Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
File: uqWupvGAqaitmEU17S5kvPyz_ho.mft (raw, json)
Hash identifier: PyXYp7aVohJQZmhmE8eyCnl5Ik7KaHE0HubkGYKmc+4=
Subject key identifier: 66:AA:7A:38:69:4C:1D:05:9A:9E:64:4D:FE:C0:9A:EE:24:3A:C2:1B
Authority key identifier: BA:A5:AE:A6:F1:80:A9:A8:AD:98:45:35:ED:2E:64:BC:FC:B3:FE:1A
Certificate issuer: /CN=baa5aea6f180a9a8ad984535ed2e64bcfcb3fe1a
Certificate serial: 019A4DAB339397A9F609DC2654496C0D5087
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
Manifest number: 0F00
Signing time: Tue 04 Nov 2025 07:00:56 +0000
Manifest this update: Tue 04 Nov 2025 07:00:56 +0000
Manifest next update: Wed 05 Nov 2025 07:00:56 +0000
Files and hashes: 1: CsvQEVK-EVJUj9O9Oyr9a1ZVDj8.roa (hash: KNjghiY6hSTnyBcRx4J/plbhEv6EisGMOlJT9AxkWNs=)
2: uqWupvGAqaitmEU17S5kvPyz_ho.crl (hash: I548JseYe8k5RYEWSPk+OwVGsCQMjIGXdGpNtvBFQPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:ab:33:93:97:a9:f6:09:dc:26:54:49:6c:0d:50:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa5aea6f180a9a8ad984535ed2e64bcfcb3fe1a
Validity
Not Before: Nov 4 07:00:56 2025 GMT
Not After : Nov 5 07:00:56 2025 GMT
Subject: CN=66aa7a38694c1d059a9e644dfec09aee243ac21b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ad:95:11:37:a5:d4:23:97:1b:e3:a2:b0:12:
e6:74:8c:13:fd:ee:06:e5:09:3b:cc:df:23:f4:85:
74:c7:20:64:b3:6a:54:d0:c7:65:c0:38:8f:26:55:
94:73:f6:ce:4f:bb:1b:5e:14:ef:ab:db:7f:9d:4a:
82:ed:a2:7a:8b:28:50:1f:3b:72:98:14:7f:e2:e7:
41:55:f5:5b:a9:cf:69:49:a3:b8:26:7f:d8:8c:ac:
26:3b:32:c4:63:f1:ae:4d:35:a8:25:94:eb:ab:20:
0b:48:62:81:1c:aa:42:09:62:42:9b:6e:bf:04:57:
b6:56:25:40:04:95:d0:d8:45:34:98:59:3b:8a:bf:
2a:0a:03:ac:10:4e:8b:78:89:64:f6:dc:c7:0b:b3:
14:b9:e6:1e:47:4b:00:d5:18:32:96:d6:f7:96:49:
79:0a:19:7f:c6:36:c3:fb:20:c1:18:c7:c4:a8:95:
d2:93:0e:35:09:e2:a6:a9:70:ee:a7:84:25:72:9d:
0d:27:93:76:6b:05:c7:a9:ee:23:91:ac:cf:c9:61:
63:70:8c:92:f3:71:7c:93:6b:56:3d:94:0a:ef:47:
ad:79:58:9c:16:48:bd:bc:0e:11:4a:6a:bf:94:91:
1e:b9:2a:12:40:c6:a1:cd:23:ce:fb:ca:4e:0c:90:
52:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:AA:7A:38:69:4C:1D:05:9A:9E:64:4D:FE:C0:9A:EE:24:3A:C2:1B
X509v3 Authority Key Identifier:
keyid:BA:A5:AE:A6:F1:80:A9:A8:AD:98:45:35:ED:2E:64:BC:FC:B3:FE:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:bd:6b:fd:77:20:dc:67:b1:c5:01:85:18:e1:58:e8:6a:22:
ab:59:41:1c:52:6a:7c:6c:fa:08:f0:4f:c4:c3:d5:98:65:4d:
dc:ab:48:1b:02:2f:8a:45:fa:86:7c:c8:a1:96:1e:cd:52:55:
75:f6:a8:89:55:ba:7b:88:df:1f:ae:04:5c:91:ae:e0:81:54:
a9:b9:b8:97:68:e6:5a:03:51:05:f5:a0:bb:be:2b:5b:f0:16:
f7:03:8c:05:79:da:68:5c:95:b0:88:01:4d:a7:0d:31:b7:44:
da:03:b4:ab:dd:56:d2:be:4d:82:c7:e5:0d:b0:40:ab:a6:76:
c9:88:5b:dd:21:43:0a:68:11:7e:52:f7:d5:e8:76:84:18:9f:
31:93:05:67:27:14:04:22:ff:35:4b:e9:87:2c:d9:5e:2f:41:
0d:cf:0c:11:70:e8:4c:0e:0c:94:64:a4:5f:08:06:10:85:22:
0b:d5:28:ed:65:e9:d0:69:4b:85:58:be:bd:cc:92:5a:c9:74:
12:88:e7:d9:72:d6:c0:1a:34:e4:e6:d2:79:2c:00:4a:2b:a1:
bb:e8:41:ba:e8:d5:34:05:a2:9a:2a:df:c4:36:5a:df:16:c8:
ef:f2:7a:d8:9a:10:77:d3:fa:7e:6b:ef:46:d0:2e:f2:b2:6a:
c6:92:c3:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNqzOTl6n2CdwmVElsDVCHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhYTVhZWE2ZjE4MGE5YThhZDk4NDUzNWVkMmU2NGJjZmNi
M2ZlMWEwHhcNMjUxMTA0MDcwMDU2WhcNMjUxMTA1MDcwMDU2WjAzMTEwLwYDVQQD
Eyg2NmFhN2EzODY5NGMxZDA1OWE5ZTY0NGRmZWMwOWFlZTI0M2FjMjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAna2VETel1COXG+OisBLmdIwT/e4G
5Qk7zN8j9IV0xyBks2pU0MdlwDiPJlWUc/bOT7sbXhTvq9t/nUqC7aJ6iyhQHzty
mBR/4udBVfVbqc9pSaO4Jn/YjKwmOzLEY/GuTTWoJZTrqyALSGKBHKpCCWJCm26/
BFe2ViVABJXQ2EU0mFk7ir8qCgOsEE6LeIlk9tzHC7MUueYeR0sA1Rgyltb3lkl5
Chl/xjbD+yDBGMfEqJXSkw41CeKmqXDup4Qlcp0NJ5N2awXHqe4jkazPyWFjcIyS
83F8k2tWPZQK70eteVicFki9vA4RSmq/lJEeuSoSQMahzSPO+8pODJBS5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGaqejhpTB0Fmp5kTf7Amu4kOsIbMB8GA1UdIwQY
MBaAFLqlrqbxgKmorZhFNe0uZLz8s/4aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXFXdXB2R0FxYWl0bUVVMTdTNWt2UHl6X2hvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS83ZjhmNzYtMGQ5ZC00NmFmLTliZWEt
NDdlNGUyNzRjZjY0LzEvdXFXdXB2R0FxYWl0bUVVMTdTNWt2UHl6X2hvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS83ZjhmNzYtMGQ5ZC00NmFmLTliZWEtNDdlNGUyNzRjZjY0
LzEvdXFXdXB2R0FxYWl0bUVVMTdTNWt2UHl6X2hvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbL1r/Xcg
3GexxQGFGOFY6Goiq1lBHFJqfGz6CPBPxMPVmGVN3KtIGwIvikX6hnzIoZYezVJV
dfaoiVW6e4jfH64EXJGu4IFUqbm4l2jmWgNRBfWgu74rW/AW9wOMBXnaaFyVsIgB
TacNMbdE2gO0q91W0r5NgsflDbBAq6Z2yYhb3SFDCmgRflL31eh2hBifMZMFZycU
BCL/NUvphyzZXi9BDc8MEXDoTA4MlGSkXwgGEIUiC9Uo7WXp0GlLhVi+vcySWsl0
Eojn2XLWwBo05ObSeSwASiuhu+hBuujVNAWimirfxDZa3xbI7/J62JoQd9P6fmvv
RtAu8rJqxpLDgg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:46:39 2025 by rpki-client