Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
File: UHDcUgTez3q-pQcNdfoFjIrAE9U.mft (raw, json)
Hash identifier: jOrbWTPW4pBbuorHdyM0BOBrPi2xZOAHOwfbdA6kO8w=
Subject key identifier: A8:6B:AD:94:0B:B5:A8:4D:86:E5:54:DD:85:C0:07:BB:DB:8A:E6:0A
Authority key identifier: 50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5
Certificate issuer: /CN=5070dc5204decf7abea5070d75fa058c8ac013d5
Certificate serial: 0198D660751F3523F62C49313410336A4A1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
Manifest number: 136B
Signing time: Sat 23 Aug 2025 10:01:42 +0000
Manifest this update: Sat 23 Aug 2025 10:01:42 +0000
Manifest next update: Sun 24 Aug 2025 10:01:42 +0000
Files and hashes: 1: 1qF2qpZ4KDEQgCHi8Zz6Mofp1Bw.roa (hash: ZUGdPkmwhsuvGIfhBFvpGPh0RIr8NwcoDU94MyjHlG0=)
2: UHDcUgTez3q-pQcNdfoFjIrAE9U.crl (hash: amhJeBRkw9bNV6u+ZZJqn8sWTfTl1q+iPnp4t7kR7Xo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:75:1f:35:23:f6:2c:49:31:34:10:33:6a:4a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5070dc5204decf7abea5070d75fa058c8ac013d5
Validity
Not Before: Aug 23 10:01:42 2025 GMT
Not After : Aug 24 10:01:42 2025 GMT
Subject: CN=a86bad940bb5a84d86e554dd85c007bbdb8ae60a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9d:55:95:47:8e:0c:4e:54:1e:20:d7:dd:13:
ed:58:2f:a6:b2:28:9a:15:78:39:d7:ad:78:41:e1:
67:5a:84:c9:da:bd:9d:f7:1b:ad:55:ac:1e:a4:60:
e2:73:9b:ca:24:a9:8a:d0:41:57:e7:96:6c:a4:99:
0a:21:f5:4c:56:7b:6d:bc:3a:37:13:3d:28:b7:3c:
0e:c7:f8:ed:29:7c:64:59:98:52:08:a5:05:a2:91:
77:3a:0d:06:e5:4f:60:9f:67:19:b8:a0:a9:ed:61:
ad:fe:18:1e:5c:1d:28:48:aa:52:aa:e1:38:fd:0c:
af:bf:31:2d:6c:0b:ba:0b:d5:f4:da:ec:3d:d2:35:
0b:fc:2c:33:8f:51:25:4b:d3:27:29:ee:13:36:25:
2b:14:80:c0:43:b0:90:30:7d:8f:dd:f1:de:6f:45:
3b:4d:f8:90:3b:ea:27:5d:41:06:b3:f4:e9:7c:0b:
98:8c:d6:5d:99:90:51:cd:77:99:24:a5:2e:58:8d:
5d:b2:f9:31:96:31:71:71:42:fa:09:e3:0e:84:d3:
bd:d9:a8:72:ee:e8:45:e9:f0:07:49:65:3b:b8:d3:
46:57:e7:3c:3a:ab:e7:e3:03:54:51:67:52:02:f8:
46:73:01:d2:d4:69:55:85:e0:bf:f5:d1:fe:50:41:
16:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6B:AD:94:0B:B5:A8:4D:86:E5:54:DD:85:C0:07:BB:DB:8A:E6:0A
X509v3 Authority Key Identifier:
keyid:50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:d9:65:f0:e0:4f:26:6e:64:20:72:4d:75:a8:ab:af:3b:94:
1e:51:b7:e3:03:3d:18:7c:d8:9e:9d:01:bb:2b:b4:27:be:c2:
fa:56:b5:70:27:61:31:0e:47:f7:5f:d9:7f:09:86:d4:51:26:
de:c2:e8:46:c4:ec:d8:bf:2b:c4:0c:99:ea:64:d6:d5:9c:4b:
8a:bb:98:53:3e:74:5c:b5:83:ec:6c:bf:f5:39:c5:19:e3:84:
c0:04:14:c5:10:9f:05:c6:d2:14:dd:bf:0b:34:6e:0b:a2:43:
3f:58:e7:45:bb:b8:dd:d8:a6:a6:91:50:2f:11:b4:01:c9:7c:
9f:96:0d:79:d1:72:7c:d9:23:3c:33:64:a9:ac:57:94:0d:e3:
01:28:64:ae:e3:2c:72:8f:04:43:4b:61:e9:46:f9:92:3b:21:
27:6d:a1:10:08:18:fa:30:e5:bc:81:e2:e3:b3:50:95:ac:6d:
0f:0d:d2:58:9b:4d:08:dd:4d:78:8d:80:95:fd:4f:16:e8:68:
bc:12:5a:e4:69:12:d2:a0:db:df:c3:e1:af:2f:63:61:d2:d0:
15:82:bd:e7:b8:8d:a2:c3:1f:61:03:75:1d:b0:24:c2:99:38:
23:0e:4d:f6:61:98:29:26:4b:e6:4a:9f:fe:d2:fd:3f:ab:57:
b7:8a:87:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYHUfNSP2LEkxNBAzakocMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNzBkYzUyMDRkZWNmN2FiZWE1MDcwZDc1ZmEwNThjOGFj
MDEzZDUwHhcNMjUwODIzMTAwMTQyWhcNMjUwODI0MTAwMTQyWjAzMTEwLwYDVQQD
EyhhODZiYWQ5NDBiYjVhODRkODZlNTU0ZGQ4NWMwMDdiYmRiOGFlNjBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApp1VlUeODE5UHiDX3RPtWC+msiia
FXg51614QeFnWoTJ2r2d9xutVawepGDic5vKJKmK0EFX55ZspJkKIfVMVnttvDo3
Ez0otzwOx/jtKXxkWZhSCKUFopF3Og0G5U9gn2cZuKCp7WGt/hgeXB0oSKpSquE4
/QyvvzEtbAu6C9X02uw90jUL/Cwzj1ElS9MnKe4TNiUrFIDAQ7CQMH2P3fHeb0U7
TfiQO+onXUEGs/TpfAuYjNZdmZBRzXeZJKUuWI1dsvkxljFxcUL6CeMOhNO92ahy
7uhF6fAHSWU7uNNGV+c8Oqvn4wNUUWdSAvhGcwHS1GlVheC/9dH+UEEWCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKhrrZQLtahNhuVU3YXAB7vbiuYKMB8GA1UdIwQY
MBaAFFBw3FIE3s96vqUHDXX6BYyKwBPVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUhEY1VnVGV6M3EtcFFjTmRmb0ZqSXJBRTlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9hMjhiNWMtODhkNy00YWQ0LTllMWQt
OGFjMTdlOWM0MGRiLzEvVUhEY1VnVGV6M3EtcFFjTmRmb0ZqSXJBRTlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9hMjhiNWMtODhkNy00YWQ0LTllMWQtOGFjMTdlOWM0MGRi
LzEvVUhEY1VnVGV6M3EtcFFjTmRmb0ZqSXJBRTlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH9ll8OBP
Jm5kIHJNdairrzuUHlG34wM9GHzYnp0Buyu0J77C+la1cCdhMQ5H91/ZfwmG1FEm
3sLoRsTs2L8rxAyZ6mTW1ZxLiruYUz50XLWD7Gy/9TnFGeOEwAQUxRCfBcbSFN2/
CzRuC6JDP1jnRbu43dimppFQLxG0Acl8n5YNedFyfNkjPDNkqaxXlA3jAShkruMs
co8EQ0th6Ub5kjshJ22hEAgY+jDlvIHi47NQlaxtDw3SWJtNCN1NeI2Alf1PFuho
vBJa5GkS0qDb38Phry9jYdLQFYK957iNosMfYQN1HbAkwpk4Iw5N9mGYKSZL5kqf
/tL9P6tXt4qH3A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:12:29 2025 by rpki-client