
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json)
Hash identifier: YKbfhA67DT0vfykizELronBntxDuk4yCTlVvNAQcQ1o=
Subject key identifier: BF:68:F9:D2:0C:F9:E6:EB:CB:70:F8:4D:D0:7C:E5:A0:00:78:89:13
Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589
Certificate serial: 01988B7D01EFA4447DC409075C8C5F4C4064
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
Manifest number: 0D97
Signing time: Fri 08 Aug 2025 21:01:22 +0000
Manifest this update: Fri 08 Aug 2025 21:01:22 +0000
Manifest next update: Sat 09 Aug 2025 21:01:22 +0000
Files and hashes: 1: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: spOeapBZvIBEqxI79FKjF/BtekVka5Fb9Y9zYYFf2Cs=)
2: yiSfs72_nEyzYSAodCILSS2FNUg.roa (hash: S9gHpNvUCJD2H4bcxuT5WWB4Uck7rHXNRIxCLUlb2hE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7d:01:ef:a4:44:7d:c4:09:07:5c:8c:5f:4c:40:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5061754f7689169f6a15065095472672ba2b4589
Validity
Not Before: Aug 8 21:01:22 2025 GMT
Not After : Aug 9 21:01:22 2025 GMT
Subject: CN=bf68f9d20cf9e6ebcb70f84dd07ce5a000788913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2c:39:e6:31:10:02:15:94:05:52:7b:b2:ac:
60:96:33:d9:98:b0:24:94:c3:b0:2e:7c:62:5f:6a:
16:f9:9a:e7:7a:38:50:31:76:39:56:36:8d:3e:85:
cf:79:33:71:f3:e3:84:ff:73:d4:97:d9:51:bb:04:
b6:87:67:2f:09:7c:33:20:a0:be:c7:b5:eb:d1:fd:
30:b7:f6:dc:e5:d3:7c:ab:ff:d7:09:ee:de:94:69:
9a:51:83:52:86:b7:69:88:c5:78:44:c4:49:cd:a2:
e2:d9:2d:3d:07:f0:8c:28:33:c6:06:72:23:43:91:
fd:cd:1f:39:63:4e:41:8b:b0:60:df:74:bc:bd:b9:
a7:61:9b:6f:b6:4c:82:14:63:00:d7:86:4b:8e:46:
f7:e0:56:e9:76:24:84:70:60:c1:4d:f9:0f:6b:36:
cf:55:d7:8e:55:0d:ed:51:ad:cf:9e:0e:e7:33:a2:
da:a6:a2:76:67:38:75:e4:e0:4b:75:cc:f1:03:19:
4d:f9:ff:2b:c2:45:53:9f:41:bd:94:88:d1:0f:f1:
aa:b0:fb:cf:c1:d4:28:29:3b:27:d5:b5:fe:03:3b:
90:1d:db:94:17:25:98:b2:6a:29:e1:76:a3:de:ad:
6c:a4:cf:e0:28:bd:03:18:7a:8c:4e:55:ae:ab:e8:
36:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:68:F9:D2:0C:F9:E6:EB:CB:70:F8:4D:D0:7C:E5:A0:00:78:89:13
X509v3 Authority Key Identifier:
keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:8e:11:d7:e1:c9:21:57:1d:fd:3b:b0:79:fb:7f:be:fa:9c:
61:1c:f4:66:53:cf:39:e3:f3:2e:62:9f:74:1c:81:e5:e7:1c:
da:d6:05:bc:0e:a1:60:3d:9a:8b:7d:91:be:9b:ac:0d:ff:5e:
ce:18:8e:25:25:bd:c6:63:bb:0c:c8:db:28:6c:28:c9:06:5c:
fb:fd:77:fc:ad:94:d4:63:34:17:31:da:0b:9e:6d:71:04:6a:
b8:46:c8:bb:a2:0b:1a:18:0e:ab:85:b7:f3:67:a7:e2:90:68:
58:b3:26:b2:56:f6:77:96:fd:3f:1b:21:95:ba:1e:a0:c2:13:
40:1b:57:28:80:0b:96:9f:4e:1a:f0:02:ac:5a:5e:72:7d:d3:
2b:97:fc:75:60:6d:03:e4:dc:fb:0b:3a:dc:61:d5:4a:d0:d3:
01:95:32:69:a9:4c:ab:74:6e:06:a3:99:c3:75:46:3f:60:b2:
74:a2:3f:ad:e1:00:22:23:e3:d2:47:db:ab:f2:3c:e0:02:85:
08:f9:a8:cf:16:37:d1:24:bd:3b:9a:01:e2:56:71:db:b8:cd:
84:d8:dc:9c:bf:40:30:29:ac:6f:c0:1e:ce:3e:5a:49:6c:94:
b0:5d:24:ec:d8:74:e9:ac:44:a8:f8:7f:55:d6:53:dc:04:17:
90:7e:53:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLfQHvpER9xAkHXIxfTEBkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNjE3NTRmNzY4OTE2OWY2YTE1MDY1MDk1NDcyNjcyYmEy
YjQ1ODkwHhcNMjUwODA4MjEwMTIyWhcNMjUwODA5MjEwMTIyWjAzMTEwLwYDVQQD
EyhiZjY4ZjlkMjBjZjllNmViY2I3MGY4NGRkMDdjZTVhMDAwNzg4OTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3iw55jEQAhWUBVJ7sqxgljPZmLAk
lMOwLnxiX2oW+ZrnejhQMXY5VjaNPoXPeTNx8+OE/3PUl9lRuwS2h2cvCXwzIKC+
x7Xr0f0wt/bc5dN8q//XCe7elGmaUYNShrdpiMV4RMRJzaLi2S09B/CMKDPGBnIj
Q5H9zR85Y05Bi7Bg33S8vbmnYZtvtkyCFGMA14ZLjkb34FbpdiSEcGDBTfkPazbP
VdeOVQ3tUa3Png7nM6LapqJ2Zzh15OBLdczxAxlN+f8rwkVTn0G9lIjRD/GqsPvP
wdQoKTsn1bX+AzuQHduUFyWYsmop4Xaj3q1spM/gKL0DGHqMTlWuq+g2GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL9o+dIM+ebry3D4TdB85aAAeIkTMB8GA1UdIwQY
MBaAFFBhdU92iRafahUGUJVHJnK6K0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMt
YTEwODY0OWQ1MWUyLzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMtYTEwODY0OWQ1MWUy
LzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdI4R1+HJ
IVcd/Tuweft/vvqcYRz0ZlPPOePzLmKfdByB5ecc2tYFvA6hYD2ai32RvpusDf9e
zhiOJSW9xmO7DMjbKGwoyQZc+/13/K2U1GM0FzHaC55tcQRquEbIu6ILGhgOq4W3
82en4pBoWLMmslb2d5b9PxshlboeoMITQBtXKIALlp9OGvACrFpecn3TK5f8dWBt
A+Tc+ws63GHVStDTAZUyaalMq3RuBqOZw3VGP2CydKI/reEAIiPj0kfbq/I84AKF
CPmozxY30SS9O5oB4lZx27jNhNjcnL9AMCmsb8Aezj5aSWyUsF0k7Nh06axEqPh/
VdZT3AQXkH5Trw==
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:24:07 2025 by rpki-client