Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: O5XDDZoqHVfN3oOxv5j2odnXKcGbahik7qQtvVSLXCY=
Subject key identifier: 5A:B1:06:B7:3D:7F:7C:6F:2F:4B:76:5F:3C:A2:32:1E:A6:8A:69:2C
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 0198D6980DCCAEEE96091CC65677083E4D8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 0EE7
Signing time: Sat 23 Aug 2025 11:02:25 +0000
Manifest this update: Sat 23 Aug 2025 11:02:25 +0000
Manifest next update: Sun 24 Aug 2025 11:02:25 +0000
Files and hashes: 1: Vevc9vrQGyVF5o4NzN0QFHnZAiA.roa (hash: AOWcNE88wNCBWfSzm2+MmaRV4c7usJ5kQGrhyE8Gj6M=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: 3PigIVvdLw5Ojr8YPoPbiZJxogaABzJ4XaxdnLQC0Bk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:0d:cc:ae:ee:96:09:1c:c6:56:77:08:3e:4d:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Aug 23 11:02:25 2025 GMT
Not After : Aug 24 11:02:25 2025 GMT
Subject: CN=5ab106b73d7f7c6f2f4b765f3ca2321ea68a692c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:19:fa:5e:55:55:ed:22:f7:92:2d:46:9d:87:
16:02:c7:be:9d:4c:a9:fd:da:41:07:b9:86:ab:d9:
83:50:0a:8a:d7:1e:21:3e:68:32:5a:59:2c:c5:1d:
e6:55:ac:f9:8c:95:60:da:d5:c3:9b:0b:7b:6c:6c:
f1:bd:9d:6e:33:e4:45:44:ce:d7:0d:3d:92:83:d2:
76:8b:7b:91:25:b8:24:03:3f:16:fd:f9:e8:ee:72:
ef:66:c9:9c:94:a2:8d:81:54:0b:a0:87:25:f3:95:
a2:4a:7e:a5:ab:93:99:bb:c2:80:fe:25:89:ed:4a:
cf:75:83:1e:75:59:33:02:cd:71:50:b8:88:92:04:
51:6a:b0:77:4d:eb:a9:f8:63:68:a0:23:fb:59:9b:
ca:b9:04:13:62:98:09:06:10:9c:b4:df:20:d8:47:
72:91:4a:f0:b7:83:ea:1c:e8:7f:1a:79:8e:6c:df:
da:f2:a7:1b:9f:e1:11:83:55:7c:82:c9:32:cb:79:
71:75:e2:a2:59:ac:40:02:d0:13:66:3a:d6:f7:fa:
b8:87:9a:50:fe:54:61:e7:e1:1b:50:5e:32:45:fc:
45:a5:16:7c:60:70:f1:b1:d0:63:fa:7d:19:df:fb:
c9:8a:1c:49:e0:18:12:98:88:a7:8f:a5:93:77:22:
5c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B1:06:B7:3D:7F:7C:6F:2F:4B:76:5F:3C:A2:32:1E:A6:8A:69:2C
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:e8:8c:fc:d7:24:45:04:7f:9e:d1:48:26:52:ca:33:9d:2d:
4f:7f:c1:5f:a9:9b:53:79:10:9c:d4:80:e4:b4:43:e5:37:49:
fd:0f:26:5f:ca:ab:80:56:45:41:0c:39:cf:88:a4:43:86:ef:
01:64:96:4b:a1:8e:54:1a:e4:97:0d:1f:3b:d1:37:38:bd:00:
b5:55:d4:1d:cb:f7:c5:be:4f:5f:10:e9:a7:22:10:63:26:59:
f0:d9:3d:c3:65:eb:00:61:ad:d3:1c:f2:9b:3c:a5:3a:ac:4b:
04:62:a0:d4:2e:c8:f8:24:61:5d:af:1a:73:d4:82:4c:1a:98:
46:e7:e8:3c:91:b0:e6:de:be:3c:ac:8c:be:08:ee:d7:79:ce:
46:cd:13:4b:6e:da:f4:f6:1d:02:4b:9e:ba:f5:72:05:c0:1c:
d3:6f:2b:11:ea:aa:5d:4b:f4:ba:d4:bb:47:78:e8:e7:7e:17:
7b:73:1a:27:44:28:54:3d:5c:bb:be:27:c0:ce:38:40:75:da:
e8:19:f0:68:6d:64:bd:c3:70:c5:c9:54:ae:a9:07:0a:fd:7b:
4f:a9:8f:16:c5:27:42:b1:c8:df:f7:a4:c4:6f:ab:55:d1:81:
0c:3e:91:68:ca:80:f5:fa:f5:04:0d:aa:77:9c:f9:fd:8d:a4:
7b:47:60:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWmA3Mru6WCRzGVncIPk2LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNjg1OTU5OTc5MDBkZWQzMDBlOTkyNTcwOWRhNjI3ZTkz
ZjM2M2EwHhcNMjUwODIzMTEwMjI1WhcNMjUwODI0MTEwMjI1WjAzMTEwLwYDVQQD
Eyg1YWIxMDZiNzNkN2Y3YzZmMmY0Yjc2NWYzY2EyMzIxZWE2OGE2OTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBn6XlVV7SL3ki1GnYcWAse+nUyp
/dpBB7mGq9mDUAqK1x4hPmgyWlksxR3mVaz5jJVg2tXDmwt7bGzxvZ1uM+RFRM7X
DT2Sg9J2i3uRJbgkAz8W/fno7nLvZsmclKKNgVQLoIcl85WiSn6lq5OZu8KA/iWJ
7UrPdYMedVkzAs1xULiIkgRRarB3Teup+GNooCP7WZvKuQQTYpgJBhCctN8g2Edy
kUrwt4PqHOh/GnmObN/a8qcbn+ERg1V8gskyy3lxdeKiWaxAAtATZjrW9/q4h5pQ
/lRh5+EbUF4yRfxFpRZ8YHDxsdBj+n0Z3/vJihxJ4BgSmIinj6WTdyJcuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFqxBrc9f3xvL0t2XzyiMh6mimksMB8GA1UdIwQY
MBaAFLpoWVmXkA3tMA6ZJXCdpifpPzY6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS80NzJhNGQtZmNhZS00NDU0LTk5Njct
MDJkZWQ5YjJlMGM5LzEvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS80NzJhNGQtZmNhZS00NDU0LTk5NjctMDJkZWQ5YjJlMGM5
LzEvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL+iM/Nck
RQR/ntFIJlLKM50tT3/BX6mbU3kQnNSA5LRD5TdJ/Q8mX8qrgFZFQQw5z4ikQ4bv
AWSWS6GOVBrklw0fO9E3OL0AtVXUHcv3xb5PXxDppyIQYyZZ8Nk9w2XrAGGt0xzy
mzylOqxLBGKg1C7I+CRhXa8ac9SCTBqYRufoPJGw5t6+PKyMvgju13nORs0TS27a
9PYdAkueuvVyBcAc028rEeqqXUv0utS7R3jo534Xe3MaJ0QoVD1cu74nwM44QHXa
6BnwaG1kvcNwxclUrqkHCv17T6mPFsUnQrHI3/ekxG+rVdGBDD6RaMqA9fr1BA2q
d5z5/Y2ke0dg8Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:37:03 2025 by rpki-client