Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.mft
File: uiOwejwKyeMz9S6LXUGnaKPTkCU.mft (raw, json)
Hash identifier: 0OiTtiBm6NfIhQ1AlsCzcnugaMI6ruFouM1fpxZoPC4=
Subject key identifier: 52:7F:33:49:0A:BD:52:35:83:85:9C:64:53:2E:30:91:6F:60:26:50
Authority key identifier: BA:23:B0:7A:3C:0A:C9:E3:33:F5:2E:8B:5D:41:A7:68:A3:D3:90:25
Certificate issuer: /CN=ba23b07a3c0ac9e333f52e8b5d41a768a3d39025
Certificate serial: 019A4FCFEB258B5EE487650B6CD69A4D223B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uiOwejwKyeMz9S6LXUGnaKPTkCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.mft
Manifest number: 06BE
Signing time: Tue 04 Nov 2025 17:00:17 +0000
Manifest this update: Tue 04 Nov 2025 17:00:17 +0000
Manifest next update: Wed 05 Nov 2025 17:00:17 +0000
Files and hashes: 1: 11jEC650m0CZG4LpQL4zmUd5QaY.roa (hash: 7UGZEAgneJXq9Giu9H7nZKjtUjxT92keVlw2sUKbxho=)
2: 4B7MfDl6NByJmRgXlWM71-ODWyI.roa (hash: 9aZO8CFVuoeDGT3o5gurHwnNU71DvTs2u9IU71mfm6I=)
3: uiOwejwKyeMz9S6LXUGnaKPTkCU.crl (hash: r04Uo35arxksN/g1swBOOU5had50JT2PQhWdYPbXfag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uiOwejwKyeMz9S6LXUGnaKPTkCU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 17:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:cf:eb:25:8b:5e:e4:87:65:0b:6c:d6:9a:4d:22:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba23b07a3c0ac9e333f52e8b5d41a768a3d39025
Validity
Not Before: Nov 4 17:00:17 2025 GMT
Not After : Nov 5 17:00:17 2025 GMT
Subject: CN=527f33490abd523583859c64532e30916f602650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:12:6e:97:d2:72:0b:9a:88:d4:f7:87:5e:f9:
f7:dd:b6:9f:c0:6c:02:b5:e4:e8:78:38:0c:13:72:
41:36:6d:42:bb:0a:d3:2f:35:0a:0c:d5:b0:03:8a:
89:42:9a:90:c7:50:d0:5d:f1:3b:06:ef:dc:72:83:
9b:08:d8:02:35:9e:db:eb:49:d4:e2:cc:1c:1f:da:
3b:92:5e:07:0a:93:6c:da:71:ed:d1:4d:10:e4:4c:
9f:59:d9:c1:4e:5c:06:36:99:af:13:eb:d5:88:2b:
81:dc:09:e5:03:1a:5e:3b:d9:84:a1:64:48:21:fe:
f8:49:df:c7:ae:2b:b7:88:8a:1e:9f:ac:a6:d3:e2:
34:1c:61:13:95:44:b1:e5:fb:19:07:68:9d:ba:32:
0a:ce:9e:0a:ee:3e:63:f5:ed:a8:b6:7f:da:e1:9f:
78:77:a1:2b:92:e8:30:12:b8:10:94:00:6d:09:44:
b4:e0:50:c8:02:6a:90:e9:48:de:b8:12:a1:cd:09:
1a:a7:c9:00:de:e7:73:f3:72:b6:ac:ba:28:8a:cb:
ad:fd:34:44:49:8a:20:a1:53:6d:db:a6:44:13:dd:
c0:b7:53:70:0b:25:0e:dc:78:1f:cb:a8:03:be:63:
86:12:f7:f7:0b:01:a9:6e:1c:f6:88:3c:a3:df:fc:
df:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7F:33:49:0A:BD:52:35:83:85:9C:64:53:2E:30:91:6F:60:26:50
X509v3 Authority Key Identifier:
keyid:BA:23:B0:7A:3C:0A:C9:E3:33:F5:2E:8B:5D:41:A7:68:A3:D3:90:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uiOwejwKyeMz9S6LXUGnaKPTkCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:7f:95:20:be:eb:c6:85:f5:ce:16:b7:a4:75:d4:9e:30:ae:
0a:b4:44:c7:fc:67:f1:7d:dd:b3:f4:07:7f:af:45:93:55:7b:
fc:ca:6e:b4:e7:5e:94:3c:82:27:24:e2:55:79:43:48:54:b6:
f9:4f:a5:20:49:5d:62:76:6c:46:ed:3b:fb:15:dc:e2:10:7b:
19:5f:7d:0a:7b:84:e2:d5:a2:76:ff:2a:1a:a0:a7:05:79:7d:
67:87:01:44:8c:dc:1c:e7:10:c2:a8:5c:01:36:f9:2a:e6:06:
fa:92:af:2b:d9:f6:3b:24:c5:18:0d:48:3f:01:2d:90:f5:d7:
f3:df:be:d5:ee:02:33:c5:92:e6:4f:80:8b:6b:60:48:42:43:
34:31:83:ee:bd:9a:04:4b:d9:b5:ed:6e:3a:a0:84:87:1b:6c:
a7:7a:a2:69:0e:b8:2d:9e:ce:a1:54:ac:7d:3d:59:0e:9a:4d:
2b:ec:9d:5d:c7:83:f9:08:8b:c8:1b:4e:54:93:33:0b:d2:bb:
27:ab:7c:a5:08:a9:e2:c4:54:66:b9:0c:03:9b:ff:d8:fd:1a:
84:ef:06:88:77:12:15:35:87:ed:f2:7e:87:77:dc:d8:6d:75:
51:8a:90:68:87:61:0d:dc:d9:f7:56:ba:1f:6e:f0:d4:43:f2:
7f:87:9d:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPz+sli17kh2ULbNaaTSI7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhMjNiMDdhM2MwYWM5ZTMzM2Y1MmU4YjVkNDFhNzY4YTNk
MzkwMjUwHhcNMjUxMTA0MTcwMDE3WhcNMjUxMTA1MTcwMDE3WjAzMTEwLwYDVQQD
Eyg1MjdmMzM0OTBhYmQ1MjM1ODM4NTljNjQ1MzJlMzA5MTZmNjAyNjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BJul9JyC5qI1PeHXvn33bafwGwC
teToeDgME3JBNm1CuwrTLzUKDNWwA4qJQpqQx1DQXfE7Bu/ccoObCNgCNZ7b60nU
4swcH9o7kl4HCpNs2nHt0U0Q5EyfWdnBTlwGNpmvE+vViCuB3AnlAxpeO9mEoWRI
If74Sd/Hriu3iIoen6ym0+I0HGETlUSx5fsZB2idujIKzp4K7j5j9e2otn/a4Z94
d6ErkugwErgQlABtCUS04FDIAmqQ6UjeuBKhzQkap8kA3udz83K2rLooisut/TRE
SYogoVNt26ZEE93At1NwCyUO3Hgfy6gDvmOGEvf3CwGpbhz2iDyj3/zfNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFJ/M0kKvVI1g4WcZFMuMJFvYCZQMB8GA1UdIwQY
MBaAFLojsHo8CsnjM/Uui11Bp2ij05AlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWlPd2Vqd0t5ZU16OVM2TFhVR25hS1BUa0NVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xMGQ1YjItODVlMy00OWVkLWJkYzEt
ODA2OWM0Njc3MWNjLzEvdWlPd2Vqd0t5ZU16OVM2TFhVR25hS1BUa0NVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8xMGQ1YjItODVlMy00OWVkLWJkYzEtODA2OWM0Njc3MWNj
LzEvdWlPd2Vqd0t5ZU16OVM2TFhVR25hS1BUa0NVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY3+VIL7r
xoX1zha3pHXUnjCuCrREx/xn8X3ds/QHf69Fk1V7/MputOdelDyCJyTiVXlDSFS2
+U+lIEldYnZsRu07+xXc4hB7GV99CnuE4tWidv8qGqCnBXl9Z4cBRIzcHOcQwqhc
ATb5KuYG+pKvK9n2OyTFGA1IPwEtkPXX89++1e4CM8WS5k+Ai2tgSEJDNDGD7r2a
BEvZte1uOqCEhxtsp3qiaQ64LZ7OoVSsfT1ZDppNK+ydXceD+QiLyBtOVJMzC9K7
J6t8pQip4sRUZrkMA5v/2P0ahO8GiHcSFTWH7fJ+h3fc2G11UYqQaIdhDdzZ91a6
H27w1EPyf4edhw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 22:43:10 2025 by rpki-client