05:db:69:17:58:fe:91:10:b8:6a:25:f2:4b:72:
ae:11:b4:d6:d7:b4:6e:8e:7e:86:d9:15:e5:ce:e4:
eb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:23:44:F5:36:1E:D6:04:0B:E2:45:AD:F5:CA:36:42:01:09:8B:E4
X509v3 Authority Key Identifier:
keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:07:8b:3e:05:7f:d1:22:e7:1d:1e:a7:bd:8e:a3:7a:12:0d:
d8:60:d7:7d:d1:99:e3:a4:e4:24:2d:ab:46:1d:2c:34:e5:24:
ad:66:13:08:6a:69:40:7a:08:5c:a5:1a:f2:22:b8:47:a0:65:
50:dc:62:a2:5b:d4:3f:1d:8d:ca:ee:e0:9e:e8:26:5b:b3:c5:
67:8d:24:87:ed:78:fb:04:bb:ca:35:81:f5:93:c5:b7:70:ff:
c4:0a:c6:82:2b:27:bb:12:6b:eb:e1:8d:62:cd:3d:0d:aa:3a:
7f:56:58:42:bf:5f:e8:81:97:14:c1:15:21:78:5e:dd:27:64:
db:48:ee:b3:49:8f:2f:10:66:82:6a:0a:de:ec:f1:94:12:40:
41:2e:62:c5:3a:4c:4c:9d:32:24:00:0c:e1:14:f0:cb:23:d9:
3e:e2:bc:95:ed:67:3d:ec:e6:e9:e2:9a:46:6c:f9:48:18:e7:
1d:8e:89:ec:96:7a:e1:68:65:f0:b3:73:9c:ef:2d:69:c6:10:
08:d1:f9:1c:3a:e6:c7:c0:ed:f5:36:f8:85:fc:5b:73:67:b3:
54:7e:30:ed:68:1f:5c:2b:6c:9b:05:a3:87:4e:09:b8:13:43:
1a:e8:db:9b:6f:65:5a:41:01:27:0a:a1:cc:63:97:c6:db:9b:
70:ac:33:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8WHa5Oqxea/dqw6rhp2XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhMmQ1ZmQzMDlkZDZjYzZjZjc4ODYwNDFlNWU5YzJjMWEy
NmNlYWIwHhcNMjUwODIzMDgwMDIyWhcNMjUwODI0MDgwMDIyWjAzMTEwLwYDVQQD
Eyg0NjIzNDRmNTM2MWVkNjA0MGJlMjQ1YWRmNWNhMzY0MjAxMDk4YmU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvrXdC01AkNf1Lrh9WpD8FwZcik3
IRDQtmAN3akfUqjzIwGiPKnHMh0q/P9erWX8mmYjvdI/vVZ/wAHkN8PrWh2dsVYe
a48dOGxYRROihSWNSsI33itA+HtzgDrOpfJsKfrvVDcoIr+DikRl0QnV9A0dIueQ
3FCDRoB3sKp3AoxGPd41tvbgbRNTSGmldkO8SBU4NuigpkcV5yUI3CeN3mNUWhur
rv5tNtJ/7Vur5l5YZNAP3Vv1Q4on7XcijtE/7nPVdmfYYFGLXfNn3/iqdgZBPT/M
1KRhWYgGVWZ5XtHHBdtpF1j+kRC4aiXyS3KuEbTW17Rujn6G2RXlzuTrawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEYjRPU2HtYEC+JFrfXKNkIBCYvkMB8GA1UdIwQY
MBaAFLotX9MJ3WzGz3iGBB5enCwaJs6rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2Yt
NmQ3NTUwNTJiYjI0LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2YtNmQ3NTUwNTJiYjI0
LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPweLPgV/
0SLnHR6nvY6jehIN2GDXfdGZ46TkJC2rRh0sNOUkrWYTCGppQHoIXKUa8iK4R6Bl
UNxiolvUPx2Nyu7gnugmW7PFZ40kh+14+wS7yjWB9ZPFt3D/xArGgisnuxJr6+GN
Ys09Dao6f1ZYQr9f6IGXFMEVIXhe3Sdk20jus0mPLxBmgmoK3uzxlBJAQS5ixTpM
TJ0yJAAM4RTwyyPZPuK8le1nPezm6eKaRmz5SBjnHY6J7JZ64Whl8LNznO8tacYQ
CNH5HDrmx8Dt9Tb4hfxbc2ezVH4w7WgfXCtsmwWjh04JuBNDGujbm29lWkEBJwqh
zGOXxtubcKwzCQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:45 2025 by rpki-client