Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
File: uwoTocnh3YTt5DKDSQvng4d1SpQ.mft (raw, json)
Hash identifier: aOi4eum6GiSoC3XouUuzj6bZLDXLw27a2/BNIvclHIc=
Subject key identifier: E2:0A:8B:26:EA:9A:36:AE:A3:05:1E:AB:62:22:97:27:2B:FB:2C:E7
Authority key identifier: BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
Certificate issuer: /CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Certificate serial: 01974D0E3438DB79B78FB467679930CA20BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
Manifest number: 157C
Signing time: Sun 08 Jun 2025 01:01:05 +0000
Manifest this update: Sun 08 Jun 2025 01:01:05 +0000
Manifest next update: Mon 09 Jun 2025 01:01:05 +0000
Files and hashes: 1: e4ClDxZZC-HgzfD6jjAt7w6H7rI.roa (hash: s/lm7kNCD/Mf0FKczgw09MeHHAa4AoL+4qjfAKGabq0=)
2: uwoTocnh3YTt5DKDSQvng4d1SpQ.crl (hash: FnrIq6VjSAY4mMbXOyAMdyoFdIDQMRxzO4zzXKCuvjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 01:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0e:34:38:db:79:b7:8f:b4:67:67:99:30:ca:20:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Validity
Not Before: Jun 8 01:01:05 2025 GMT
Not After : Jun 9 01:01:05 2025 GMT
Subject: CN=e20a8b26ea9a36aea3051eab622297272bfb2ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3c:fb:61:84:ea:75:d5:4d:a0:44:39:ac:bd:
41:a6:03:9e:4a:23:1a:72:53:23:d3:84:34:26:c3:
2e:7d:d7:8a:f1:68:ae:85:9d:6c:04:c7:60:4d:79:
ec:1d:51:ea:96:fe:e6:a0:af:b2:42:55:4a:96:1c:
c0:88:6b:67:67:4f:a4:5d:69:48:ad:88:4f:4c:ed:
18:c0:3b:f9:f3:bb:75:5c:8b:ae:9a:50:f2:05:ec:
34:e9:8b:19:c4:c3:f0:8e:22:2e:9e:b3:ef:c6:f0:
bb:68:87:b1:b3:51:0b:50:84:b2:42:45:0f:ba:2c:
88:64:ff:80:77:d2:f6:73:ee:ff:b0:68:15:97:7c:
60:0e:42:ab:40:df:98:7f:93:f3:8f:d1:89:d6:8d:
d7:1a:be:a7:a0:28:6b:ec:49:22:65:a1:69:97:69:
74:74:a1:ec:68:74:b7:3b:c8:8b:6a:55:b0:f2:a5:
ce:4e:21:14:c9:77:cc:b9:11:c8:19:9a:71:02:b6:
e1:b4:82:04:af:04:4a:cc:69:6e:cf:24:e5:d4:fd:
77:d7:33:21:1d:67:99:61:99:06:2f:37:15:1a:7f:
00:cf:94:75:6a:59:65:b0:8e:3a:fd:e6:ed:ef:57:
2e:3c:39:b6:a3:dd:0e:f9:e3:b6:d3:b9:ac:8a:4a:
07:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:0A:8B:26:EA:9A:36:AE:A3:05:1E:AB:62:22:97:27:2B:FB:2C:E7
X509v3 Authority Key Identifier:
keyid:BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:d0:ca:61:47:94:d2:42:ef:00:78:88:03:6b:22:48:09:4f:
55:42:d3:78:66:9c:72:75:f2:02:30:cd:28:b1:00:28:8a:c7:
02:c5:73:44:96:fa:c8:9a:d1:bd:22:7c:03:34:3e:b3:8c:a5:
64:b9:1e:81:a2:32:90:05:6c:02:1c:83:4f:fb:cf:1c:88:21:
97:f8:9c:53:90:52:95:86:aa:69:21:b1:3f:a0:36:89:66:c1:
f3:a2:30:b7:64:7a:5e:88:c7:6f:4b:36:df:5b:2b:86:06:f4:
4a:bd:b6:4b:72:d4:73:fb:1a:6f:e7:75:f3:f6:37:14:39:aa:
c6:cd:94:4f:ed:ac:23:31:28:b7:ef:9a:64:63:df:59:82:d9:
ff:58:60:b8:36:4f:4c:61:b8:dc:40:c1:60:17:4b:d3:10:87:
f5:bb:46:e9:56:34:10:44:4a:e3:aa:a0:bb:96:5c:96:66:aa:
64:ad:cd:da:75:01:b0:a0:3b:a4:e1:4f:a0:cd:f7:6f:a4:0d:
47:ad:5d:a4:cd:d6:85:5f:8d:92:5d:e8:51:f7:64:f5:08:88:
25:22:99:07:00:0d:41:2f:43:bf:07:a3:17:f1:58:41:92:8a:
5a:69:b0:6a:29:1d:27:30:85:0a:16:94:3e:63:94:5c:e1:fd:
9b:fc:ca:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:13:20 2025 by rpki-client