Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft
File: UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft (raw, json)
Hash identifier: lQyrFbnT+mrKBQ2fEIwFYfmnb/4YmPckTARxuSMI/44=
Subject key identifier: 62:9D:7B:AE:99:0F:F0:13:5A:A7:1F:7C:91:C8:56:C8:C3:7C:5F:0D
Authority key identifier: 52:F2:5B:D0:5A:C1:48:85:1F:A2:A4:63:AD:0D:E0:70:81:84:04:F7
Certificate issuer: /CN=52f25bd05ac148851fa2a463ad0de070818404f7
Certificate serial: 0199FBEABD5FFC0D313E999057E21401BFDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft
Manifest number: 0B0C
Signing time: Sun 19 Oct 2025 10:01:28 +0000
Manifest this update: Sun 19 Oct 2025 10:01:28 +0000
Manifest next update: Mon 20 Oct 2025 10:01:28 +0000
Files and hashes: 1: UvJb0FrBSIUfoqRjrQ3gcIGEBPc.crl (hash: Zz5t8B4lqg4QQX7ZrB652OtBYlAMWwiNePAVuQBWhg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:bd:5f:fc:0d:31:3e:99:90:57:e2:14:01:bf:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52f25bd05ac148851fa2a463ad0de070818404f7
Validity
Not Before: Oct 19 10:01:28 2025 GMT
Not After : Oct 20 10:01:28 2025 GMT
Subject: CN=629d7bae990ff0135aa71f7c91c856c8c37c5f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ea:e5:df:cc:0c:a6:3c:a5:1d:09:a5:ea:a7:
c7:97:8d:47:d3:25:36:01:11:e8:7d:cf:a0:61:af:
0e:82:5e:72:65:62:41:61:56:34:a6:4d:10:8f:2b:
ae:a8:74:bf:8c:0f:f9:0d:85:f1:54:ba:53:62:aa:
41:34:58:1a:d7:47:d5:bc:e5:36:9c:e7:c8:5b:f8:
3a:0c:03:1b:04:41:7b:e3:5b:b5:fb:64:08:86:1b:
ec:22:a8:d6:90:39:e4:29:b4:80:83:8d:07:54:51:
e6:36:46:98:1b:32:17:0b:de:ca:47:7d:5a:14:21:
c0:82:85:55:5e:86:a1:07:ae:9f:cd:b2:ff:5d:a3:
23:18:03:56:61:12:3f:35:83:bd:36:6e:10:cd:07:
d8:07:e9:dc:01:bb:3e:31:89:72:45:3c:f3:37:62:
12:bd:26:48:40:ef:27:ce:97:0d:a6:89:be:4e:55:
8a:d3:dc:d4:73:f9:69:24:01:15:67:c9:c7:44:6b:
d3:49:98:40:da:a5:2a:91:85:0a:f4:0c:cf:22:8a:
0a:9b:d1:ca:ee:e4:f5:e5:63:39:18:a8:b7:8a:4c:
29:b7:56:04:fb:9f:4f:74:0d:0a:c7:5e:70:56:66:
66:aa:c6:ae:0b:13:77:4f:15:0f:52:73:60:d4:51:
55:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:9D:7B:AE:99:0F:F0:13:5A:A7:1F:7C:91:C8:56:C8:C3:7C:5F:0D
X509v3 Authority Key Identifier:
keyid:52:F2:5B:D0:5A:C1:48:85:1F:A2:A4:63:AD:0D:E0:70:81:84:04:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/12d4f2-5028-44fb-bdf3-c822155acfa6/1/UvJb0FrBSIUfoqRjrQ3gcIGEBPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:1a:be:9a:bd:c5:0a:f9:eb:fc:0e:e3:f1:89:9d:4a:23:ab:
8d:18:d1:ef:67:92:dc:e9:c5:b6:bd:72:19:4c:fe:95:e6:4d:
d4:e9:49:35:a9:02:ac:f6:05:4a:bd:a1:f5:ec:6f:c7:a4:0e:
b8:18:94:d5:92:07:2e:0a:c5:d2:f3:37:ee:8d:10:28:a7:57:
5f:8e:09:0a:7f:bb:be:5f:ff:72:a8:4f:1a:37:ee:17:82:3c:
cb:61:79:6a:b7:d5:87:1e:61:82:2f:49:e4:f5:82:ab:96:99:
c9:10:b8:43:10:53:0a:54:3f:b7:9f:9d:09:6f:67:f7:7d:a2:
3f:86:2c:8c:7d:08:a5:18:72:5d:dc:de:66:c3:72:1c:6d:27:
15:7e:b7:ca:6b:90:fa:8f:35:47:5e:92:cf:b1:33:69:22:e1:
ce:ba:16:df:44:4b:9e:82:48:07:7c:e0:f1:29:53:06:8f:97:
27:ec:eb:57:1e:79:a6:65:15:90:a1:ab:b8:21:44:af:e8:99:
fe:fc:e2:6c:71:49:a3:75:0e:76:4b:84:b2:f7:8e:88:73:c3:
91:a3:b6:7d:53:69:ab:be:06:11:b2:5b:f9:41:55:3c:c6:63:
77:07:85:fb:ca:99:a4:ea:e7:bd:81:66:c2:24:68:ee:92:fe:
50:4e:63:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76r1f/A0xPpmQV+IUAb/cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyZjI1YmQwNWFjMTQ4ODUxZmEyYTQ2M2FkMGRlMDcwODE4
NDA0ZjcwHhcNMjUxMDE5MTAwMTI4WhcNMjUxMDIwMTAwMTI4WjAzMTEwLwYDVQQD
Eyg2MjlkN2JhZTk5MGZmMDEzNWFhNzFmN2M5MWM4NTZjOGMzN2M1ZjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3erl38wMpjylHQml6qfHl41H0yU2
ARHofc+gYa8Ogl5yZWJBYVY0pk0QjyuuqHS/jA/5DYXxVLpTYqpBNFga10fVvOU2
nOfIW/g6DAMbBEF741u1+2QIhhvsIqjWkDnkKbSAg40HVFHmNkaYGzIXC97KR31a
FCHAgoVVXoahB66fzbL/XaMjGANWYRI/NYO9Nm4QzQfYB+ncAbs+MYlyRTzzN2IS
vSZIQO8nzpcNpom+TlWK09zUc/lpJAEVZ8nHRGvTSZhA2qUqkYUK9AzPIooKm9HK
7uT15WM5GKi3ikwpt1YE+59PdA0Kx15wVmZmqsauCxN3TxUPUnNg1FFVDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGKde66ZD/ATWqcffJHIVsjDfF8NMB8GA1UdIwQY
MBaAFFLyW9BawUiFH6KkY60N4HCBhAT3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXZKYjBGckJTSVVmb3FSanJRM2djSUdFQlBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8xMmQ0ZjItNTAyOC00NGZiLWJkZjMt
YzgyMjE1NWFjZmE2LzEvVXZKYjBGckJTSVVmb3FSanJRM2djSUdFQlBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8xMmQ0ZjItNTAyOC00NGZiLWJkZjMtYzgyMjE1NWFjZmE2
LzEvVXZKYjBGckJTSVVmb3FSanJRM2djSUdFQlBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoxq+mr3F
Cvnr/A7j8YmdSiOrjRjR72eS3OnFtr1yGUz+leZN1OlJNakCrPYFSr2h9exvx6QO
uBiU1ZIHLgrF0vM37o0QKKdXX44JCn+7vl//cqhPGjfuF4I8y2F5arfVhx5hgi9J
5PWCq5aZyRC4QxBTClQ/t5+dCW9n932iP4YsjH0IpRhyXdzeZsNyHG0nFX63ymuQ
+o81R16Sz7EzaSLhzroW30RLnoJIB3zg8SlTBo+XJ+zrVx55pmUVkKGruCFEr+iZ
/vzibHFJo3UOdkuEsveOiHPDkaO2fVNpq74GEbJb+UFVPMZjdweF+8qZpOrnvYFm
wiRo7pL+UE5jEQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:07:20 2025 by rpki-client