Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json)
Hash identifier: ZusG+eBhACqRlIuCVXxcCWbZYcdpiK81x89ACEf7Ebw=
Subject key identifier: 4F:80:CC:46:A3:ED:6A:4E:7F:AC:F4:8F:25:CB:2B:00:1B:85:BE:23
Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Certificate serial: 019A4D061F5ED0C591F7D61278BE0E8C91BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
Manifest number: 0D3D
Signing time: Tue 04 Nov 2025 04:00:38 +0000
Manifest this update: Tue 04 Nov 2025 04:00:38 +0000
Manifest next update: Wed 05 Nov 2025 04:00:38 +0000
Files and hashes: 1: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: Vdw6s8DGqc/A88GR80Hdov6jbL6f2kdabBy2DzwPRpQ=)
2: yBgRtAUy9SDMB2oNfVg6DWBcxdo.roa (hash: th+et5jSmKPB56Gge2PfFSgmFKaHL/juuWVdT7KzSfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:06:1f:5e:d0:c5:91:f7:d6:12:78:be:0e:8c:91:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Validity
Not Before: Nov 4 04:00:38 2025 GMT
Not After : Nov 5 04:00:38 2025 GMT
Subject: CN=4f80cc46a3ed6a4e7facf48f25cb2b001b85be23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6a:e3:27:6b:72:c1:00:22:32:e8:f1:b4:c6:
ff:11:f7:4d:a6:26:52:dd:af:27:01:ff:6d:4a:3c:
9b:73:c4:68:0a:2d:ca:cc:c7:9d:8d:18:c6:0c:47:
ca:c2:0e:f7:8e:1f:b5:1e:63:af:c2:a2:5d:a1:a6:
f0:3d:dc:dd:b1:06:40:fd:f9:d6:30:6d:44:2c:ba:
2a:e5:31:dd:2e:8e:09:d2:45:2e:98:7d:52:6f:8d:
cd:93:b8:0d:3d:00:b9:e8:59:5f:0e:89:cc:dd:21:
6b:fe:ed:22:56:58:bc:87:5e:42:2b:3d:ec:70:24:
91:08:87:e6:77:10:d9:22:59:ff:e5:f1:34:07:1c:
d4:cd:86:fe:93:6b:f4:89:80:3b:9b:86:f8:0f:8b:
6c:bb:58:cd:5b:18:6a:d2:16:32:7e:77:1d:d2:da:
2a:56:26:98:14:bf:7d:13:42:6f:40:ab:bc:c9:47:
c8:a1:8d:3a:17:13:b6:ad:83:bf:78:27:2e:7d:6d:
53:b6:5c:e8:b0:17:b5:ce:c7:49:be:1b:16:b2:00:
da:40:aa:f9:f1:37:30:d7:e5:52:6a:a1:12:99:d9:
7b:1f:38:25:87:1e:f7:ab:42:29:b1:e9:0a:bb:fb:
32:14:49:ba:94:e3:59:a9:b3:e6:84:62:75:2b:5c:
4a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:80:CC:46:A3:ED:6A:4E:7F:AC:F4:8F:25:CB:2B:00:1B:85:BE:23
X509v3 Authority Key Identifier:
keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:f9:fc:1d:33:62:d2:01:e0:2a:af:f0:87:52:80:99:48:d7:
d6:91:2b:f6:c9:40:fb:17:4d:b6:2b:f1:2d:0c:f4:68:4b:02:
fd:67:e3:ee:5f:f7:20:ad:11:bc:79:a0:c8:e8:a7:39:a1:b4:
37:74:6a:e4:ef:80:cd:8b:7c:59:7b:4c:fe:86:94:72:3b:1f:
65:ff:59:12:89:ed:5d:0a:f1:1d:8e:be:ba:61:2c:4a:8d:63:
33:42:bb:66:57:54:20:1b:e1:05:02:ea:7a:15:0d:a7:48:30:
4c:d1:41:80:a5:4f:2d:47:fc:17:9c:9f:a7:93:62:64:f0:67:
9a:e1:ba:db:bd:e2:2c:cb:e7:d9:d5:22:78:13:73:fb:46:69:
fa:d1:1f:86:28:81:d9:4a:79:85:d7:7a:72:a1:dd:70:6a:13:
8e:e0:6f:a9:dc:9e:d9:5b:8d:57:95:a2:f7:44:7a:74:53:7e:
ae:bb:da:c7:93:94:86:e0:bd:a3:a9:5b:69:47:63:26:2f:e1:
52:28:c2:f7:98:11:b1:53:61:68:0d:9b:76:c7:bf:cc:0e:d9:
31:52:69:5e:29:51:bb:d6:62:47:cb:ca:07:2c:c1:a6:bb:d8:
f8:d1:9b:7b:3d:1f:4e:ff:53:d0:44:83:ed:51:8c:6d:18:be:
bd:68:c7:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNBh9e0MWR99YSeL4OjJG9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhMWNlZjZmOWU5ZWRjNDVlM2NkMjhlZjQwMjUxOTc5NTJk
NDYwZTkwHhcNMjUxMTA0MDQwMDM4WhcNMjUxMTA1MDQwMDM4WjAzMTEwLwYDVQQD
Eyg0ZjgwY2M0NmEzZWQ2YTRlN2ZhY2Y0OGYyNWNiMmIwMDFiODViZTIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2rjJ2tywQAiMujxtMb/EfdNpiZS
3a8nAf9tSjybc8RoCi3KzMedjRjGDEfKwg73jh+1HmOvwqJdoabwPdzdsQZA/fnW
MG1ELLoq5THdLo4J0kUumH1Sb43Nk7gNPQC56FlfDonM3SFr/u0iVli8h15CKz3s
cCSRCIfmdxDZIln/5fE0BxzUzYb+k2v0iYA7m4b4D4tsu1jNWxhq0hYyfncd0toq
ViaYFL99E0JvQKu8yUfIoY06FxO2rYO/eCcufW1TtlzosBe1zsdJvhsWsgDaQKr5
8Tcw1+VSaqESmdl7Hzglhx73q0IpsekKu/syFEm6lONZqbPmhGJ1K1xKjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE+AzEaj7WpOf6z0jyXLKwAbhb4jMB8GA1UdIwQY
MBaAFLoc72+entxF480o70AlGXlS1GDpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC8yMWQ2NjMtNjg3NC00ODljLWFiOWUt
ZDljYTAzZTY2ZmZiLzEvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC8yMWQ2NjMtNjg3NC00ODljLWFiOWUtZDljYTAzZTY2ZmZi
LzEvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFPn8HTNi
0gHgKq/wh1KAmUjX1pEr9slA+xdNtivxLQz0aEsC/Wfj7l/3IK0RvHmgyOinOaG0
N3Rq5O+AzYt8WXtM/oaUcjsfZf9ZEontXQrxHY6+umEsSo1jM0K7ZldUIBvhBQLq
ehUNp0gwTNFBgKVPLUf8F5yfp5NiZPBnmuG6273iLMvn2dUieBNz+0Zp+tEfhiiB
2Up5hdd6cqHdcGoTjuBvqdye2VuNV5Wi90R6dFN+rrvax5OUhuC9o6lbaUdjJi/h
UijC95gRsVNhaA2bdse/zA7ZMVJpXilRu9ZiR8vKByzBprvY+NGbez0fTv9T0ESD
7VGMbRi+vWjHew==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:55:34 2025 by rpki-client