Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
File: uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft (raw, json)
Hash identifier: HAfF2ToY3JHwW/axq9yP3CM85nCxwXxeQZxX+DjQWzQ=
Subject key identifier: 5A:0D:E8:A1:3C:F2:D6:A2:34:7D:02:45:FC:79:C5:95:21:6D:D0:95
Authority key identifier: B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
Certificate issuer: /CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Certificate serial: 01976F633026EF6284443F6E4ECC9DB61A3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
Manifest number: 098E
Signing time: Sat 14 Jun 2025 17:01:00 +0000
Manifest this update: Sat 14 Jun 2025 17:01:00 +0000
Manifest next update: Sun 15 Jun 2025 17:01:00 +0000
Files and hashes: 1: FpN3CNrpC7an-iJQGSmMT_sDhCQ.roa (hash: IP5LQBH3slQY1vq5cW96oTpQwzobOGLQLnnmLh+kv0c=)
2: T2xZGAQ2utapiNKAxRkC6LvmPaU.roa (hash: wOG+SGzxtaS4DLVV01zxTU+InL0GZso9vp2F1RAwi2M=)
3: knjugsz4dO-GRlfWjJa4TPEo8dc.roa (hash: pgS04K1pxu870WaArIBezAQBjlsLTOobzOHJ29I84kY=)
4: uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl (hash: 0l4kjHYBAEo1Bkc2Gxc2Cly7saT/k6y25m4XAerZS4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 17:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:63:30:26:ef:62:84:44:3f:6e:4e:cc:9d:b6:1a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Validity
Not Before: Jun 14 17:01:00 2025 GMT
Not After : Jun 15 17:01:00 2025 GMT
Subject: CN=5a0de8a13cf2d6a2347d0245fc79c595216dd095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c7:9e:d6:18:8c:f8:01:93:7b:83:f3:46:54:
e8:13:4b:33:cb:47:76:32:52:64:8d:94:c2:6f:13:
51:83:18:9d:fc:ba:4d:66:0e:83:6f:de:8a:34:0d:
68:f7:0b:01:bb:4e:68:d5:c3:bd:0a:a5:e1:71:9a:
c3:7b:2e:bb:77:3e:6e:d0:7e:f1:92:43:35:aa:09:
cd:9a:91:82:28:a8:83:1d:59:16:b5:c1:4b:2c:a1:
4f:44:df:bf:2f:10:f4:ae:00:7f:06:96:72:fe:2a:
d8:08:cc:33:fe:2f:d6:4b:c3:d0:e8:0e:e8:f0:c2:
30:10:25:e5:b5:af:1e:67:65:62:e2:c5:25:40:0b:
37:49:71:62:08:14:90:7c:e1:ba:70:03:36:a5:0c:
28:f2:42:f5:40:b8:30:c2:1c:bb:92:e4:d0:d9:03:
9e:7b:a9:9b:db:e6:86:89:92:e9:df:d2:3b:a4:32:
9d:d0:21:01:b1:c2:af:41:89:0f:84:a8:f3:94:17:
6c:8b:05:3f:68:20:5d:be:e3:22:ce:cc:aa:1b:94:
e0:5e:6e:4c:ae:ad:e7:91:75:36:53:3c:da:24:14:
63:c9:f1:97:cd:5a:27:2e:c8:17:40:a6:bf:f0:7f:
b3:ad:72:e6:6d:7b:89:49:b6:56:a5:d2:56:21:5a:
19:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:0D:E8:A1:3C:F2:D6:A2:34:7D:02:45:FC:79:C5:95:21:6D:D0:95
X509v3 Authority Key Identifier:
keyid:B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:74:55:1a:19:a5:eb:45:0e:ce:c9:fc:df:79:7a:2c:c2:f2:
9f:54:42:89:65:15:ab:98:f4:c5:a7:88:1a:b4:5b:a4:fa:c4:
6d:e0:ca:c7:c1:ec:df:c1:af:46:c0:64:ea:9e:61:29:9a:2d:
b9:3a:a6:72:92:36:4c:b8:b6:88:25:a3:fa:82:25:53:83:7d:
be:3f:15:60:6d:22:eb:ff:72:a6:bc:30:6f:4d:37:13:cf:1a:
c8:c3:8b:66:ed:2a:39:30:a6:9a:44:29:66:a0:d1:68:bc:29:
bc:ed:28:27:93:91:a7:63:04:d4:e8:f7:7b:78:63:9e:5d:b7:
8d:7e:72:1e:2d:b8:33:61:ef:3c:a5:0d:ef:98:c1:e5:9b:c2:
36:de:1a:57:14:19:77:7f:c3:20:57:9a:11:34:37:3d:e8:6c:
d8:9c:03:52:dc:d2:16:60:90:a6:4a:57:57:89:b1:43:f4:de:
25:2a:0e:b8:50:04:14:9c:eb:74:d6:b1:c4:02:5c:8a:b7:ef:
26:88:16:b2:d1:bc:19:cb:4a:07:5d:c4:d5:d4:03:91:16:25:
94:24:78:1e:37:1b:a3:67:0c:1a:66:a3:67:7a:8c:67:d1:5b:
fd:18:57:90:54:c3:6a:f2:db:70:d3:3a:d4:37:e8:3f:5a:64:
ec:db:0e:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvYzAm72KERD9uTsydtho6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5MGRmYzJhNjUxYjVlZmFiMmMwY2Q1OTMyMmQ2ZDNiNTU5
MDY1NjMwHhcNMjUwNjE0MTcwMTAwWhcNMjUwNjE1MTcwMTAwWjAzMTEwLwYDVQQD
Eyg1YTBkZThhMTNjZjJkNmEyMzQ3ZDAyNDVmYzc5YzU5NTIxNmRkMDk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0cee1hiM+AGTe4PzRlToE0szy0d2
MlJkjZTCbxNRgxid/LpNZg6Db96KNA1o9wsBu05o1cO9CqXhcZrDey67dz5u0H7x
kkM1qgnNmpGCKKiDHVkWtcFLLKFPRN+/LxD0rgB/BpZy/irYCMwz/i/WS8PQ6A7o
8MIwECXlta8eZ2Vi4sUlQAs3SXFiCBSQfOG6cAM2pQwo8kL1QLgwwhy7kuTQ2QOe
e6mb2+aGiZLp39I7pDKd0CEBscKvQYkPhKjzlBdsiwU/aCBdvuMizsyqG5TgXm5M
rq3nkXU2UzzaJBRjyfGXzVonLsgXQKa/8H+zrXLmbXuJSbZWpdJWIVoZ0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFoN6KE88taiNH0CRfx5xZUhbdCVMB8GA1UdIwQY
MBaAFLkN/CplG176ssDNWTItbTtVkGVjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVEzOEttVWJYdnF5d00xWk1pMXRPMVdRWldNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC84NDdiYzgtZjdlNi00M2UwLWE1Y2Yt
ZDNlMTZhMTYzZGQzLzEvdVEzOEttVWJYdnF5d00xWk1pMXRPMVdRWldNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC84NDdiYzgtZjdlNi00M2UwLWE1Y2YtZDNlMTZhMTYzZGQz
LzEvdVEzOEttVWJYdnF5d00xWk1pMXRPMVdRWldNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABXRVGhml
60UOzsn833l6LMLyn1RCiWUVq5j0xaeIGrRbpPrEbeDKx8Hs38GvRsBk6p5hKZot
uTqmcpI2TLi2iCWj+oIlU4N9vj8VYG0i6/9yprwwb003E88ayMOLZu0qOTCmmkQp
ZqDRaLwpvO0oJ5ORp2ME1Oj3e3hjnl23jX5yHi24M2HvPKUN75jB5ZvCNt4aVxQZ
d3/DIFeaETQ3Pehs2JwDUtzSFmCQpkpXV4mxQ/TeJSoOuFAEFJzrdNaxxAJcirfv
JogWstG8GctKB13E1dQDkRYllCR4Hjcbo2cMGmajZ3qMZ9Fb/RhXkFTDavLbcNM6
1DfoP1pk7NsOyQ==
-----END CERTIFICATE-----
Generated at Sat Jun 14 23:58:03 2025 by rpki-client