Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
File: uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft (raw, json)
Hash identifier: zimZ3QGlkE0sSrkHsL3/d7r1PAwL9eZzFyaWGZQqCDM=
Subject key identifier: B3:D8:95:7C:53:15:69:C0:4D:C1:9A:0A:ED:39:25:C3:50:85:48:0E
Authority key identifier: B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
Certificate issuer: /CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Certificate serial: 019A4F2AFD5CF2A93DEF323E54B11780378B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
Manifest number: 0B0B
Signing time: Tue 04 Nov 2025 14:00:08 +0000
Manifest this update: Tue 04 Nov 2025 14:00:08 +0000
Manifest next update: Wed 05 Nov 2025 14:00:08 +0000
Files and hashes: 1: FpN3CNrpC7an-iJQGSmMT_sDhCQ.roa (hash: IP5LQBH3slQY1vq5cW96oTpQwzobOGLQLnnmLh+kv0c=)
2: T2xZGAQ2utapiNKAxRkC6LvmPaU.roa (hash: wOG+SGzxtaS4DLVV01zxTU+InL0GZso9vp2F1RAwi2M=)
3: knjugsz4dO-GRlfWjJa4TPEo8dc.roa (hash: pgS04K1pxu870WaArIBezAQBjlsLTOobzOHJ29I84kY=)
4: uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl (hash: tah4nF+toV8pFnqJmVnojFPgxLNdLICCOP+LeY8HJSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2a:fd:5c:f2:a9:3d:ef:32:3e:54:b1:17:80:37:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Validity
Not Before: Nov 4 14:00:08 2025 GMT
Not After : Nov 5 14:00:08 2025 GMT
Subject: CN=b3d8957c531569c04dc19a0aed3925c35085480e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:df:15:1a:87:1d:b0:3d:9d:ec:ed:37:b9:87:
ae:b5:5f:9f:87:fb:27:e7:0b:4e:20:eb:bd:76:2d:
e2:c7:43:0d:8b:71:e6:5e:0f:ce:ac:03:f7:89:a2:
cd:85:28:1c:7a:37:bd:b9:fb:79:71:52:90:72:42:
67:c9:a9:da:db:01:0a:64:9a:eb:fc:ae:51:76:f5:
30:45:e0:6d:99:81:3e:61:76:28:a3:67:c7:25:70:
9b:4e:38:06:01:b3:04:68:34:e3:c8:44:81:6b:33:
5d:d2:73:4e:51:d1:d1:bc:2c:ae:e5:71:0f:45:67:
5d:e9:2b:5f:52:b2:a7:3d:15:90:3e:81:0a:2e:72:
1a:cb:5f:7d:72:c9:2d:ea:b1:8f:a7:0f:cd:75:b0:
98:8a:b1:3d:65:21:c9:48:a3:ac:3b:c6:1d:f8:88:
62:a3:bc:59:2d:e3:ff:5d:f8:65:7f:72:d8:18:70:
a7:bb:b6:a5:e1:0d:e1:21:f5:bb:57:d7:af:6d:23:
81:05:3a:61:fc:2e:d6:5d:88:ef:f1:d5:0e:78:13:
68:66:ae:80:a5:ce:70:78:8b:7c:e3:28:9a:99:d4:
45:b4:4b:e9:b7:b1:4f:90:f4:75:4d:5b:f7:48:c0:
3d:06:12:19:04:55:21:d6:fc:65:28:20:a4:9e:c7:
c2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D8:95:7C:53:15:69:C0:4D:C1:9A:0A:ED:39:25:C3:50:85:48:0E
X509v3 Authority Key Identifier:
keyid:B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:3a:78:c5:18:ea:b7:fd:71:4f:22:36:ba:e5:e6:c1:c9:0f:
0c:ea:3d:f0:21:17:26:21:1a:f1:ac:28:86:b0:76:97:03:8b:
13:95:8f:51:94:f1:22:95:4b:d5:fd:d9:7c:4f:83:e6:78:0b:
fc:30:85:2d:20:e9:7d:0f:c8:9f:da:4f:f3:ae:4f:c3:15:dc:
85:ec:d4:3f:73:f7:43:4f:f4:08:89:cb:fd:83:2e:7e:e7:c8:
9c:b7:c8:2f:11:b8:0c:29:0a:4b:8a:72:81:67:60:3a:2c:d7:
9b:f3:09:5f:6c:89:e5:39:f2:a0:81:15:04:6d:63:e9:87:98:
02:7c:0a:52:80:5b:83:5a:bc:d0:99:c5:5c:7c:a8:f8:9a:2b:
68:61:e8:53:26:96:0f:36:14:d1:13:99:29:22:04:28:db:42:
01:69:53:00:a3:19:4e:ef:0f:2d:b0:20:ec:7d:b3:30:5e:48:
4d:0f:bc:e7:58:86:44:c0:a0:31:00:36:3d:ec:61:0d:4a:7e:
44:5a:2b:ce:3d:2f:e7:a4:c8:db:af:e7:62:cb:c6:81:b4:b9:
05:1a:d7:81:dd:2a:bb:50:a2:2f:e9:62:f6:c0:7f:6c:e8:28:
8d:12:14:5b:47:b7:b7:bb:06:5f:ff:8e:e9:ee:54:61:9a:f2:
3c:e8:4e:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPKv1c8qk97zI+VLEXgDeLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5MGRmYzJhNjUxYjVlZmFiMmMwY2Q1OTMyMmQ2ZDNiNTU5
MDY1NjMwHhcNMjUxMTA0MTQwMDA4WhcNMjUxMTA1MTQwMDA4WjAzMTEwLwYDVQQD
EyhiM2Q4OTU3YzUzMTU2OWMwNGRjMTlhMGFlZDM5MjVjMzUwODU0ODBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvd8VGocdsD2d7O03uYeutV+fh/sn
5wtOIOu9di3ix0MNi3HmXg/OrAP3iaLNhSgceje9uft5cVKQckJnyana2wEKZJrr
/K5RdvUwReBtmYE+YXYoo2fHJXCbTjgGAbMEaDTjyESBazNd0nNOUdHRvCyu5XEP
RWdd6StfUrKnPRWQPoEKLnIay199cskt6rGPpw/NdbCYirE9ZSHJSKOsO8Yd+Ihi
o7xZLeP/Xfhlf3LYGHCnu7al4Q3hIfW7V9evbSOBBTph/C7WXYjv8dUOeBNoZq6A
pc5weIt84yiamdRFtEvpt7FPkPR1TVv3SMA9BhIZBFUh1vxlKCCknsfCRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLPYlXxTFWnATcGaCu05JcNQhUgOMB8GA1UdIwQY
MBaAFLkN/CplG176ssDNWTItbTtVkGVjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVEzOEttVWJYdnF5d00xWk1pMXRPMVdRWldNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC84NDdiYzgtZjdlNi00M2UwLWE1Y2Yt
ZDNlMTZhMTYzZGQzLzEvdVEzOEttVWJYdnF5d00xWk1pMXRPMVdRWldNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC84NDdiYzgtZjdlNi00M2UwLWE1Y2YtZDNlMTZhMTYzZGQz
LzEvdVEzOEttVWJYdnF5d00xWk1pMXRPMVdRWldNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQDp4xRjq
t/1xTyI2uuXmwckPDOo98CEXJiEa8awohrB2lwOLE5WPUZTxIpVL1f3ZfE+D5ngL
/DCFLSDpfQ/In9pP865PwxXchezUP3P3Q0/0CInL/YMufufInLfILxG4DCkKS4py
gWdgOizXm/MJX2yJ5TnyoIEVBG1j6YeYAnwKUoBbg1q80JnFXHyo+JoraGHoUyaW
DzYU0ROZKSIEKNtCAWlTAKMZTu8PLbAg7H2zMF5ITQ+851iGRMCgMQA2PexhDUp+
RForzj0v56TI26/nYsvGgbS5BRrXgd0qu1CiL+li9sB/bOgojRIUW0e3t7sGX/+O
6e5UYZryPOhOQw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:56:51 2025 by rpki-client