Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
File: uFsMinWJOk-OHvDZpNQUeNizMng.mft (raw, json)
Hash identifier: WYXbljiZJizalgMUCg+c69I7qnwSrilyRFwFAZqlPRY=
Subject key identifier: 6F:1B:89:82:97:8C:6F:AC:97:02:F9:7A:03:51:2F:A3:18:8A:05:F0
Authority key identifier: B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
Certificate issuer: /CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Certificate serial: 0199FE10285A3987375AC0CB22116D66A1FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
Manifest number: 1639
Signing time: Sun 19 Oct 2025 20:01:35 +0000
Manifest this update: Sun 19 Oct 2025 20:01:35 +0000
Manifest next update: Mon 20 Oct 2025 20:01:35 +0000
Files and hashes: 1: FAbnnF69oHTmqk-_EL74zctuaA4.roa (hash: fltdyHSTKiTHvNl3z1Whswl3hhYadpjXzd/kAG+oHEc=)
2: aJV7GbLDrd2CQzyoG7J6OnTP5DY.roa (hash: RYvSIhl4EMxqFZiyrQ0zAL7ZWanzg67h6dO8KAffWY0=)
3: uFsMinWJOk-OHvDZpNQUeNizMng.crl (hash: krpMgRty0X3no1kW9NL8Nx8G6yENIt4Wpe73+fqoZuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:10:28:5a:39:87:37:5a:c0:cb:22:11:6d:66:a1:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Validity
Not Before: Oct 19 20:01:35 2025 GMT
Not After : Oct 20 20:01:35 2025 GMT
Subject: CN=6f1b8982978c6fac9702f97a03512fa3188a05f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b2:0a:2f:5b:e2:08:ff:c7:e9:64:4f:b3:9c:
1c:2b:35:60:1a:53:96:db:33:b0:71:38:c4:b4:75:
ef:fe:1c:9f:19:12:60:34:c3:d5:fc:fd:c5:b9:4c:
36:55:6c:5a:7a:aa:10:f5:a9:fa:53:e6:69:8f:1c:
18:e6:d6:d1:92:5b:e8:ad:db:9e:60:a9:17:f7:ed:
62:7f:ed:50:d6:47:e3:77:b0:72:be:81:c5:42:40:
9f:7b:28:61:5e:6d:8d:c5:7d:67:46:ac:a9:ac:c2:
e3:8f:d9:0c:f6:68:b2:85:5b:7f:44:c0:d4:b7:38:
a5:d8:f8:20:dd:e4:e1:ad:93:f3:bf:51:24:91:f4:
ad:0b:75:3a:cf:27:4e:20:bc:31:f2:d0:94:e4:e7:
d1:c1:65:6c:77:27:77:17:6e:8f:2f:b4:81:06:30:
83:c3:91:7c:6d:03:34:1e:4c:2e:5f:5f:95:fe:5c:
ae:2b:c5:39:2e:de:99:9d:d2:50:98:c7:d1:8b:f7:
3b:4b:3b:8d:87:b1:e3:53:f6:35:ad:3a:de:29:aa:
96:de:0d:64:e6:f5:0f:1f:31:22:b3:c4:91:b5:bd:
d5:c6:cb:ce:6f:9d:15:eb:78:fb:fc:9c:8b:1d:7f:
99:40:dd:06:8c:e1:cf:d7:19:cf:2f:cb:9a:18:d6:
df:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:1B:89:82:97:8C:6F:AC:97:02:F9:7A:03:51:2F:A3:18:8A:05:F0
X509v3 Authority Key Identifier:
keyid:B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:6a:09:c3:be:41:d9:e3:13:22:29:fa:37:89:5f:ef:b7:02:
71:8a:9a:a2:57:dd:fd:93:be:c4:de:8d:76:fb:64:c9:a3:af:
8d:b6:31:6a:e2:f5:da:02:72:15:d2:f3:9e:7f:5e:1d:2e:88:
c3:6b:ea:18:eb:93:cc:f8:f5:1c:2b:a2:16:70:cb:dc:03:45:
91:de:2c:e1:23:14:0b:6d:5d:19:ae:54:24:5b:ed:19:01:1d:
92:98:70:55:38:bc:20:2d:ef:46:22:f5:ac:71:d3:bc:0f:c5:
77:c5:ec:42:5e:1f:48:7e:f5:aa:4e:88:1c:49:65:5d:5e:41:
20:11:79:46:08:46:15:fb:86:12:26:32:01:a0:91:b0:23:1d:
8c:c2:cc:e7:3d:f8:94:b9:62:32:b1:db:17:76:14:ae:63:b9:
80:69:50:33:cf:07:11:54:9d:b6:bf:dc:c7:9e:3c:d1:ac:77:
43:e8:89:86:af:5d:d6:d4:c5:42:da:ac:de:57:57:43:9d:a0:
d1:24:32:b0:55:f6:c1:53:9e:b7:2b:5e:6d:8f:0d:9c:92:15:
33:37:22:11:6d:a4:e5:db:31:07:86:89:76:c0:bf:3e:9d:2d:
c1:e3:64:86:17:f5:4f:cf:20:aa:8c:cf:e7:ef:80:de:7b:20:
d7:a2:53:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+EChaOYc3WsDLIhFtZqH6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4NWIwYzhhNzU4OTNhNGY4ZTFlZjBkOWE0ZDQxNDc4ZDhi
MzMyNzgwHhcNMjUxMDE5MjAwMTM1WhcNMjUxMDIwMjAwMTM1WjAzMTEwLwYDVQQD
Eyg2ZjFiODk4Mjk3OGM2ZmFjOTcwMmY5N2EwMzUxMmZhMzE4OGEwNWYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu7IKL1viCP/H6WRPs5wcKzVgGlOW
2zOwcTjEtHXv/hyfGRJgNMPV/P3FuUw2VWxaeqoQ9an6U+ZpjxwY5tbRklvordue
YKkX9+1if+1Q1kfjd7ByvoHFQkCfeyhhXm2NxX1nRqyprMLjj9kM9miyhVt/RMDU
tzil2Pgg3eThrZPzv1EkkfStC3U6zydOILwx8tCU5OfRwWVsdyd3F26PL7SBBjCD
w5F8bQM0HkwuX1+V/lyuK8U5Lt6ZndJQmMfRi/c7SzuNh7HjU/Y1rTreKaqW3g1k
5vUPHzEis8SRtb3VxsvOb50V63j7/JyLHX+ZQN0GjOHP1xnPL8uaGNbf3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG8biYKXjG+slwL5egNRL6MYigXwMB8GA1UdIwQY
MBaAFLhbDIp1iTpPjh7w2aTUFHjYszJ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUZzTWluV0pPay1PSHZEWnBOUVVlTml6TW5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC84ODE5ZTItYzRlMy00YmNlLWE2MWMt
MzA1ZDQxZDUzYTY1LzEvdUZzTWluV0pPay1PSHZEWnBOUVVlTml6TW5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC84ODE5ZTItYzRlMy00YmNlLWE2MWMtMzA1ZDQxZDUzYTY1
LzEvdUZzTWluV0pPay1PSHZEWnBOUVVlTml6TW5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtGoJw75B
2eMTIin6N4lf77cCcYqaolfd/ZO+xN6NdvtkyaOvjbYxauL12gJyFdLznn9eHS6I
w2vqGOuTzPj1HCuiFnDL3ANFkd4s4SMUC21dGa5UJFvtGQEdkphwVTi8IC3vRiL1
rHHTvA/Fd8XsQl4fSH71qk6IHEllXV5BIBF5RghGFfuGEiYyAaCRsCMdjMLM5z34
lLliMrHbF3YUrmO5gGlQM88HEVSdtr/cx5480ax3Q+iJhq9d1tTFQtqs3ldXQ52g
0SQysFX2wVOetytebY8NnJIVMzciEW2k5dsxB4aJdsC/Pp0tweNkhhf1T88gqozP
5++A3nsg16JT6A==
-----END CERTIFICATE-----
Generated at Mon Oct 20 01:15:53 2025 by rpki-client