Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
File: uwoTocnh3YTt5DKDSQvng4d1SpQ.mft (raw, json)
Hash identifier: YzZzhUKYliM6T/I4UXv+VoKpnQ/ADZHB7YJtzFQm1P0=
Subject key identifier: 0E:26:36:10:44:F9:C3:99:59:79:BF:C1:CB:C2:21:FB:58:4A:13:13
Authority key identifier: BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
Certificate issuer: /CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Certificate serial: 01992255DB786BE6369BB8DEDEACAB69A7E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 04:01:16 +0000
Manifest this update: Sun 07 Sep 2025 04:01:16 +0000
Manifest next update: Mon 08 Sep 2025 04:01:16 +0000
Files and hashes: 1: e4ClDxZZC-HgzfD6jjAt7w6H7rI.roa (hash: s/lm7kNCD/Mf0FKczgw09MeHHAa4AoL+4qjfAKGabq0=)
2: uwoTocnh3YTt5DKDSQvng4d1SpQ.crl (hash: aWQceCTkWgpuxYA1PC/VUt/WMPaci7ef22HzpIsMmPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:db:78:6b:e6:36:9b:b8:de:de:ac:ab:69:a7:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Validity
Not Before: Sep 7 04:01:16 2025 GMT
Not After : Sep 8 04:01:16 2025 GMT
Subject: CN=0e26361044f9c3995979bfc1cbc221fb584a1313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1a:cd:ab:1c:a1:6e:b3:47:03:c9:c3:6f:b7:
19:88:a3:55:d7:a6:c0:d6:d8:c1:c0:11:70:d4:cf:
66:de:82:af:30:f3:70:e5:09:83:25:8a:56:ad:cd:
69:dc:a6:dc:ca:66:24:f6:19:4d:7d:58:1b:ec:64:
c1:5a:38:45:83:ed:47:67:24:db:33:c4:64:08:a9:
19:cc:39:95:5d:22:8c:24:95:6d:68:fd:f1:db:10:
8f:13:59:c1:44:72:63:24:c5:1d:48:7e:ec:e3:f4:
70:54:3e:13:82:83:6c:ab:70:1a:f9:46:f4:fa:5a:
6c:94:c6:b3:01:31:e6:62:bd:06:7a:48:e1:04:98:
76:af:cc:38:12:02:be:d3:ef:0e:3d:9f:83:b9:58:
74:45:eb:eb:15:80:8a:3b:2c:6b:6b:2f:c7:66:40:
99:55:8a:bd:99:b1:44:cf:94:48:70:49:5d:27:29:
2f:ad:a3:8f:78:32:10:74:43:54:75:c7:ff:b4:aa:
b5:c1:33:3a:df:46:01:af:64:de:8f:6d:7e:1c:95:
8a:79:e2:a9:5f:ea:95:d1:25:c4:53:fd:dd:3e:86:
c0:4a:87:17:da:88:82:b0:2f:19:09:ee:07:7d:73:
de:8a:8f:9a:1d:33:bd:62:2e:4e:81:47:c1:02:e8:
e4:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:26:36:10:44:F9:C3:99:59:79:BF:C1:CB:C2:21:FB:58:4A:13:13
X509v3 Authority Key Identifier:
keyid:BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:9b:12:88:7b:d4:bc:96:aa:21:4e:5e:ab:a0:8c:65:fa:fe:
d9:9c:88:64:2c:0d:b8:36:fb:97:e6:27:8c:31:05:78:97:cb:
82:cd:b3:f4:fa:33:60:77:fd:d0:4a:33:e4:84:2b:53:f5:1e:
ef:5a:ce:9f:41:3e:36:e9:c0:f2:a1:b3:ff:5a:ea:57:78:ee:
d0:54:88:e6:f7:5e:b1:7b:70:99:02:9a:fd:62:7c:80:29:21:
6a:33:81:5b:f7:57:d0:eb:29:17:52:35:58:7d:d1:90:bd:8d:
4e:61:68:3d:44:f1:7a:94:5e:32:4b:8b:82:f3:f3:53:57:76:
81:9e:69:e3:67:a9:85:ee:ae:b6:2c:0c:a9:97:84:f8:12:26:
66:5a:07:46:89:09:f5:88:0d:14:3d:e6:f6:d1:d6:e2:7b:96:
92:09:ab:68:ad:15:2c:81:96:1c:d8:9c:16:33:de:32:54:67:
dd:f9:9e:e8:57:2c:dd:87:b3:ba:f2:63:9d:1f:79:74:45:a9:
15:5c:0e:fc:90:9c:8a:35:ac:af:42:98:e4:a5:1b:80:b7:cf:
9a:63:b9:a4:8d:55:3a:2c:2d:2a:7b:46:55:df:c9:bd:0c:60:
76:6f:60:16:e4:a3:15:c8:de:56:8c:dd:80:b6:7f:83:1c:c5:
dd:01:2e:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:43:29 2025 by rpki-client