Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
File: Uz39bMFAxoo9O7qGulfPO4umqbc.mft (raw, json)
Hash identifier: eYnVZigrQT+KW+euQwsnOQt34ieYhpPf/4FPyELL/k0=
Subject key identifier: A2:A4:06:44:21:B7:37:C3:7D:CB:5A:E1:D4:8D:DD:C5:EC:ED:42:39
Authority key identifier: 53:3D:FD:6C:C1:40:C6:8A:3D:3B:BA:86:BA:57:CF:3B:8B:A6:A9:B7
Certificate issuer: /CN=533dfd6cc140c68a3d3bba86ba57cf3b8ba6a9b7
Certificate serial: 0198D65F77272993CC17EA77FA869D800A7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
Manifest number: 1190
Signing time: Sat 23 Aug 2025 10:00:37 +0000
Manifest this update: Sat 23 Aug 2025 10:00:37 +0000
Manifest next update: Sun 24 Aug 2025 10:00:37 +0000
Files and hashes: 1: LuBsqNtq59OLv1AWHpkXInch_bk.roa (hash: IW1LLIgf30eZrheSzd/U0PwBqHlPoD/7QK4BJgtpt6w=)
2: Uz39bMFAxoo9O7qGulfPO4umqbc.crl (hash: AE7rxm/IR/LJZOwIDRIR5Q9p40MhpunFSwbnJr5d5uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:77:27:29:93:cc:17:ea:77:fa:86:9d:80:0a:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533dfd6cc140c68a3d3bba86ba57cf3b8ba6a9b7
Validity
Not Before: Aug 23 10:00:37 2025 GMT
Not After : Aug 24 10:00:37 2025 GMT
Subject: CN=a2a4064421b737c37dcb5ae1d48dddc5eced4239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ed:47:57:a2:8f:d6:5f:94:85:1e:95:3b:14:
ee:a7:c9:72:dd:b3:7c:a0:e2:03:03:46:58:64:01:
f3:87:c8:c4:1a:2b:2b:71:da:d5:20:05:21:c8:2b:
96:4c:30:4f:7f:e6:cc:d8:a3:a9:e3:f4:f5:60:59:
75:37:16:43:d9:57:53:cf:a3:88:fa:b9:1b:1a:33:
f1:8f:8e:e7:ad:dd:44:72:ef:7f:4c:56:a4:85:27:
b7:d5:86:36:7b:b8:ad:0f:cf:2e:2f:36:58:e6:8e:
4d:c5:c6:ef:ac:ce:f4:a9:59:23:f5:67:e7:73:ce:
ae:b1:f8:a8:b3:6b:73:f9:df:da:a8:3d:07:c5:06:
15:e7:49:d3:da:c1:83:14:71:96:cf:53:c1:ec:eb:
43:f0:e8:09:2d:44:66:37:ed:46:80:5d:e6:c3:b5:
ff:fc:7d:92:23:d2:54:32:c5:1c:bb:3e:1f:d6:a2:
f4:5b:cf:96:1f:b5:a0:6e:97:1d:1a:41:e0:32:df:
8a:18:bf:03:b0:09:7f:79:e8:6b:43:d3:c2:8b:59:
90:1d:0b:7f:a1:10:dd:18:8a:b3:c5:d0:ff:63:93:
3a:ce:83:92:83:c7:e5:cf:15:02:77:d7:cf:75:2d:
1c:33:0d:5d:b1:20:93:ab:07:54:1c:fe:39:9b:0b:
51:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A4:06:44:21:B7:37:C3:7D:CB:5A:E1:D4:8D:DD:C5:EC:ED:42:39
X509v3 Authority Key Identifier:
keyid:53:3D:FD:6C:C1:40:C6:8A:3D:3B:BA:86:BA:57:CF:3B:8B:A6:A9:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:f5:04:6a:60:bb:fd:8f:ad:43:30:58:3b:2d:e4:e3:38:d2:
cf:d2:de:d1:2c:ef:2c:87:81:18:d7:04:62:30:67:e1:1a:e0:
91:77:80:5d:a9:c6:f4:ad:a6:93:35:a5:24:4f:43:ed:0b:b3:
9b:58:fe:a4:a1:86:92:91:ff:ff:5c:48:90:df:f5:68:51:b4:
5e:da:37:68:92:e9:6f:69:61:41:56:29:db:c7:48:d5:61:7d:
6f:d8:9b:0b:6b:51:6f:ca:f4:13:b5:9c:99:ed:12:23:6d:21:
15:72:7c:58:9f:2d:b7:2a:ca:ab:c2:0a:7a:19:6a:6c:ba:d2:
83:fb:d2:eb:d3:0f:8a:d6:0c:db:c8:b4:62:1a:97:b6:86:6b:
8b:1d:3b:03:a3:83:01:d7:51:02:95:80:f8:e3:91:8a:d1:9b:
63:b0:15:44:dc:d9:58:55:7b:3f:d0:3e:70:0a:e4:ed:3a:80:
7b:14:2d:dd:9b:8b:bd:9c:7a:8b:3d:55:a9:ee:bb:73:96:03:
28:80:64:ed:d3:26:e4:de:5d:49:93:d7:83:da:59:d5:4a:a6:
18:30:5a:37:4b:19:a4:d9:1f:13:f2:3a:7b:85:66:7f:5b:99:
e1:ac:48:20:cc:c9:0c:f1:32:e2:cc:ad:ef:3f:d7:70:85:23:
b7:13:43:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX3cnKZPMF+p3+oadgAp9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzM2RmZDZjYzE0MGM2OGEzZDNiYmE4NmJhNTdjZjNiOGJh
NmE5YjcwHhcNMjUwODIzMTAwMDM3WhcNMjUwODI0MTAwMDM3WjAzMTEwLwYDVQQD
EyhhMmE0MDY0NDIxYjczN2MzN2RjYjVhZTFkNDhkZGRjNWVjZWQ0MjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwu1HV6KP1l+UhR6VOxTup8ly3bN8
oOIDA0ZYZAHzh8jEGisrcdrVIAUhyCuWTDBPf+bM2KOp4/T1YFl1NxZD2VdTz6OI
+rkbGjPxj47nrd1Ecu9/TFakhSe31YY2e7itD88uLzZY5o5NxcbvrM70qVkj9Wfn
c86usfios2tz+d/aqD0HxQYV50nT2sGDFHGWz1PB7OtD8OgJLURmN+1GgF3mw7X/
/H2SI9JUMsUcuz4f1qL0W8+WH7WgbpcdGkHgMt+KGL8DsAl/eehrQ9PCi1mQHQt/
oRDdGIqzxdD/Y5M6zoOSg8flzxUCd9fPdS0cMw1dsSCTqwdUHP45mwtRGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKKkBkQhtzfDfcta4dSN3cXs7UI5MB8GA1UdIwQY
MBaAFFM9/WzBQMaKPTu6hrpXzzuLpqm3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXozOWJNRkF4b285TzdxR3VsZlBPNHVtcWJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80Mjg4OGItYWEzZi00NjExLTgwM2Qt
MmRiNDRjOTFhZTYwLzEvVXozOWJNRkF4b285TzdxR3VsZlBPNHVtcWJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80Mjg4OGItYWEzZi00NjExLTgwM2QtMmRiNDRjOTFhZTYw
LzEvVXozOWJNRkF4b285TzdxR3VsZlBPNHVtcWJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZPUEamC7
/Y+tQzBYOy3k4zjSz9Le0SzvLIeBGNcEYjBn4RrgkXeAXanG9K2mkzWlJE9D7Quz
m1j+pKGGkpH//1xIkN/1aFG0Xto3aJLpb2lhQVYp28dI1WF9b9ibC2tRb8r0E7Wc
me0SI20hFXJ8WJ8ttyrKq8IKehlqbLrSg/vS69MPitYM28i0YhqXtoZrix07A6OD
AddRApWA+OORitGbY7AVRNzZWFV7P9A+cArk7TqAexQt3ZuLvZx6iz1Vqe67c5YD
KIBk7dMm5N5dSZPXg9pZ1UqmGDBaN0sZpNkfE/I6e4Vmf1uZ4axIIMzJDPEy4syt
7z/XcIUjtxNDzg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 19:16:19 2025 by rpki-client