Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
File: uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft (raw, json)
Hash identifier: pyoV9nl6lA94dNBGR6zySagO3WMSzjUU3+mw/RV6Bqo=
Subject key identifier: 9D:63:AC:3E:07:6F:7A:22:81:7F:53:68:33:DA:CE:2D:FE:20:E7:15
Authority key identifier: B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
Certificate issuer: /CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Certificate serial: 0199FD6B6B8D4DF44CD1587691395149B67B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
Manifest number: 1050
Signing time: Sun 19 Oct 2025 17:01:39 +0000
Manifest this update: Sun 19 Oct 2025 17:01:39 +0000
Manifest next update: Mon 20 Oct 2025 17:01:39 +0000
Files and hashes: 1: Ez8s9qEUUht2JDDEnDzdcLhPgtI.roa (hash: JIMzy59RHLraK6rhor2VUFRVzGxoje0mc5nW26VOt9E=)
2: uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl (hash: wQRK0sCvEbqxNVY/CeGU7PEztbmM9ZbWO4ji6QiPQ0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:6b:8d:4d:f4:4c:d1:58:76:91:39:51:49:b6:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Validity
Not Before: Oct 19 17:01:39 2025 GMT
Not After : Oct 20 17:01:39 2025 GMT
Subject: CN=9d63ac3e076f7a22817f536833dace2dfe20e715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8f:d7:a3:49:be:93:0a:8a:14:17:fb:67:5a:
2e:e4:34:da:3c:25:c2:6c:4e:08:b0:6c:55:7f:93:
16:ac:95:09:a5:cb:23:48:0d:89:c9:ca:c5:90:70:
d6:a0:d4:da:13:17:8a:6f:15:04:94:1f:74:69:c8:
03:6a:58:3f:3f:0f:f5:82:39:da:20:b9:34:79:bb:
78:0b:8f:35:98:9f:9e:60:93:fe:29:b5:18:dc:51:
33:bd:05:a5:4d:48:20:3e:6b:b1:c4:6a:a9:14:66:
3b:54:2b:5a:87:59:98:40:83:d8:ee:b6:d2:83:93:
2b:71:de:23:98:f8:19:b1:f9:9c:56:4b:6c:5d:a1:
65:76:6d:e1:5f:69:bb:a5:8c:3f:6f:21:d1:00:24:
1f:98:51:72:6a:50:e9:7a:9d:c0:c1:f1:fb:b1:4d:
48:97:bf:9a:21:8d:3b:37:ff:7f:e6:25:1d:c1:81:
64:47:a5:4e:13:59:2f:35:25:38:29:dc:5a:29:78:
14:7b:23:56:c4:80:4f:50:55:48:28:f4:24:93:32:
c9:90:ef:73:b7:31:42:49:83:53:77:0f:9c:a2:d1:
36:39:5e:3f:7c:8a:39:fa:de:bc:d3:80:77:24:8f:
14:ca:58:d3:b5:dd:af:eb:ba:e0:46:eb:1f:a6:09:
b8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:63:AC:3E:07:6F:7A:22:81:7F:53:68:33:DA:CE:2D:FE:20:E7:15
X509v3 Authority Key Identifier:
keyid:B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:a3:d5:7b:4b:19:b6:01:41:9a:ae:96:0a:18:77:86:cf:72:
87:9d:2a:47:11:45:7a:a5:e6:83:be:21:d5:59:bd:28:c1:f1:
1a:6c:25:a4:ff:db:4d:fb:a2:cf:6f:46:10:84:fc:7d:d4:cc:
45:50:a2:8b:29:b4:85:f8:a0:e3:3c:c7:08:3a:63:ba:6d:77:
88:ca:7e:dc:c6:ab:ab:b6:f3:d0:36:00:6d:e1:2d:77:d3:02:
bb:81:d6:f4:ca:6e:70:a5:44:92:f6:45:ed:08:48:a1:a8:ed:
04:b8:57:ea:be:4c:aa:c8:18:54:62:d3:55:d0:98:5e:f4:63:
64:0d:4b:d1:8a:a0:9f:4d:f1:40:7d:1e:f0:bd:84:ba:87:4a:
dd:f7:bb:c6:1d:da:00:1a:f4:ab:62:a7:0f:c4:9b:21:22:69:
e6:3c:c5:fb:5f:d3:0c:ac:93:38:bc:32:ca:4c:ec:b2:08:40:
ba:6d:73:cb:55:aa:6f:8a:77:8b:85:eb:d3:8c:9d:6f:48:1d:
49:0b:7b:14:ae:0f:f5:ec:b0:e7:fb:df:1e:e2:94:60:19:ab:
91:a5:d1:13:80:37:bb:b9:f7:cf:21:fb:47:66:1e:af:0b:b2:
38:2d:18:cf:a9:0b:af:42:96:8c:1b:65:fc:1b:b7:10:09:de:
ce:e4:43:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9a2uNTfRM0Vh2kTlRSbZ7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NDg4OTEyMGM0ZTBiZmY0ZWNlOWEyYWJiODYyZDRjMGNk
OGEzMWYwHhcNMjUxMDE5MTcwMTM5WhcNMjUxMDIwMTcwMTM5WjAzMTEwLwYDVQQD
Eyg5ZDYzYWMzZTA3NmY3YTIyODE3ZjUzNjgzM2RhY2UyZGZlMjBlNzE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4/Xo0m+kwqKFBf7Z1ou5DTaPCXC
bE4IsGxVf5MWrJUJpcsjSA2JycrFkHDWoNTaExeKbxUElB90acgDalg/Pw/1gjna
ILk0ebt4C481mJ+eYJP+KbUY3FEzvQWlTUggPmuxxGqpFGY7VCtah1mYQIPY7rbS
g5Mrcd4jmPgZsfmcVktsXaFldm3hX2m7pYw/byHRACQfmFFyalDpep3AwfH7sU1I
l7+aIY07N/9/5iUdwYFkR6VOE1kvNSU4KdxaKXgUeyNWxIBPUFVIKPQkkzLJkO9z
tzFCSYNTdw+cotE2OV4/fIo5+t6804B3JI8UyljTtd2v67rgRusfpgm4MQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ1jrD4Hb3oigX9TaDPazi3+IOcVMB8GA1UdIwQY
MBaAFLlIiRIMTgv/Ts6aKruGLUwM2KMfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVVpSkVneE9DXzlPenBvcXU0WXRUQXpZb3g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kZjU2NzAtOTZhYi00ZWVlLWIwZDIt
ODVkMzMyNjA0YWFmLzEvdVVpSkVneE9DXzlPenBvcXU0WXRUQXpZb3g4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9kZjU2NzAtOTZhYi00ZWVlLWIwZDItODVkMzMyNjA0YWFm
LzEvdVVpSkVneE9DXzlPenBvcXU0WXRUQXpZb3g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjqPVe0sZ
tgFBmq6WChh3hs9yh50qRxFFeqXmg74h1Vm9KMHxGmwlpP/bTfuiz29GEIT8fdTM
RVCiiym0hfig4zzHCDpjum13iMp+3Marq7bz0DYAbeEtd9MCu4HW9MpucKVEkvZF
7QhIoajtBLhX6r5MqsgYVGLTVdCYXvRjZA1L0Yqgn03xQH0e8L2EuodK3fe7xh3a
ABr0q2KnD8SbISJp5jzF+1/TDKyTOLwyykzssghAum1zy1Wqb4p3i4Xr04ydb0gd
SQt7FK4P9eyw5/vfHuKUYBmrkaXRE4A3u7n3zyH7R2YerwuyOC0Yz6kLr0KWjBtl
/Bu3EAnezuRDfQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:33 2025 by rpki-client