Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: huKqZNm3DuZK9g0qH8yADOIre2OPHpfvN/9sxMmD++Y=
Subject key identifier: 87:9B:F0:28:5D:0C:63:2C:3C:1C:08:C1:23:71:01:37:BC:13:4F:61
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 0199FB7C998D8BB4B1773AC4E2CC3CF1D540
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 096D
Signing time: Sun 19 Oct 2025 08:01:10 +0000
Manifest this update: Sun 19 Oct 2025 08:01:10 +0000
Manifest next update: Mon 20 Oct 2025 08:01:10 +0000
Files and hashes: 1: If5j4KjsWFg3kwDUxrHpbFCCjpg.roa (hash: iGbVOgQjxfoZ4tZTHfIMlZvCv27war8Yd/ywUcGl39o=)
2: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: 8MvmTLQ++j3k0wrLulTJ3dmppclj8YPe1mHlpQdRID8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:99:8d:8b:b4:b1:77:3a:c4:e2:cc:3c:f1:d5:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Oct 19 08:01:10 2025 GMT
Not After : Oct 20 08:01:10 2025 GMT
Subject: CN=879bf0285d0c632c3c1c08c123710137bc134f61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:63:27:ba:15:7b:de:cb:50:d8:a6:97:5e:fe:
eb:11:fe:09:bb:38:29:5b:9b:4b:69:92:ec:5a:f7:
fb:8e:5c:91:dc:31:8f:83:7b:98:2a:d2:13:57:13:
07:b9:15:f5:19:7b:cd:fd:8f:73:4d:97:9b:0e:03:
fc:1e:e4:2b:5c:96:fa:ca:d2:b4:6e:e0:67:d9:7f:
d0:43:07:12:f9:61:4a:5f:fb:44:b1:9d:af:23:08:
58:c1:f1:bd:3a:66:e7:94:3f:b5:de:1c:37:7c:27:
8b:8c:04:88:b0:d0:2f:98:26:9e:a5:d6:57:43:cd:
da:b6:52:36:bd:5a:cf:ca:64:2b:d2:e8:3f:95:8b:
24:24:8f:91:9d:95:ae:13:8f:ba:0b:2a:d2:d0:57:
c3:c6:5d:9b:ba:27:9c:5b:b4:d8:a7:52:d7:03:c4:
c1:7e:dc:a1:cc:97:1f:7d:be:9c:9e:be:6c:48:77:
62:4b:c7:05:8e:fb:21:ab:53:e3:d7:97:7e:d4:0c:
95:4d:e7:ba:67:0f:c8:c7:f2:77:94:c4:cf:d3:49:
f1:a2:46:d2:40:a6:c9:bd:68:eb:38:0a:dc:b8:ad:
70:41:7a:16:7a:a7:46:bb:5f:22:ff:fa:ce:4f:95:
5f:f0:9a:4f:31:3c:f6:c9:c8:58:04:43:5a:e8:dd:
66:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:9B:F0:28:5D:0C:63:2C:3C:1C:08:C1:23:71:01:37:BC:13:4F:61
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:b6:39:95:37:ac:a4:94:19:13:29:9a:bf:53:0f:6e:96:23:
2a:47:22:79:5b:b2:47:ca:bb:ed:fb:e8:26:e3:21:5f:19:64:
9e:99:a2:d3:4b:f5:68:64:4f:a1:6f:2d:42:7a:06:b3:a8:f5:
89:d9:6a:9b:71:45:89:e3:2c:97:3d:f4:00:56:0c:89:21:ad:
74:c9:38:0b:de:e2:dc:f2:5f:13:02:36:2c:99:57:52:de:92:
ab:43:73:0e:57:12:35:6d:0c:7a:64:ec:5b:08:95:f1:0c:f1:
f3:4d:1f:83:ad:1a:1d:aa:7d:7c:0e:f9:1a:09:79:7b:a8:41:
2d:7c:ad:6c:55:97:54:82:f4:cf:0a:b5:f5:ff:17:2a:9b:3e:
ac:ea:fe:58:da:96:e6:39:52:8b:01:f5:39:b0:00:eb:3f:56:
60:5f:e6:42:82:e7:29:e8:5f:11:bc:9f:67:ee:a2:7d:ca:e0:
dd:7e:00:58:a5:90:10:5d:0c:75:c6:75:2f:ba:00:8d:8d:7a:
89:47:57:32:71:c0:af:89:1b:fd:47:34:1a:47:54:67:85:95:
98:e2:48:c2:61:09:f6:da:27:55:57:7d:69:68:19:ed:b9:ad:
d2:8f:58:12:9a:c9:ce:7f:04:69:8d:75:b3:b5:59:bd:c4:ce:
25:c7:97:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fJmNi7SxdzrE4sw88dVAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzZTNhZWRkOTFiZTgyNDUxMzQyZGNkMWM5ODI4MzQ1ZGI2
NjFhNWYwHhcNMjUxMDE5MDgwMTEwWhcNMjUxMDIwMDgwMTEwWjAzMTEwLwYDVQQD
Eyg4NzliZjAyODVkMGM2MzJjM2MxYzA4YzEyMzcxMDEzN2JjMTM0ZjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmMnuhV73stQ2KaXXv7rEf4Juzgp
W5tLaZLsWvf7jlyR3DGPg3uYKtITVxMHuRX1GXvN/Y9zTZebDgP8HuQrXJb6ytK0
buBn2X/QQwcS+WFKX/tEsZ2vIwhYwfG9OmbnlD+13hw3fCeLjASIsNAvmCaepdZX
Q83atlI2vVrPymQr0ug/lYskJI+RnZWuE4+6CyrS0FfDxl2buiecW7TYp1LXA8TB
ftyhzJcffb6cnr5sSHdiS8cFjvshq1Pj15d+1AyVTee6Zw/Ix/J3lMTP00nxokbS
QKbJvWjrOArcuK1wQXoWeqdGu18i//rOT5Vf8JpPMTz2ychYBENa6N1mMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIeb8ChdDGMsPBwIwSNxATe8E09hMB8GA1UdIwQY
MBaAFFPjrt2RvoJFE0Lc0cmCg0XbZhpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQt
YTdkOTQ1YWYxNGU1LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQtYTdkOTQ1YWYxNGU1
LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnrY5lTes
pJQZEymav1MPbpYjKkcieVuyR8q77fvoJuMhXxlknpmi00v1aGRPoW8tQnoGs6j1
idlqm3FFieMslz30AFYMiSGtdMk4C97i3PJfEwI2LJlXUt6Sq0NzDlcSNW0MemTs
WwiV8Qzx800fg60aHap9fA75Ggl5e6hBLXytbFWXVIL0zwq19f8XKps+rOr+WNqW
5jlSiwH1ObAA6z9WYF/mQoLnKehfEbyfZ+6ifcrg3X4AWKWQEF0MdcZ1L7oAjY16
iUdXMnHAr4kb/Uc0GkdUZ4WVmOJIwmEJ9tonVVd9aWgZ7bmt0o9YEprJzn8EaY11
s7VZvcTOJceXjQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:22 2025 by rpki-client