Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
File: Uz39bMFAxoo9O7qGulfPO4umqbc.mft (raw, json)
Hash identifier: Jh8KGcaO3Y8b+c/g+1g2WYBGJ4v1NaepDB9yGb/fdzw=
Subject key identifier: 6E:3C:43:88:74:CD:B0:AD:2B:E2:DA:A5:EE:7F:9E:36:F0:7F:FA:9D
Authority key identifier: 53:3D:FD:6C:C1:40:C6:8A:3D:3B:BA:86:BA:57:CF:3B:8B:A6:A9:B7
Certificate issuer: /CN=533dfd6cc140c68a3d3bba86ba57cf3b8ba6a9b7
Certificate serial: 0199FBEC0552F1A4A676E444A05FA749A1A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
Manifest number: 1228
Signing time: Sun 19 Oct 2025 10:02:53 +0000
Manifest this update: Sun 19 Oct 2025 10:02:53 +0000
Manifest next update: Mon 20 Oct 2025 10:02:53 +0000
Files and hashes: 1: LuBsqNtq59OLv1AWHpkXInch_bk.roa (hash: IW1LLIgf30eZrheSzd/U0PwBqHlPoD/7QK4BJgtpt6w=)
2: Uz39bMFAxoo9O7qGulfPO4umqbc.crl (hash: mt299w+W4acEoWbrPHiwEFYYtnFdHwZinUJzL6CM7ts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:05:52:f1:a4:a6:76:e4:44:a0:5f:a7:49:a1:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533dfd6cc140c68a3d3bba86ba57cf3b8ba6a9b7
Validity
Not Before: Oct 19 10:02:53 2025 GMT
Not After : Oct 20 10:02:53 2025 GMT
Subject: CN=6e3c438874cdb0ad2be2daa5ee7f9e36f07ffa9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:4a:77:28:32:65:76:1c:a4:2c:b6:b7:fc:59:
95:4c:a0:3e:43:6d:5a:65:10:64:e0:62:2c:f1:82:
a2:fa:bc:57:9b:20:ab:89:69:82:8c:f8:89:18:c8:
3f:be:fd:19:86:dc:87:28:c3:8d:56:18:46:64:7c:
95:3c:86:cb:a7:23:85:6f:1a:0a:b5:39:25:86:8d:
05:84:39:5d:0a:35:3a:d6:7f:2b:dd:d7:3a:60:d6:
9e:eb:14:19:e3:e0:b9:8a:c2:85:9b:49:3c:7e:22:
56:97:b9:b3:51:47:eb:8f:57:5d:be:1b:09:4a:ac:
5e:04:67:d8:49:7a:78:fc:08:b3:e8:64:75:75:26:
2e:78:b6:27:93:a7:39:8a:4d:e3:a1:d5:12:b6:11:
fc:22:d0:78:e9:18:a6:c5:45:fa:69:0b:75:04:a2:
52:b3:89:98:2f:a4:8d:4d:76:15:ab:a5:f3:b9:d6:
31:f9:1a:f9:c3:b2:20:a1:7d:cc:a2:ac:81:6f:6d:
d2:ee:a5:ea:4b:ee:02:18:6a:56:50:92:dc:6d:d0:
49:90:1e:87:97:33:a9:ac:f8:19:41:65:01:b0:95:
2e:01:f4:3a:32:04:ab:53:07:c4:bf:6e:d7:db:46:
0e:a6:4f:5f:66:22:1f:4b:c3:e9:53:00:0f:48:65:
66:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3C:43:88:74:CD:B0:AD:2B:E2:DA:A5:EE:7F:9E:36:F0:7F:FA:9D
X509v3 Authority Key Identifier:
keyid:53:3D:FD:6C:C1:40:C6:8A:3D:3B:BA:86:BA:57:CF:3B:8B:A6:A9:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:92:29:29:73:31:ca:d0:9e:f4:8d:dc:a4:b8:6c:2a:1c:41:
00:f8:f8:fb:18:f0:5a:f9:18:0f:18:5d:32:37:36:27:65:1b:
19:b4:1e:af:a1:44:db:32:71:9b:ec:ab:5f:7b:6e:01:7f:a4:
52:2b:c8:59:ad:7b:ba:df:2a:69:8e:88:0d:08:fc:88:63:64:
9a:9f:4b:c5:4c:2c:9b:4d:17:a2:51:54:fb:9f:ad:08:1d:14:
ed:fe:08:36:17:0d:f7:19:05:3c:cc:36:b7:2e:0f:8e:0f:2d:
b8:69:af:57:9b:ca:83:be:4f:b1:f9:47:36:85:f8:ec:01:bb:
1f:0f:05:a2:a2:bc:58:31:3e:e5:02:00:e2:7e:a9:f3:84:54:
ca:f5:e1:82:bb:93:9f:ac:c5:e9:ea:19:89:0b:03:59:d0:3c:
01:b4:03:30:8c:d6:a1:29:e6:1b:29:3c:2d:e3:27:94:89:b0:
f2:96:00:57:e0:43:a9:a8:cd:cb:6a:98:ec:06:cb:31:58:ac:
31:c5:de:57:fb:95:55:c6:8e:b3:a1:80:cf:4b:97:e2:0b:01:
e1:0d:3b:a9:23:1d:53:c4:ce:a8:d2:8c:ad:bf:8c:33:b6:f8:
25:cd:4b:6e:e6:c5:f2:d4:cc:f6:f7:7e:07:82:29:33:20:41:
1a:37:5b:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn77AVS8aSmduREoF+nSaGgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzM2RmZDZjYzE0MGM2OGEzZDNiYmE4NmJhNTdjZjNiOGJh
NmE5YjcwHhcNMjUxMDE5MTAwMjUzWhcNMjUxMDIwMTAwMjUzWjAzMTEwLwYDVQQD
Eyg2ZTNjNDM4ODc0Y2RiMGFkMmJlMmRhYTVlZTdmOWUzNmYwN2ZmYTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Ep3KDJldhykLLa3/FmVTKA+Q21a
ZRBk4GIs8YKi+rxXmyCriWmCjPiJGMg/vv0ZhtyHKMONVhhGZHyVPIbLpyOFbxoK
tTklho0FhDldCjU61n8r3dc6YNae6xQZ4+C5isKFm0k8fiJWl7mzUUfrj1ddvhsJ
SqxeBGfYSXp4/Aiz6GR1dSYueLYnk6c5ik3jodUSthH8ItB46RimxUX6aQt1BKJS
s4mYL6SNTXYVq6XzudYx+Rr5w7IgoX3MoqyBb23S7qXqS+4CGGpWUJLcbdBJkB6H
lzOprPgZQWUBsJUuAfQ6MgSrUwfEv27X20YOpk9fZiIfS8PpUwAPSGVmmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG48Q4h0zbCtK+Lape5/njbwf/qdMB8GA1UdIwQY
MBaAFFM9/WzBQMaKPTu6hrpXzzuLpqm3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXozOWJNRkF4b285TzdxR3VsZlBPNHVtcWJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80Mjg4OGItYWEzZi00NjExLTgwM2Qt
MmRiNDRjOTFhZTYwLzEvVXozOWJNRkF4b285TzdxR3VsZlBPNHVtcWJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80Mjg4OGItYWEzZi00NjExLTgwM2QtMmRiNDRjOTFhZTYw
LzEvVXozOWJNRkF4b285TzdxR3VsZlBPNHVtcWJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgpIpKXMx
ytCe9I3cpLhsKhxBAPj4+xjwWvkYDxhdMjc2J2UbGbQer6FE2zJxm+yrX3tuAX+k
UivIWa17ut8qaY6IDQj8iGNkmp9LxUwsm00XolFU+5+tCB0U7f4INhcN9xkFPMw2
ty4Pjg8tuGmvV5vKg75PsflHNoX47AG7Hw8FoqK8WDE+5QIA4n6p84RUyvXhgruT
n6zF6eoZiQsDWdA8AbQDMIzWoSnmGyk8LeMnlImw8pYAV+BDqajNy2qY7AbLMVis
McXeV/uVVcaOs6GAz0uX4gsB4Q07qSMdU8TOqNKMrb+MM7b4Jc1LbubF8tTM9vd+
B4IpMyBBGjdbMw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:42:30 2025 by rpki-client