Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.mft
File: uiOwejwKyeMz9S6LXUGnaKPTkCU.mft (raw, json)
Hash identifier: baQ7HsT0dECrOkeOU9p/b2pbV9Hj0Uhof9Rc5OBHuak=
Subject key identifier: F2:9C:C0:B8:C2:B7:08:6A:A1:46:F5:F8:F8:3B:6B:19:3F:B3:91:1C
Authority key identifier: BA:23:B0:7A:3C:0A:C9:E3:33:F5:2E:8B:5D:41:A7:68:A3:D3:90:25
Certificate issuer: /CN=ba23b07a3c0ac9e333f52e8b5d41a768a3d39025
Certificate serial: 01987B2E069C13484BA51EC21AAC1CE0879F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uiOwejwKyeMz9S6LXUGnaKPTkCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.mft
Manifest number: 05C5
Signing time: Tue 05 Aug 2025 17:01:10 +0000
Manifest this update: Tue 05 Aug 2025 17:01:10 +0000
Manifest next update: Wed 06 Aug 2025 17:01:10 +0000
Files and hashes: 1: Ad9fi9qlun6YM_gFezIokOCQkLs.roa (hash: S4qKDAh1WyrdkcGPs8CGFXh64ebt7vNp8v8VXZtyJ2o=)
2: SW07hbnebVdCqrbU8syhynqAX7c.roa (hash: fHq3wBn0v/bUheMJ6DOC8R/E4a6CfE2fSibEdOoR5GY=)
3: uiOwejwKyeMz9S6LXUGnaKPTkCU.crl (hash: GpWBxmxKkm32Q+7qbwJBaiiMpTzbyE4MvpELnXePpYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uiOwejwKyeMz9S6LXUGnaKPTkCU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:2e:06:9c:13:48:4b:a5:1e:c2:1a:ac:1c:e0:87:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba23b07a3c0ac9e333f52e8b5d41a768a3d39025
Validity
Not Before: Aug 5 17:01:10 2025 GMT
Not After : Aug 6 17:01:10 2025 GMT
Subject: CN=f29cc0b8c2b7086aa146f5f8f83b6b193fb3911c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6a:1a:47:3e:46:03:8e:2c:2b:3e:35:c7:03:
c1:50:b1:b8:04:9a:67:2c:2f:fc:3b:11:5f:09:cc:
fc:93:95:e1:d4:a6:dc:21:f7:a6:fa:55:2d:a1:ec:
96:7f:77:aa:36:4d:2b:aa:c0:b6:d4:49:55:60:fd:
c6:1c:54:a4:0e:a1:d9:eb:4c:e6:71:68:40:82:6f:
57:8e:3e:14:01:21:21:48:83:b3:f0:9f:72:fc:c1:
30:51:37:3b:a4:ca:0a:51:03:4e:5c:b9:02:55:95:
80:1d:87:b6:b8:4b:f5:7e:d7:81:29:f2:d2:ee:6a:
5c:17:2a:de:f8:db:a3:dd:10:64:30:fa:fd:c2:af:
a0:12:ef:c7:e6:bc:cb:16:1c:19:3b:41:0e:6b:cc:
c3:96:9e:57:f7:71:b2:e7:91:96:a4:87:03:f0:6a:
12:91:ee:4b:0e:60:8c:e6:58:7b:58:68:3c:44:22:
65:7e:3f:63:fc:18:16:d4:3c:0a:c1:ee:4a:d9:5b:
c8:67:43:15:12:0b:fd:0f:ec:4c:c5:ea:9a:89:a5:
5b:b9:15:2d:f2:df:14:2d:f4:af:33:94:c9:ef:1b:
dd:b8:c4:5f:fc:8d:43:39:e7:2f:b9:67:3d:31:29:
20:59:ab:ca:85:fe:58:49:2a:eb:98:4a:fb:e5:03:
40:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:9C:C0:B8:C2:B7:08:6A:A1:46:F5:F8:F8:3B:6B:19:3F:B3:91:1C
X509v3 Authority Key Identifier:
keyid:BA:23:B0:7A:3C:0A:C9:E3:33:F5:2E:8B:5D:41:A7:68:A3:D3:90:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uiOwejwKyeMz9S6LXUGnaKPTkCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:00:14:e6:55:7f:6b:c9:5e:bf:53:ae:53:6a:1b:54:5c:a1:
fe:17:c2:e6:3d:b7:3a:87:96:58:6d:f9:d5:c3:ef:b5:88:4d:
43:0a:7b:69:51:ab:62:7a:ef:52:46:3d:a1:f6:0d:e5:92:be:
25:54:76:71:04:19:d6:ea:d2:c9:aa:e9:57:cc:81:b9:74:2d:
bc:3f:a9:77:52:0e:81:75:ed:a5:34:de:26:d6:cd:79:fe:83:
ba:29:b3:6b:19:7b:04:e4:cd:5d:47:23:1a:06:37:be:98:41:
4b:c7:2a:e2:e6:e3:90:1c:e4:e6:4c:93:51:e4:1c:08:4c:4b:
ce:21:0f:40:29:97:33:4d:44:f7:95:af:06:ec:0d:3f:2d:d0:
c4:fd:c4:03:bf:02:81:db:9e:64:db:ba:16:cd:18:be:38:b0:
97:d3:44:bb:15:60:7f:2a:62:a6:3d:d1:db:d6:02:71:4a:b1:
21:de:89:31:a4:1b:3b:b0:82:b5:0d:ee:3d:60:3f:6d:25:ff:
b6:fd:6e:11:13:38:1a:d9:45:d2:6f:7c:8b:a6:5c:8d:d1:1b:
e4:fa:59:93:24:65:e2:2b:dc:41:3e:44:e8:22:83:27:4b:d6:
8e:38:1a:2b:c1:30:8b:8f:29:db:cc:32:c6:d2:02:bc:da:68:
96:4d:a1:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh7LgacE0hLpR7CGqwc4IefMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhMjNiMDdhM2MwYWM5ZTMzM2Y1MmU4YjVkNDFhNzY4YTNk
MzkwMjUwHhcNMjUwODA1MTcwMTEwWhcNMjUwODA2MTcwMTEwWjAzMTEwLwYDVQQD
EyhmMjljYzBiOGMyYjcwODZhYTE0NmY1ZjhmODNiNmIxOTNmYjM5MTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WoaRz5GA44sKz41xwPBULG4BJpn
LC/8OxFfCcz8k5Xh1KbcIfem+lUtoeyWf3eqNk0rqsC21ElVYP3GHFSkDqHZ60zm
cWhAgm9Xjj4UASEhSIOz8J9y/MEwUTc7pMoKUQNOXLkCVZWAHYe2uEv1fteBKfLS
7mpcFyre+Nuj3RBkMPr9wq+gEu/H5rzLFhwZO0EOa8zDlp5X93Gy55GWpIcD8GoS
ke5LDmCM5lh7WGg8RCJlfj9j/BgW1DwKwe5K2VvIZ0MVEgv9D+xMxeqaiaVbuRUt
8t8ULfSvM5TJ7xvduMRf/I1DOecvuWc9MSkgWavKhf5YSSrrmEr75QNAIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPKcwLjCtwhqoUb1+Pg7axk/s5EcMB8GA1UdIwQY
MBaAFLojsHo8CsnjM/Uui11Bp2ij05AlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWlPd2Vqd0t5ZU16OVM2TFhVR25hS1BUa0NVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xMGQ1YjItODVlMy00OWVkLWJkYzEt
ODA2OWM0Njc3MWNjLzEvdWlPd2Vqd0t5ZU16OVM2TFhVR25hS1BUa0NVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8xMGQ1YjItODVlMy00OWVkLWJkYzEtODA2OWM0Njc3MWNj
LzEvdWlPd2Vqd0t5ZU16OVM2TFhVR25hS1BUa0NVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJgAU5lV/
a8lev1OuU2obVFyh/hfC5j23OoeWWG351cPvtYhNQwp7aVGrYnrvUkY9ofYN5ZK+
JVR2cQQZ1urSyarpV8yBuXQtvD+pd1IOgXXtpTTeJtbNef6Duimzaxl7BOTNXUcj
GgY3vphBS8cq4ubjkBzk5kyTUeQcCExLziEPQCmXM01E95WvBuwNPy3QxP3EA78C
gdueZNu6Fs0Yvjiwl9NEuxVgfypipj3R29YCcUqxId6JMaQbO7CCtQ3uPWA/bSX/
tv1uERM4GtlF0m98i6ZcjdEb5PpZkyRl4ivcQT5E6CKDJ0vWjjgaK8Ewi48p28wy
xtICvNpolk2hqg==
-----END CERTIFICATE-----
Generated at Wed Aug 6 00:34:11 2025 by rpki-client