Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
File: upcN4SazoLVI2tdvXvqIhVxvH_I.mft (raw, json)
Hash identifier: p5bvc4f2LQO2SEM34bth0rpyTIM5KGER26pGwcXstgA=
Subject key identifier: 0A:EF:A8:BE:AB:63:3B:C2:71:B8:22:69:A3:0A:5E:4B:AE:CD:C8:9F
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 0199FDD9600C1B09B4D1C6F91C3D47FDBC6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
Manifest number: 0A69
Signing time: Sun 19 Oct 2025 19:01:45 +0000
Manifest this update: Sun 19 Oct 2025 19:01:45 +0000
Manifest next update: Mon 20 Oct 2025 19:01:45 +0000
Files and hashes: 1: iB0nh2pqz5-ySXR-fF2YCAS68X8.roa (hash: Y94jSzgT6noKQkiYTVT17vXi3fN7I6D0Bkm1xKFYYKk=)
2: upcN4SazoLVI2tdvXvqIhVxvH_I.crl (hash: 8oL47I9nS5ofWgDTZbGdHF8L+Ofip3LUzci2m747WMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:60:0c:1b:09:b4:d1:c6:f9:1c:3d:47:fd:bc:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: Oct 19 19:01:45 2025 GMT
Not After : Oct 20 19:01:45 2025 GMT
Subject: CN=0aefa8beab633bc271b82269a30a5e4baecdc89f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ac:86:63:22:97:08:8b:e2:56:cc:40:a0:76:
7d:a9:7c:86:3c:7c:ce:0a:ed:42:10:02:c8:64:52:
22:46:6b:29:49:43:a9:99:38:cd:85:f2:b9:42:e8:
11:e8:89:24:77:3c:1e:07:1a:53:57:b9:29:73:51:
b8:dc:b7:72:a9:59:93:92:97:7a:80:b7:6d:76:7f:
1b:be:9d:81:6f:57:94:3d:c4:58:f3:58:3f:6e:aa:
5a:98:42:c2:84:f7:1e:98:66:ea:80:f1:c6:48:75:
1c:11:ca:13:d3:49:40:43:99:44:6f:f8:c4:64:9b:
7f:f5:61:45:28:c5:cf:22:0c:e2:3a:2f:0b:d0:d5:
b8:e1:42:8f:60:81:26:e6:f9:d3:fa:e9:b7:51:2b:
8a:85:5d:e3:3a:70:6b:fa:0c:3b:02:f4:bc:cd:04:
0c:dc:3d:7b:a3:34:c9:12:d7:ed:11:b5:be:9d:20:
7e:13:0b:3b:a8:56:c7:e5:75:ef:23:c0:23:bb:9a:
ac:05:32:20:2f:f1:f3:6d:84:7a:84:da:2b:05:54:
be:72:da:a8:f5:f8:df:cb:f1:7f:e6:36:76:43:2b:
1e:ed:77:2e:c9:b7:af:48:1f:08:1e:16:a4:ff:13:
3c:86:34:2a:ec:0f:0e:5e:65:ac:1d:2a:03:39:4a:
6f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:EF:A8:BE:AB:63:3B:C2:71:B8:22:69:A3:0A:5E:4B:AE:CD:C8:9F
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:f8:eb:5d:d0:29:f2:4e:62:b9:53:48:39:5e:04:84:d9:39:
30:d8:73:c9:9b:f4:8d:75:e3:48:98:d6:97:d0:fb:c9:14:e2:
a5:ac:e6:1e:da:a9:68:8f:92:11:34:ee:a5:76:c2:97:74:d4:
8c:48:49:fb:60:4f:7f:b4:24:12:a0:fa:36:d9:e2:c3:a9:a6:
75:1e:b7:bd:44:51:7d:e3:3e:b9:f0:c3:f5:50:76:9e:d5:df:
94:69:df:1c:d8:c8:cc:26:a7:a4:e3:8d:4e:14:30:5c:00:e3:
76:4e:c5:b2:50:6e:c4:32:0d:19:14:7a:65:13:af:ef:50:06:
a4:74:2a:50:63:fa:f4:5c:64:c0:81:20:2c:ca:c0:b5:1f:b0:
29:b0:8b:5e:3f:71:83:3e:39:a4:c7:c6:15:b3:34:f2:d5:fb:
de:dd:fa:02:26:7b:c0:63:fb:47:1a:de:5e:5f:b8:f9:f9:28:
a9:dc:18:02:c1:bd:08:04:26:d7:ce:f8:b6:75:9b:e2:3b:8c:
81:d1:dc:d8:6f:72:89:c4:6d:3d:ce:db:77:9a:69:92:ac:9a:
2f:7e:76:73:b1:b7:a1:c9:dd:a0:0d:2e:f4:ed:97:6d:be:3a:
e8:63:30:2f:27:42:e4:ce:dd:0e:5b:66:ff:6b:98:b0:79:8d:
63:a2:af:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92WAMGwm00cb5HD1H/bxvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhOTcwZGUxMjZiM2EwYjU0OGRhZDc2ZjVlZmE4ODg1NWM2
ZjFmZjIwHhcNMjUxMDE5MTkwMTQ1WhcNMjUxMDIwMTkwMTQ1WjAzMTEwLwYDVQQD
EygwYWVmYThiZWFiNjMzYmMyNzFiODIyNjlhMzBhNWU0YmFlY2RjODlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkayGYyKXCIviVsxAoHZ9qXyGPHzO
Cu1CEALIZFIiRmspSUOpmTjNhfK5QugR6IkkdzweBxpTV7kpc1G43LdyqVmTkpd6
gLdtdn8bvp2Bb1eUPcRY81g/bqpamELChPcemGbqgPHGSHUcEcoT00lAQ5lEb/jE
ZJt/9WFFKMXPIgziOi8L0NW44UKPYIEm5vnT+um3USuKhV3jOnBr+gw7AvS8zQQM
3D17ozTJEtftEbW+nSB+Ews7qFbH5XXvI8Aju5qsBTIgL/HzbYR6hNorBVS+ctqo
9fjfy/F/5jZ2Qyse7XcuybevSB8IHhak/xM8hjQq7A8OXmWsHSoDOUpv7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFArvqL6rYzvCcbgiaaMKXkuuzcifMB8GA1UdIwQY
MBaAFLqXDeEms6C1SNrXb176iIVcbx/yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9hZjcyZTgtZjBkMi00ZDY2LWI1MjAt
M2FiYTU5NWI1OGE4LzEvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9hZjcyZTgtZjBkMi00ZDY2LWI1MjAtM2FiYTU5NWI1OGE4
LzEvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZfjrXdAp
8k5iuVNIOV4EhNk5MNhzyZv0jXXjSJjWl9D7yRTipazmHtqpaI+SETTupXbCl3TU
jEhJ+2BPf7QkEqD6Ntniw6mmdR63vURRfeM+ufDD9VB2ntXflGnfHNjIzCanpOON
ThQwXADjdk7FslBuxDINGRR6ZROv71AGpHQqUGP69FxkwIEgLMrAtR+wKbCLXj9x
gz45pMfGFbM08tX73t36AiZ7wGP7RxreXl+4+fkoqdwYAsG9CAQm1874tnWb4juM
gdHc2G9yicRtPc7bd5ppkqyaL352c7G3ocndoA0u9O2Xbb466GMwLydC5M7dDltm
/2uYsHmNY6KvPg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:39:12 2025 by rpki-client